CN109525682B - Service processing method, device, network element entity and computer readable storage medium - Google Patents

Service processing method, device, network element entity and computer readable storage medium Download PDF

Info

Publication number
CN109525682B
CN109525682B CN201710851657.2A CN201710851657A CN109525682B CN 109525682 B CN109525682 B CN 109525682B CN 201710851657 A CN201710851657 A CN 201710851657A CN 109525682 B CN109525682 B CN 109525682B
Authority
CN
China
Prior art keywords
service request
service
entity
indication field
terminal
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201710851657.2A
Other languages
Chinese (zh)
Other versions
CN109525682A (en
Inventor
董嘉
魏彬
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Mobile Communications Group Co Ltd
China Mobile Communications Ltd Research Institute
Original Assignee
China Mobile Communications Group Co Ltd
China Mobile Communications Ltd Research Institute
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Mobile Communications Group Co Ltd, China Mobile Communications Ltd Research Institute filed Critical China Mobile Communications Group Co Ltd
Priority to CN201710851657.2A priority Critical patent/CN109525682B/en
Publication of CN109525682A publication Critical patent/CN109525682A/en
Application granted granted Critical
Publication of CN109525682B publication Critical patent/CN109525682B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4505Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
    • H04L61/4511Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/14Charging, metering or billing arrangements for data wireline or wireless communications
    • H04L12/1432Metric aspects
    • H04L12/1435Metric aspects volume-based
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/66Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/04Protocols specially adapted for terminals or networks with limited capabilities; specially adapted for terminal portability
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/60Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses a service processing method, a device, a network element entity and a computer readable storage medium, wherein the method comprises the following steps: receiving a service request which is sent by a public data network gateway (PGW) entity and carries a first indication field; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity; and performing Domain Name System (DNS) resolution according to the first indication field in the service request to obtain a corresponding IP address. When receiving a service request sent by a terminal, a PGW entity analyzes the service request to obtain a first target address of the terminal, encapsulates the first target address in the service request and forwards the service request to a WAP gateway entity, and the WAP gateway entity analyzes the service request and then carries out Domain Name System (DNS) analysis according to the first target address to obtain a corresponding IP address, so that the problem of traffic fraud is avoided, and the accuracy of traffic charging is improved.

Description

Service processing method, device, network element entity and computer readable storage medium
Technical Field
The present invention relates to the field of communications, and in particular, to a method and an apparatus for processing a service, a network element entity, and a computer-readable storage medium.
Background
The flow stealing means that the phenomenon that the non-flow-free service is used for free is realized by installing application programs such as a flow-free treasure, a throttle treasure, a knife cloud and the like on the terminal and using methods such as a fake website, a fake proxy server, a fake packaging protocol and the like.
In General Packet Radio Service (GPRS) era, due to the slow network transmission speed, the network has added to the networkDue to small screen size, poor processing capability, etc., a Wireless Application Protocol Gateway (WAPGW) is required for a user to perform format conversion and webpage adaptation during normal browsing. And in the fourth generation (4)thGeneration, 4G) communication system, the intelligent terminal can normally access data traffic without the need of a WAPGW agent, and WAPGW grooming high-rate traffic has become a fraud hotbed. Under the condition that an SAE-GW (System Architecture Evolution Gateway, SAE-GW) entity and a WAPGW entity coexist, a jointly-arranged Serving Gateway (SGW) entity and a Packet Data Network Gateway (PGW) entity are called as an SAE-GW entity. However, because the processing principles of the PGW entity and the WAPGW entity are not consistent, for the same hypertext Transfer Protocol (HTTP) request message, the seven layers of Uniform Resource Locators (URLs) parsed by the PGW entity and the WAPGW entity may not be consistent, and if the content charging rule corresponding to the URL parsed by the PGW entity is a flow-free service (e.g., www.10086.com), and the URL parsed by the WAPGW entity for route forwarding actually corresponds to a charging service (e.g., www. Therefore, it is necessary to solve the problem of traffic fraud caused by inconsistent processing principles of the PGW entity and the WAPGW entity.
