CN108924165A - A kind of Intranet remote access method and its device and Intranet gateway - Google Patents

A kind of Intranet remote access method and its device and Intranet gateway Download PDF

Info

Publication number
CN108924165A
CN108924165A CN201810973237.6A CN201810973237A CN108924165A CN 108924165 A CN108924165 A CN 108924165A CN 201810973237 A CN201810973237 A CN 201810973237A CN 108924165 A CN108924165 A CN 108924165A
Authority
CN
China
Prior art keywords
intranet
node
port
access
gateway
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201810973237.6A
Other languages
Chinese (zh)
Inventor
范福基
侯兴明
方垒
焦小英
李楠
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Hollysys Industrial Software Co Ltd
Original Assignee
Beijing Hollysys Industrial Software Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Hollysys Industrial Software Co Ltd filed Critical Beijing Hollysys Industrial Software Co Ltd
Priority to CN201810973237.6A priority Critical patent/CN108924165A/en
Publication of CN108924165A publication Critical patent/CN108924165A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/66Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2517Translation of Internet protocol [IP] addresses using port numbers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0236Filtering by address, protocol, port number or service, e.g. IP-address or URL

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Power Engineering (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Computer And Data Communications (AREA)

Abstract

The invention discloses a kind of Intranet remote access method and its devices, are applied to Intranet gateway, and this method includes:Connection is established with external network server;The access instruction that external network server is sent is received by connection;The corresponding Intranet node of the node identification carried in access instruction is mapped on the corresponding port of itself;The port numbers of sending port are to external network server;For external network server by the corresponding port of port numbers, corresponding access operation directly is carried out to the Intranet node mapped at port.The present invention maps to Intranet node on the port of Intranet gateway, and external network server is enable directly to access to the Intranet node mapped at port, simplifies outer net to the access process of Intranet.The invention also discloses a kind of Intranet gateways based on the above method.