Disclosure of Invention
In order to solve the above technical problem, the present invention provides a service processing method, an apparatus, a network element entity, and a computer-readable storage medium, which solve the problem of traffic fraud caused by inconsistency between the processing principles of a PGW and a WAPGW in the prior art.
According to an aspect of the present invention, there is provided a service processing method applied to a wireless application protocol WAP gateway entity, the service processing method including:
receiving a service request which is sent by a PGW entity and carries a first indication field; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity;
and performing Domain Name System (DNS) resolution according to the first indication field in the service request to obtain a corresponding IP address.
Wherein, the method also comprises: and forwarding the initial service request in the service request according to the IP address.
Wherein, the method also comprises: acquiring identification information of a first indication field in a service request;
and if the identification information is inconsistent with the preset identification information, ignoring the service request.
Wherein, the service request further comprises: and the second indication field is used for indicating the message length of the initial service request of the terminal.
Wherein, the method also comprises: acquiring a first message length of an initial service request;
and if the first message length is not consistent with the message length indicated by the second indication field, ignoring the service request.
Wherein, the service request further comprises: a third indication field for indicating a check random number.
The service processing method further comprises the following steps:
acquiring a check random number indicated by a third indication field in the service request;
and if the check random number is inconsistent with the preset check random number, ignoring the service request.
In a second aspect, an embodiment of the present invention further provides a service processing apparatus, which is applied to a wireless application protocol WAP gateway entity, where the service processing apparatus includes:
the receiving module is used for receiving a service request which is sent by a packet data network gateway (PGW) entity and carries a first indication field; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity;
and the resolution module is used for performing Domain Name System (DNS) resolution according to the first indication field in the service request to obtain a corresponding IP address.
Wherein, the business processing device also comprises:
and the forwarding module is used for forwarding the initial service request in the service request according to the IP address.
Wherein, the business processing device also comprises:
the first acquisition module is used for acquiring the identification information of the first indication field in the service request;
and the first processing module is used for ignoring the service request if the identification information is inconsistent with the preset identification information.
Wherein, the service request further comprises: and the second indication field is used for indicating the message length of the initial service request of the terminal.
Wherein, the business processing device also comprises:
the second obtaining module is used for obtaining the first message length of the initial service request;
and the second processing module is used for ignoring the service request if the first message length is inconsistent with the message length indicated by the second indication field.
Wherein, the service request further comprises: a third indication field for indicating a check random number.
Wherein, the business processing device also comprises:
a third obtaining module, configured to obtain a check random number indicated by a third indication field in the service request;
and the third processing module is used for ignoring the service request if the check random number is inconsistent with the preset check random number.
In a third aspect, an embodiment of the present invention further provides a service processing method, applied to a public data network gateway PGW entity, including:
sending a service request carrying a first indication field to a Wireless Application Protocol Gateway (WAPGW) entity; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity.
The service processing method further comprises the following steps:
analyzing an initial service request of a terminal to obtain a first target address corresponding to the terminal;
according to the first target address, a first indication field for indicating the first target address is generated.
Wherein, the first indication field also carries an identification information.
The service processing method further comprises the following steps:
analyzing an initial service request of a terminal to obtain the message length of the initial service request;
and generating a second indication field for indicating the message length of the initial service request according to the message length of the initial service request.
The service processing method further comprises the following steps:
acquiring a check random number for checking the message validity;
and generating a third indication field according to the check random number.
In a fourth aspect, an embodiment of the present invention further provides a service processing apparatus, which is applied to a public data network gateway PGW entity, where the service processing apparatus includes:
a sending module, configured to send a service request carrying a first indication field to a Wireless Application Protocol Gateway (WAPGW) entity; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity.
Wherein, the business processing device also comprises:
the second analysis module is used for analyzing the initial service request of the terminal to obtain a first target address corresponding to the terminal;
the first generation module is used for generating a first indication field for indicating the first target address according to the first target address.
Wherein, the first indication field also carries an identification information.
Wherein, the business processing device also comprises:
the third analysis module is used for analyzing the initial service request of the terminal to obtain the message length of the initial service request;
and the second generating module is used for generating a second indicating field for indicating the message length of the initial service request according to the message length of the initial service request.