Description

A kind of Intranet remote access method and its device and Intranet gateway
Technical field
The present invention relates to gateway communication technical fields, more particularly to a kind of Intranet remote access method and its device.This Invention further relates to a kind of Intranet gateway.
Background technique
In industrial control field, the scheme generally used at present is to acquire industrial equipment by fieldbus in the factory Data are simultaneously stored in industrial host, so that manager can check data by local area network.In this case, industrial equipment Data be present in Intranet, can not be obtained by outer net equipment.
And industrial gateway currently on the market, outer net equipment can not be assisted to realize that (i.e. situ industrial is set to Intranet node It is standby) Remote Visit and Control.In this case, Intranet node can directly access outer net, but in outer net equipment can not access directly Net node if each outer net equipment wants access to Intranet node, is required to first pass through gateway to Intranet node from outer net equipment Request is issued, Intranet node is replied by gateway respond again, and access process is complicated, and access mode is not convenient enough.
Therefore, how a kind of simple Intranet remote access method of access process and its device are provided and Intranet gateway is The current problem to be solved of those skilled in the art.
Summary of the invention
The object of the present invention is to provide a kind of Intranet remote access method and its devices, and Intranet node is mapped to Intranet net On the port of pass, external network server is enable directly to access to the Intranet node mapped at port, simplifies outer net to Intranet Access process;It is a further object of the present invention to provide a kind of Intranet gateways based on the above method.
In order to solve the above technical problems, being applied to Intranet gateway, institute the present invention provides a kind of Intranet remote access method The method of stating includes:
Connection is established with external network server;
The access instruction that the external network server is sent is received by the connection;
The corresponding Intranet node of the node identification carried in the access instruction is mapped on the corresponding port of itself;
The port numbers of the port are sent to the external network server;Pass through the port numbers pair for the external network server The port answered directly carries out corresponding access operation to the Intranet node mapped at the port.
Preferably, encrypted data communications are used between the Intranet gateway and the external network server.
Preferably, encrypted data communications are used between the Intranet gateway and Intranet node.
Preferably, further include:
After receiving the access instruction, judge whether the user identifier carried in the access instruction is in itself preservation In external white list;If it exists, then the corresponding node application of the node identification carried in the access instruction is mapped to itself Corresponding port on;If it does not exist, then failure is accessed.
Preferably, judge the user identifier carried in the access instruction be in itself preservation external white list it is interior it Afterwards, further include:
It is white to judge whether the corresponding Intranet node of node identification of the access instruction carrying is located at the inside that itself is saved In list, and if it exists, the corresponding node application of the node identification carried in the access instruction is then mapped to the corresponding of itself On port, if it does not exist, then failure is accessed.
Preferably, it is established and is connected by internet or cloud server between the Intranet gateway and the external network server It connects.
In order to solve the above technical problems, it is applied to Intranet gateway the present invention also provides a kind of Intranet remote access apparatus, Described device includes:
Outer net link block, for establishing connection with external network server;
Command reception module, for receiving the access instruction that the external network server is sent by the connection;
Mapping block, for the corresponding Intranet node of the node identification carried in the access instruction to be mapped to itself On corresponding port;
Sending module, for sending the port numbers of the port to the external network server;It is logical for the external network server The corresponding port of the port numbers is crossed, corresponding access operation directly is carried out to the Intranet node mapped at the port.
In order to solve the above technical problems, the present invention also provides a kind of Intranet gateways, including:
Memory, for storing computer program;
Processor realizes the Intranet remote access method as described in any of the above item when for executing the computer program The step of;
Inter access port, for connecting Intranet node, for being counted between the Intranet gateway and the Intranet node According to transmission;
Outside access port, for for carrying out data transmission between the Intranet gateway and external server;Carry Intranet The mapping of node, for carrying out data transmission between external server and the Intranet node carried.
Preferably, the inter access interface is that RJ45 interface or 485 interfaces or universal asynchronous receiving-transmitting transmitter UART connect Mouthful, the outside access interface is RJ45 interface or radio antenna.
Preferably, further include display device, for show the Intranet gateway state and each Intranet node Transmission data.
The present invention provides a kind of Intranet remote access method and its devices, are applied to Intranet gateway, take first with outer net After business device establishes connection, the corresponding Intranet node of access instruction that external network server is sent is mapped to the port of Intranet gateway On, the port numbers of the port are informed into external network server later, enable external network server directly by the port to mapping The Intranet node come accesses.It can be seen that after external network server learns port numbers in the present invention, it can be directly by being somebody's turn to do Port accesses to Intranet node, without again by Intranet gateway be used as data relay, come transmit external network server with Communication data between Intranet node simplifies external network server to the access process of Intranet node, improves outer net to Intranet Access convenience.The present invention also provides a kind of Intranet gateways based on the above method.
Detailed description of the invention
It to describe the technical solutions in the embodiments of the present invention more clearly, below will be to institute in the prior art and embodiment Attached drawing to be used is needed to be briefly described, it should be apparent that, the accompanying drawings in the following description is only some implementations of the invention Example, for those of ordinary skill in the art, without creative efforts, can also obtain according to these attached drawings Obtain other attached drawings.
Fig. 1 is a kind of flow chart of the process of Intranet remote access method provided by the invention;
Fig. 2 is a kind of structural schematic diagram of Intranet remote access apparatus provided by the invention;
Fig. 3 is the application scenarios schematic diagram that a kind of Intranet provided by the invention remotely accesses process;
Fig. 4 is a kind of structural schematic diagram of Intranet gateway provided by the invention.
Specific embodiment
Core of the invention is to provide a kind of Intranet remote access method and its device, and Intranet node is mapped to Intranet net On the port of pass, external network server is enable directly to access to the Intranet node mapped at port, simplifies outer net to Intranet Access process;Another core of the invention is to provide a kind of Intranet gateway based on the above method.
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention In attached drawing, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiment is A part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art Every other embodiment obtained without making creative work, shall fall within the protection scope of the present invention.
The present invention provides a kind of Intranet remote access methods, are applied to Intranet gateway, shown in Figure 1, and Fig. 1 is this hair A kind of flow chart of the process of Intranet remote access method of bright offer;This method includes:
Step s1:Connection is established with external network server;
Gateway (Gateway) is also known as gateway, protocol converter.Gateway in network layer implementation above network interconnection, It is most complicated network interconnection apparatus, network interconnection, is only used for two different network interconnections of upper-layer protocol.Gateway both can be used for wide area network Interconnection, can be used for local area network interconnection.Gateway is a kind of computer system or equipment for serving as conversion important task.
In the present invention, the field data of acquisition can be sent to Intranet gateway by Intranet node, and Intranet gateway can be Intranet The data that node is sent are analyzed and processed, and are ready to communicate with external network server.Also, in Intranet Gateway Initiative When, one can be established with external network server and connect, for receiving the instruction of external network server transmission.Intranet gateway and outer net service The mode present invention that device establishes connection is not especially limited.
Step s2:The access instruction that external network server is sent is received by connection;
If external network server wants access to Intranet node, it is necessary first to send an access by the connection established before Instruction carries the node identification that external network server wants access in the access instruction to Intranet gateway.
Step s3:The corresponding Intranet node of the node identification carried in access instruction is mapped to the corresponding port of itself On;
External network server wants access to Intranet node and needs to transfer by Intranet gateway under present circumstances, and this mode is inadequate It is convenient, and Intranet node is mapped to the purpose on the port of Intranet gateway by the present invention, be in order in the form of mapping by Intranet Node there are positions that the port of Intranet gateway is transferred to by Intranet gateway rear end, certainly, this transfer be not it is practical general Intranet node has been set on the port of Intranet gateway, but the application of Intranet node has been mapped to the port of Intranet gateway On, so that external network server is directly accessed to the application at the port, to realize the purpose for directly accessing Intranet, subtracts Operating process when few extranet access Intranet.
Step s4:The port numbers of sending port are to external network server;Pass through the corresponding port of port numbers for external network server, Corresponding access operation directly is carried out to the Intranet node mapped at port.
It is understood that external network server after learning port numbers, can be sent out to the corresponding port of the port numbers Access request is sent, due to being mapped with the application of corresponding Intranet node at the port, the access that external network server is sent Request can be sent directly in the application of the Intranet node mapped at the port, thus directly answering to the Intranet node of mapping With accessing.Due at this map Intranet node application with actual Intranet node application be it is synchronous, it is right The application of the Intranet node mapped at this accesses operation, as to actual Intranet node using accessing, thus External network server is set to can be realized the active access to Intranet, i.e., external network server can directly transmit data or control instruction extremely Intranet node, without by Intranet gateway carry out transfer, thus simplify outer net equipment to Intranet node it is long-range control with And long-range monitoring.
Preferably, encrypted data communications are used between Intranet gateway and external network server.Intranet gateway and Intranet section Encrypted data communications are used between point.
It is understood that generally being used since field device (i.e. Intranet node) transfers data to Intranet gateway It the industry-standard protocols such as Modbus-TCP/IP, DP, RS485 and being transmitted with clear-text way, transmission data may be stolen, because , in order to improve safety, the present embodiment uses encrypted data communications between Intranet gateway and Intranet node for this, to realize number According to safe transmission.Similarly, in order to guarantee the safe transmission between Intranet gateway and external network server, Intranet gateway and outer net service Also encrypted data transmission is used between device.