Wherein, the business processing device also comprises:
a fourth obtaining module, configured to obtain a check random number used for checking validity of the packet;
and the third generation module is used for generating a third indication field according to the check random number.
In a fifth aspect, an embodiment of the present invention further provides a service processing method, which is applied to a wireless application protocol gateway, WAPGW, entity, and the service processing method includes:
receiving a service request sent by a PGW entity through a first physical interface; the first physical interface is a receiving interface when the PGW entity analyzes that the service requested by the service request of the terminal is free service;
matching the service request with a preset free service;
if the matching is successful, performing Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address; otherwise, the service request is ignored.
The service processing method comprises the following steps:
analyzing a Uniform Resource Locator (URL) of the service request;
and matching the URL of the service request with the URL of the pre-configured free service.
Wherein, the method also comprises:
receiving a service request sent by a PGW entity through a second physical interface; the second physical interface is a receiving interface when the service requested by the service request analyzed to the terminal by the PGW entity is not a free service;
and performing Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address.
In a sixth aspect, an embodiment of the present invention further provides a service processing apparatus, which is applied to a wireless application protocol gateway, WAPGW, entity, and includes:
the first receiving module is used for receiving a service request sent by a PGW entity through a first physical interface; the first physical interface is a receiving interface when the PGW entity analyzes that the service requested by the service request of the terminal is free service;
the matching module is used for matching the service request with the preset free service;
the first processing module is used for carrying out Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address when the matching is successful; otherwise, the service request is ignored.
Wherein, the matching module includes:
the analysis unit is used for analyzing the uniform resource locator URL of the service request;
and the matching unit is used for matching the URL of the service request with the URL of the preset free service.
Wherein, the service processing device further comprises:
the second receiving module is used for receiving a service request sent by a PGW entity through a second physical interface; the second physical interface is a receiving interface when the service requested by the service request analyzed to the terminal by the PGW entity is not a free service;
and the second processing module is used for carrying out Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address.
In a seventh aspect, an embodiment of the present invention further provides a service processing method, which is applied to a packet data network gateway PGW entity, where the service processing method includes:
analyzing whether the service requested by the service request of the terminal is a free service or not;
if the service requested by the service request is a free service, sending the service request to a first physical interface of a Wireless Application Protocol Gateway (WAPGW) entity; the first physical interface is a target interface when the service requested by the service request analyzed to the terminal is a free service.
The service processing method further comprises the following steps:
if the service requested by the service request is not a free service, sending the service request to a second physical interface of the wireless application protocol gateway WAPGW entity; the second physical interface is a target interface when the service requested by the service request analyzed to the terminal is not a free service.
In an eighth aspect, an embodiment of the present invention further provides a service processing apparatus, applied to a packet data network gateway PGW entity, including:
the analysis module is used for analyzing whether the service requested by the service request of the terminal is a free service;
the system comprises a first sending module, a second sending module and a service processing module, wherein the first sending module is used for sending a service request to a first physical interface of a Wireless Application Protocol Gateway (WAPGW) entity when the service requested by the service request is free service; the first physical interface is a target interface when the service requested by the service request analyzed to the terminal is a free service.
The service processing device further comprises:
the second sending module is used for sending the service request to a second physical interface of the wireless application protocol gateway WAPGW entity when the service requested by the service request is not free service; the second physical interface is a target interface when the service requested by the service request analyzed to the terminal is not a free service.
In a ninth aspect, an embodiment of the present invention further provides a network element entity, including a memory, a processor, and a computer program stored in the memory and executable on the processor; the processor implements the service processing method as described above when executing the program.
In a tenth aspect, an embodiment of the present invention further provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements the steps of the service processing method described above.
The embodiment of the invention has the beneficial effects that:
in the embodiment of the invention, when a PGW entity receives a service request sent by a terminal, the service request is analyzed to obtain a first target address of the terminal, in order to avoid the problem that the first target address analyzed by the PGW entity is inconsistent with a target access address, the PGW entity encapsulates the analyzed first target address in the service request and forwards the service request to a WAP gateway entity, and the first target address of the WAP gateway entity carries out DNS analysis to obtain a corresponding IP address, so that the problem of traffic fraud is avoided, and the accuracy of traffic charging is improved.