In a preferred embodiment, this method further includes:
After receiving access instruction, judge whether the user identifier carried in access instruction is in the white name in outside of itself preservation In list;If it exists, then the corresponding node application of the node identification carried in access instruction is mapped on the corresponding port of itself; If it does not exist, then failure is accessed.
It is understood that save in external white list is the mark for having been acknowledged believable user, user here Mark can may be specific user account for the mark of external server, and the present invention limits this deficiency.In this implementation In example, only allows to pass through the access instruction where the user identifier in external white list, i.e., will not be issued according to malicious user Access instruction carry out node mapping so that malicious user cannot achieve directly access Intranet node purpose, improve Intranet The safety of data.
Further, after judging that the user identifier carried in access instruction is in the external white list of itself preservation, Further include:
Judge whether the corresponding Intranet node of node identification that access instruction carries is located at the internal whitelist itself saved It is interior, and if it exists, then the corresponding node application of the node identification carried in access instruction is mapped on the corresponding port of itself, if It is not present, then accesses failure.
Although not representing Intranet node must be safety it is understood that Intranet node is present in Intranet , for this purpose, the present embodiment is provided with an Intranet white list, the corresponding Intranet section of the node identification being only located in Intranet white list Point is security node, be can permit on the port for being mapped to Intranet gateway, to guarantee the inside that external network server obtains Data are safe.
The above is only a kind of specific embodiment, user identifier and/or node identification can be carried in access instruction.Work as visit Ask instruction while when carrying user identifier and node identification, it is specific judge user identifier whether be stored in external white list and Judge whether node identification is stored in the sequence present invention of internal whitelist and is not construed as limiting, the two can also be judged simultaneously, only When having the two while meeting, the corresponding node application of the node identification carried in access instruction is just mapped to the respective end of itself On mouth.
Specifically, Intranet gateway can be connected by wire or wireless internet in the present invention, can also connect Cloud Server or Person's 3G/4G net, and by by establishing connection between internet or cloud server or 3G/4G net and external network server.Or NB-IoT (Narrow Band Internet of Things, protenchyma also can be used between Intranet gateway and external network server Networking) or the Internet of Things fidonetFido such as eMTC communicated, the present invention does not limit specific communication mode.
After Intranet node by being mapped to the port of Intranet gateway by the present invention, external network server can directly pass through the port Corresponding Intranet node is accessed, so that user be made to pass through remote controlled manner pair with place at any time by external network server Intranet gateway is monitored in real time.Intranet gateway can handle the connection request of external network server, when there is long-range connection, Intranet Gateway can timely respond to.
Preferably, this method further includes:
Intranet gateway shows the state of itself and the transmission data of each Intranet node.
It is understood that shown by the transmission data of state and Intranet node to Intranet gateway, it can Staff is facilitated whether to understand Intranet gateway in time currently in normal operating conditions and current working condition, and The field evidence for understanding each field device in Intranet in time, is managed convenient for staff.
Wherein, Intranet node can be field instrument etc., and certainly, the present invention does not limit the type of Intranet node.
In addition, the in house software of the Intranet gateway in the present invention is mainly made of embedded OS and application software, Embedded OS can be realized by the operating system OpenWrt of linux kernel, with powerful networking component and extension Property, application software include network communication protocol, application program, information processing, graphic interface show, OS (Operating System, operating system) kernel and hardware drive program etc..The application layer of Intranet gateway is programmed to net using Socket Network communication, data are transmitted according to user-defined format.Certainly, the above is only a kind of preferred implementation scheme, the present invention is not limited The specific implementation of the in house software of Intranet gateway.
By to introduction of the invention, remotely being managed it can be seen that engineer can according to need the present apparatus above, It realizes the remote diagnosis to field device (i.e. Intranet node) and is remotely solved, the period of field device maintenance and cost are all It can obviously reduce.The present invention be suitable for be geographically spread out, be unattended, large number of scene, as gas transmission line valve chamber, oil well are adopted Collect point, Sewage Disposal, heat exchange station etc..Certainly, this is not limited by the present invention.
The present invention also provides a kind of Intranet remote access apparatus, are applied to Intranet gateway, shown in Figure 2, and Fig. 2 is this A kind of structural schematic diagram of the Intranet remote access apparatus provided is provided;The device includes:
Outer net link block 1, for establishing connection with external network server;
Command reception module 2, for receiving the access instruction that external network server is sent by connection;
Mapping block 3, for the corresponding Intranet node of the node identification carried in access instruction to be mapped to itself phase It answers on port;