Drawings
Fig. 1 shows a first flow diagram of a service processing method at the WAP gateway entity side according to the present invention;
FIG. 2 is a block diagram of a WAP gateway entity according to the present invention;
fig. 3 is a first flowchart illustrating a service processing method of a PGW entity according to the present invention;
fig. 4 is a block diagram of a PGW entity according to a first embodiment of the present invention;
fig. 5 is a flow chart of a service processing method at the WAP gateway entity side according to the present invention;
FIG. 6 is a block diagram of a WAP gateway entity of the present invention;
fig. 7 is a flowchart illustrating a second method for processing a service of a PGW entity according to the present invention;
FIG. 8 is a block diagram of a PGW entity according to a second embodiment of the present invention;
fig. 9 shows a block diagram of the structure of a network element entity of the present invention.
Detailed Description
Exemplary embodiments of the present invention will be described in more detail below with reference to the accompanying drawings. While exemplary embodiments of the invention are shown in the drawings, it should be understood that the invention can be embodied in various forms and should not be limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the invention to those skilled in the art.
As shown in fig. 1, an embodiment of the present invention provides a service processing method, which is applied to a wireless application protocol WAP gateway entity, and the method specifically includes the following steps:
step 101: and receiving a service request which is sent by a PGW entity and carries a first indication field.
The first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity. The PGW entity may be: the PGW function entity in the SAE-GW entity, which combines the SGW entity and the PGW entity, may also be an independent PGW entity. Further, the first indication field is used to indicate a first uniform resource locator URL of a first target address obtained by analyzing an initial service request of the terminal by the PGW entity. When the terminal has an initial service request, especially an HTTP request, the PGW entity obtains the URL of the target access address of the HTTP request by analyzing the seven-layer URL, can judge which service the HTTP request belongs to according to the target access address, and classifies the HTTP request into a corresponding charging service or a free service. In the embodiment of the present invention, in addition to the above resolving capability, the PGW entity further encapsulates the first destination address obtained by the resolving in the first indication field, and further encapsulates the first indication field in the initial service request to generate a new service request, and forwards the new service request to the WAP gateway entity.
Step 102: and performing Domain Name System (DNS) resolution according to the first indication field in the service request to obtain a corresponding IP address.
And after the WAP gateway entity receives the service request forwarded by the PGW entity, analyzing the service request. Because the service request is obtained by encapsulating the first target address for the initial service request, the WAP gateway carries out DNS analysis according to the first target address to obtain a corresponding IP address. Specifically, the WAP gateway entity obtains a target access address of the HTTP request by analyzing the seven-layer URL, and performs Domain Name System (DNS) query to obtain a corresponding IP address.
After step 102, further comprising: and forwarding the initial service request in the service request according to the IP address. The WAP gateway entity carries out DNS analysis on the service request to obtain a corresponding IP address, and forwards the HTTP request in the initial service request carried in the service request to the corresponding IP address.
Further, after step 101, the method further comprises: acquiring identification information of a first indication field in a service request; and if the identification information is inconsistent with the preset identification information, ignoring the service request. Specifically, after parsing out the first target address and encapsulating the first target address in the first indication field, the PGW entity inserts the first indication field in the header field of the initial service request.