Sending module 4, the port numbers for sending port are to external network server;It is corresponding by port numbers for external network server Port, corresponding access operation directly is carried out to the Intranet node mapped at port.
The present invention also provides a kind of Intranet gateways, including:
Memory, for storing computer program;
Processor, when for executing computer program the step of the realization such as Intranet remote access method of any of the above item;
Inter access port, for connecting Intranet node, for carrying out data transmission between Intranet gateway and Intranet node;
Outside access port, for for carrying out data transmission between Intranet gateway and external server;Carry Intranet node Mapping, for carrying out data transmission between external server and the Intranet node carried.
Wherein, external network server can be intelligent terminal, so that user is when remotely controlling Intranet node Freedom degree it is higher, more convenient real-time perfoming remotely controls.Certainly, the present invention does not limit the type of external network server.
In addition, external network server with Intranet gateway is connect by public network or cloud, and in order to realize the purpose, outer net clothes Setting router or base station are required between business device and public network and between Intranet gateway and public network.Shown in Figure 3, Fig. 3 is A kind of application scenarios schematic diagram of Intranet remote access process provided by the invention.
Wherein, inter access interface is RJ45 interface or 485 interfaces or UART (Universal Asynchronous Receiver/Transmitter, universal asynchronous receiving-transmitting transmitter) interface, outside access interface is RJ45 interface or wireless communication Antenna.RJ45 interface in inter access interface is used for the LAN interface interconnected as local area network and equipment, 485 interfaces or UART interface is mainly used for completing fieldbus data transmission and AccessPort function.RJ45 interface in outside access interface is used In the wan interface as wan communication.In addition, inter access interface may be radio antenna.The present invention does not limit The quantity and type of inter access interface and outside access interface.
In addition, in order to support various applications, also settable various external interfaces in Intranet gateway of the invention, such as visiting Ask the USB port etc. of external memory, the present invention does not limit the quantity and type of the application interface in Intranet gateway.
It is understood that interface quantity abundant can not only support various applications, the applicability of Intranet gateway is improved, And external interface is simple, can facilitate engineer that can grasp the proper use of of device by simply training.
Specifically, Intranet gateway of the invention further includes display device, for showing the state of Intranet gateway and each The transmission data of Intranet node.
Wherein, Intranet gateway of the invention can be using the industrial gateway of low cost, and this is not limited by the present invention.
Specifically, the hardware configuration of Intranet gateway can use chip MT7620+FPGA structure, additionally include and MT7620, FPGA (multiple functions electricity of (Field-Programmable Gate Array, field programmable gate array) periphery Road (crystal oscillator and configuration circuit etc.).Shown in Figure 4, Fig. 4 is a kind of structural schematic diagram of Intranet gateway provided by the invention.
Wherein, MT7620 as core chips its it is internal include Intranet gateway above-mentioned memory and processor, and MT7620 is extended out 128MB DDR2 memory (by X16 bus), and DDR2 is (Double-Data- RateTwoSynchronousDynamicRandomAccessMemory, second generation double data rate synchronous dynamic random-access Memory), have big data quantity processing capacity, there is good computing capability, while having reserved 16MB's for application program FLASH code space (is connected) by spi bus.In addition, can also extend out the EEROM of 4Kb on MT7620 (Electrically-Erasable Programmable Read-Only Memory, the electronics formula of erasing can make carbon copies read-only storage Device) space (pass through IIC (Inter-IntegratedCircuit, IC bus) bus connect), and external world USB connects Mouth, UART interface, 2 RJ45 interfaces and wireless communication module (pass through PCIE (peripheral component Interconnect express, high speed serialization computer expansion bus standard) bus connection).Simultaneously because MT7620's connects Mouth limited amount, in order to enrich the interface quantity of Intranet gateway, MT7620 is connect with FPGA, using FPGA as the group of Interface Expanding Part exist, such as on FPGA external connection display apparatus LCD (Liquid Crystal Display, liquid crystal display)/LED and 485 interfaces are set.It can be connected by Ethernet between MT7620 and FPGA.FPGA also needs that reset circuit is arranged.Certainly, above Only a kind of preferred embodiment is specifically not construed as limiting as the hardware present invention of Intranet gateway using which kind of chip, works as Intranet gateway When being formed by multiple chip portfolios, which chip each interface is specifically set on the present invention also without limitation.
Above several specific embodiments are only the preferred embodiment of the present invention, and above several specific embodiments can be with Any combination, the embodiment obtained after combination is also within protection scope of the present invention.It should be pointed out that for the art For those of ordinary skill, relevant speciality technical staff deduced out in the case where not departing from spirit of that invention and concept thereof other change Into and variation, should all be included in the protection scope of the present invention.
It should also be noted that, in the present specification, the terms "include", "comprise" or its any other variant are intended to contain Lid non-exclusive inclusion, so that the process, method, article or equipment including a series of elements is not only wanted including those Element, but also including other elements that are not explicitly listed, or further include for this process, method, article or equipment Intrinsic element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that There is also other identical elements in process, method, article or equipment including the element.