Specifically, taking a PGW function entity in an SAE-GW entity as an example, it is assumed that an initial service request initiated by a terminal is the following request packet:
“GET/news.html http/1.1\r\n
SPHost:www.sina.com\r\n
Host:www.10086.com\r\n
\r\n”
and the SAE-GW entity does not consider that the SPhost is the Host during analysis, and cannot identify the Host, so that the next Host is matched with www.10086.com, and the service request is counted as a flow-free service when the content charging rule is matched. In order to avoid the occurrence of the phenomenon of fraudulent traffic at the terminal, in the embodiment of the present invention, after the SAE-GW entity resolves that the first target address is Host: www.10086.com, the first target address is encapsulated in the first indication field (or referred to as an indication message) and is inserted before the header field of the initial request message. Specifically, in order to facilitate the WAP gateway entity to identify the inserted indication message, the indication message needs to agree with a new identification information (Method) to distinguish the header field of the current HTTP request message, such as CMCC, and then the service request message is updated to the following message after the SAE-GW adds the first indication field:
“CMCC www.10086.com/news.html http/1.1\r\n
\r\n
GET/news.html http/1.1\r\n
SPHost:www.sina.com\r\n
Host:www.10086.com\r\n
\r\n”
when the WAP gateway entity analyzes the service request message, after the first indication field is identified, DNS analysis is carried out according to 'www.10086.com' in the first indication field to obtain a corresponding IP address. Further, in order to prevent the problem of traffic fraud caused by parsing out an erroneous indication field by the WAP gateway entity, when the WAP gateway entity recognizes that the Method of the header field packet is inconsistent with the preset Method, it also determines that the request packet is a fraud packet, and ignores the request packet.
Further, in order to further improve the possibility that the WAP gateway forwards the fraud packet, the SAE-GW further includes, in the new service request generated after parsing the initial service request: and the second indication field is used for indicating the message length of the initial service request of the terminal.
Specifically, in order to further improve the possibility that the WAP gateway forwards the spoofed message, after step 101, the method further includes: acquiring a first message length of an initial service request; and if the first message length is not consistent with the message length indicated by the second indication field, ignoring the service request.
Further, in order to further improve the possibility that the WAP gateway forwards the fraud packet, the SAE-GW further includes, in the new service request generated after parsing the initial service request: a third indication field for indicating a check random number.
Specifically, in order to further improve the possibility that the WAP gateway forwards the spoofed message, after step 101, the method further includes: acquiring a check random number indicated by a third indication field in the service request; and if the check random number is inconsistent with the preset check random number, ignoring the service request.
The second indication field and the third indication field may jointly verify the validity of the service request with the first indication field, and specifically, it is assumed that a service request message received by the WAP gateway entity is updated to be as follows:
“CMCC www.10086.com/news.html http/1.1\r\n
X-http-head-length:91\r\n
X-random-number:628036792\r\n
\r\n
GET/news.html http/1.1\r\n
SPHost:www.sina.com\r\n
Host:www.10086.com\r\n
\r\n”
when the WAP gateway entity analyzes the service request message, the initial request message, the first indication field, the second indication field and the third indication field are analyzed, and the WAP gateway entity can forward the specific HTTP request to www.10086.com if the second indication field and the third indication field are not considered in the process of analyzing the service request message.
If the second indication field and the third indication field are considered, in order to avoid the occurrence of the traffic fraud phenomenon, before the WAP gateway entity performs DNS resolution according to the first indication field, the WAP gateway entity further performs detection matching on the first message length of the original HTTP message obtained by resolving the initial request message, the message length indicated by the second indication field, and the preset check random number and the check random number indicated by the third indication field. If one of the two is different, the request message is determined to be a fraud message, and the request message is ignored.
It is worth pointing out that the second indication field and the third indication field may also be detected and determined separately, specifically, a first message length of the service request is obtained; and if the first message length is not consistent with the message length indicated by the second indication field, ignoring the service request. Or acquiring a preset check random number; and if the check random number is not consistent with the check random number indicated by the third indication field, ignoring the service request. The above detection method is similar to the above two joint detection methods, and therefore, the detailed description thereof is omitted.
In summary, after receiving the HTTP message forwarded by the SAE-GW entity, the WAP entity analyzes the HTTP header of CMCC by means of method, and performs DNS analysis according to the URL in the CMCC header request line. And the WAP gateway analyzes the URL in the request line of the initial HTTP message and performs DNS analysis. And if the first analyzed header field is not the HTTP header field with the method as the CMCC, performing exception calculation and performing packet loss processing. And if the analyzed actual HTTP length is inconsistent with the value of the second indication field (X-HTTP-head-length), abnormal calculation is carried out, and packet loss is processed. And if the random numbers indicated by the third indication field (X-random-number) of the same message are different, performing abnormal calculation and processing packet loss.