Claims (10)

1. a kind of Intranet remote access method, which is characterized in that it is applied to Intranet gateway, the method includes:
Connection is established with external network server;
The access instruction that the external network server is sent is received by the connection;
The corresponding Intranet node of the node identification carried in the access instruction is mapped on the corresponding port of itself;
The port numbers of the port are sent to the external network server;It is corresponding by the port numbers for the external network server The port directly carries out corresponding access operation to the Intranet node mapped at the port.
2. Intranet remote access method according to claim 1, which is characterized in that the Intranet gateway and the outer net take It is engaged in using encrypted data communications between device.
3. Intranet remote access method according to claim 2, which is characterized in that the Intranet gateway and Intranet node it Between use encrypted data communications.
4. Intranet remote access method according to claim 1, which is characterized in that further include:
After receiving the access instruction, judge whether the user identifier carried in the access instruction is in the outside of itself preservation In white list;If it exists, then the corresponding node application of the node identification carried in the access instruction is mapped to the phase of itself It answers on port;If it does not exist, then failure is accessed.
5. Intranet remote access method according to claim 4, which is characterized in that judge carrying in the access instruction After user identifier is in the external white list of itself preservation, further include:
Judge whether the corresponding Intranet node of node identification that the access instruction carries is located at the internal whitelist itself saved It is interior, and if it exists, the corresponding node application of the node identification carried in the access instruction is then mapped to the corresponding port of itself On, if it does not exist, then access failure.
6. Intranet remote access method according to claim 1, which is characterized in that the Intranet gateway and the outer net take Connection is established by internet or cloud server between business device.
7. a kind of Intranet remote access apparatus, which is characterized in that be applied to Intranet gateway, described device includes:
Outer net link block, for establishing connection with external network server;
Command reception module, for receiving the access instruction that the external network server is sent by the connection;
Mapping block, for the corresponding Intranet node of the node identification carried in the access instruction to be mapped to the corresponding of itself On port;
Sending module, for sending the port numbers of the port to the external network server;Pass through institute for the external network server The corresponding port of port numbers is stated, corresponding access operation directly is carried out to the Intranet node mapped at the port.
8. a kind of Intranet gateway, which is characterized in that including:
Memory, for storing computer program;
Processor realizes that Intranet as claimed in any one of claims 1 to 6 such as remotely accesses when for executing the computer program The step of method;
Inter access port, for connecting Intranet node, for carrying out data biography between the Intranet gateway and the Intranet node It is defeated;
Outside access port, for for carrying out data transmission between the Intranet gateway and external server;Carry Intranet node Mapping, for carrying out data transmission between external server and the Intranet node carried.
9. Intranet gateway according to claim 8, which is characterized in that the inter access interface is RJ45 interface or 485 Interface or universal asynchronous receiving-transmitting transmitter UART interface, the outside access interface are RJ45 interface or radio antenna.
10. Intranet gateway according to claim 8, which is characterized in that further include display device, for showing the Intranet The transmission data of the state of gateway and each Intranet node.
CN201810973237.6A 2018-08-24 2018-08-24 A kind of Intranet remote access method and its device and Intranet gateway Pending CN108924165A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810973237.6A CN108924165A (en) 2018-08-24 2018-08-24 A kind of Intranet remote access method and its device and Intranet gateway

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810973237.6A CN108924165A (en) 2018-08-24 2018-08-24 A kind of Intranet remote access method and its device and Intranet gateway

Publications (1)

Publication Number Publication Date
CN108924165A true CN108924165A (en) 2018-11-30

Family

ID=64406994

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810973237.6A Pending CN108924165A (en) 2018-08-24 2018-08-24 A kind of Intranet remote access method and its device and Intranet gateway

Country Status (1)

Country Link
CN (1) CN108924165A (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110166432A (en) * 2019-04-17 2019-08-23 平安科技(深圳)有限公司 The access method of internal net destination service provides the method for Intranet destination service
CN110493337A (en) * 2019-08-16 2019-11-22 武汉麦品科技有限公司 Data access method, gateway, system, storage medium and device
CN111083234A (en) * 2019-12-30 2020-04-28 武汉佰钧成技术有限责任公司 Camera system and data uploading and issuing method
CN112261044A (en) * 2020-10-22 2021-01-22 江苏税软软件科技有限公司 Remote assistance system and method suitable for internal and external network isolation
CN113572839A (en) * 2021-07-23 2021-10-29 段采标 Remote control method, device and system of industrial personal computer
CN114363418A (en) * 2022-01-07 2022-04-15 北京金山云网络技术有限公司 Method and device for accessing intranet database, storage medium and electronic equipment
CN114640672A (en) * 2022-02-11 2022-06-17 网宿科技股份有限公司 Method, device and system for remotely accessing edge device
CN117014222A (en) * 2023-09-01 2023-11-07 四川绍泰锦网络科技有限公司 Computer network information security event processing method

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080013554A1 (en) * 2006-07-12 2008-01-17 Kddi Corporation Gateway for controlling electric equipment connected to lan through wan
CN102882828A (en) * 2011-07-11 2013-01-16 上海可鲁系统软件有限公司 Information safe transmission control method between inside network and outside network and gateway thereof
CN103414605A (en) * 2013-08-14 2013-11-27 上海兆民云计算科技有限公司 Desktop cloud monitoring method based on exchange gateway
CN103647719A (en) * 2013-12-19 2014-03-19 侯贺杰 Port self-mapping routing technology
CN103916490A (en) * 2014-04-03 2014-07-09 深信服网络科技(深圳)有限公司 DNS tamper-proof method and device
CN104486589A (en) * 2014-12-25 2015-04-01 浙江宇视科技有限公司 Assess method and device of GVRP-based video monitoring system
CN104980528A (en) * 2015-06-26 2015-10-14 广州华多网络科技有限公司 Method, system and apparatus for realizing communication between nodes
CN106027354A (en) * 2016-05-19 2016-10-12 杭州迪普科技有限公司 Backflow method and device for VPN (Virtual Private Network) client
WO2018113693A1 (en) * 2016-12-23 2018-06-28 中兴通讯股份有限公司 Local area network device communication management method and system, and gateway device

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080013554A1 (en) * 2006-07-12 2008-01-17 Kddi Corporation Gateway for controlling electric equipment connected to lan through wan
CN102882828A (en) * 2011-07-11 2013-01-16 上海可鲁系统软件有限公司 Information safe transmission control method between inside network and outside network and gateway thereof
CN103414605A (en) * 2013-08-14 2013-11-27 上海兆民云计算科技有限公司 Desktop cloud monitoring method based on exchange gateway
CN103647719A (en) * 2013-12-19 2014-03-19 侯贺杰 Port self-mapping routing technology
CN103916490A (en) * 2014-04-03 2014-07-09 深信服网络科技(深圳)有限公司 DNS tamper-proof method and device
CN104486589A (en) * 2014-12-25 2015-04-01 浙江宇视科技有限公司 Assess method and device of GVRP-based video monitoring system
CN104980528A (en) * 2015-06-26 2015-10-14 广州华多网络科技有限公司 Method, system and apparatus for realizing communication between nodes
CN106027354A (en) * 2016-05-19 2016-10-12 杭州迪普科技有限公司 Backflow method and device for VPN (Virtual Private Network) client
WO2018113693A1 (en) * 2016-12-23 2018-06-28 中兴通讯股份有限公司 Local area network device communication management method and system, and gateway device

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110166432A (en) * 2019-04-17 2019-08-23 平安科技(深圳)有限公司 The access method of internal net destination service provides the method for Intranet destination service
CN110493337A (en) * 2019-08-16 2019-11-22 武汉麦品科技有限公司 Data access method, gateway, system, storage medium and device
CN111083234A (en) * 2019-12-30 2020-04-28 武汉佰钧成技术有限责任公司 Camera system and data uploading and issuing method
CN112261044A (en) * 2020-10-22 2021-01-22 江苏税软软件科技有限公司 Remote assistance system and method suitable for internal and external network isolation
CN113572839A (en) * 2021-07-23 2021-10-29 段采标 Remote control method, device and system of industrial personal computer
CN114363418A (en) * 2022-01-07 2022-04-15 北京金山云网络技术有限公司 Method and device for accessing intranet database, storage medium and electronic equipment
CN114640672A (en) * 2022-02-11 2022-06-17 网宿科技股份有限公司 Method, device and system for remotely accessing edge device
CN117014222A (en) * 2023-09-01 2023-11-07 四川绍泰锦网络科技有限公司 Computer network information security event processing method

Similar Documents

Publication Publication Date Title
CN108924165A (en) A kind of Intranet remote access method and its device and Intranet gateway
US10429092B2 (en) Asynchronous reporting system
CN104660682B (en) A kind of OPC data collection and monitoring intelligent terminal based on TD-LTE
US8769106B2 (en) Universal configurable device gateway
JP6043303B2 (en) Adapter device for coupling industrial field devices to an industrial wireless network, and related systems and methods
CN101166163B (en) Secure intelligent home gateway based on mobile phone remote control
CN104780054B (en) A kind of gateway to the wake-up of control area net(CAN) network or suspend mode
US20080279202A1 (en) Integrated Gateway for Distributed Home Network and Software Framework Structure for the Same
CN105159256B (en) A kind of intelligent home control system based on Web service
CN104243210A (en) Method and system for remotely having access to administrative web pages of routers
CN102065125A (en) Method for realizing embedded secure socket layer virtual private network (SSL VPN)
Kim et al. A control network architecture based on EIA-709.1 protocol for power line data communications
CN106355873B (en) Internet of things intelligent traffic gateway and system thereof
CN103795632A (en) Data message transmission method, related equipment and system
CN108833268B (en) Control system and operation method of variable description equipment of household wireless sensor network
US10514713B2 (en) Mailbox data storage system
CN106292518B (en) Remote PLC monitoring and debugging system and method
CN104486783A (en) Multi-state wireless gateway system for multi-state wireless monitoring network and control method
EP1887756A2 (en) Communication system, connection adapter for communication device, and network router
CN106130855A (en) The method and device that data process
CN110045705A (en) Using the intelligent home furnishing control method of heterogeneous wireless network, apparatus and system
CN114513792B (en) Remote network control method and device based on eSIM card
EP1570576B1 (en) Method for setting home code of home network system
CN115567348A (en) Edge gateway device with multiple adaptive capabilities and electronic equipment
CN104348920B (en) DCS MANET monitoring systems based on OPC standards

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20181130