In the method of the embodiment of the invention, when a PGW entity receives a service request sent by a terminal, the service request is analyzed to obtain a first target address of the terminal, in order to avoid the problem that the first target address analyzed by the PGW entity is inconsistent with a target access address, the PGW entity encapsulates the analyzed first target address in the service request and forwards the service request to a WAP gateway entity, and the WAP gateway entity performs DNS analysis according to the first target address to obtain a corresponding IP address, so that the problem of traffic fraud is avoided, and the accuracy of traffic charging is improved.
As shown in fig. 2, an embodiment of the present invention further provides a service processing apparatus, which is applied to a wireless application protocol WAP gateway entity, and the service processing apparatus includes:
a receiving module 210, configured to receive a service request that is sent by a PGW entity and carries a first indication field; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity;
and the resolution module 220 is configured to perform Domain Name System (DNS) resolution according to the first indication field in the service request to obtain a corresponding IP address.
Wherein, the business processing device also comprises:
and the forwarding module is used for forwarding the initial service request in the service request according to the IP address.
Wherein, the business processing device also comprises:
the first acquisition module is used for acquiring the identification information of the first indication field in the service request;
and the first processing module is used for ignoring the service request if the identification information is inconsistent with the preset identification information.
Wherein, the service request further comprises: and the second indication field is used for indicating the message length of the initial service request of the terminal.
Wherein, the business processing device also comprises:
the second obtaining module is used for obtaining the first message length of the initial service request;
and the second processing module is used for ignoring the service request if the first message length is inconsistent with the message length indicated by the second indication field.
Wherein, the service request further comprises: a third indication field for indicating a check random number.
Wherein, the business processing device also comprises:
a third obtaining module, configured to obtain a check random number indicated by a third indication field in the service request;
and the third processing module is used for ignoring the service request if the check random number is inconsistent with the preset check random number.
It should be noted that the apparatus is an apparatus corresponding to the service processing method, and all implementation manners in the embodiment of the method are applicable to the embodiment of the apparatus, and the same technical effect can be achieved.
Further, the foregoing embodiment describes the service processing method and apparatus according to the embodiment of the present invention from a WAP gateway entity side, and the following embodiment describes the service processing method and apparatus according to the embodiment of the present invention from a PGW entity side with reference to the accompanying drawings.
An embodiment of the present invention provides a service processing method, which is applied to a packet data network gateway PGW entity, and as shown in fig. 3, the method specifically includes the following steps:
step 301: and sending a service request carrying the first indication field to a Wireless Application Protocol Gateway (WAPGW) entity.
The first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity. The PGW entity may be: the PGW function entity in the SAE-GW entity, which combines the SGW entity and the PGW entity, may also be an independent PGW entity.
Before step 301, the method further comprises: analyzing an initial service request of a terminal to obtain a first target address corresponding to the terminal; according to the first target address, a first indication field for indicating the first target address is generated.
Specifically, the step of generating a first indication field for indicating the first target address according to the first target address includes: a first indication field is generated for indicating a first Uniform Resource Locator (URL) of a first target address based on a first URL of the first target address. That is to say, the first indication field is used to indicate a first URL of a first destination address obtained by analyzing an initial service request of the terminal by the PGW entity. When the terminal has an initial service request, especially an HTTP request, the PGW entity obtains the URL of the target access address of the HTTP request by analyzing the seven-layer URL, can judge which service the HTTP request belongs to according to the target access address, and classifies the HTTP request into a corresponding charging service or a free service. In the embodiment of the present invention, in addition to the above resolving capability, the PGW entity further encapsulates the first destination address obtained by the resolving in the first indication field, and further encapsulates the first indication field in the initial service request to generate a new service request, and forwards the new service request to the WAP gateway entity.
Further, in order to further improve the possibility that the WAP gateway forwards the fraudulent message, before the step of sending the service request carrying the first indication field to the wireless application protocol WAP gateway entity, the method further includes: analyzing an initial service request of a terminal to obtain the message length of the initial service request; and generating a second indication field for indicating the message length of the initial service request according to the message length of the initial service request. After the PGW entity generates the second indication field, the PGW entity further encapsulates the second indication field in the initial service request, generates a new service request, and forwards the new service request to the WAP gateway entity.
Further, before the step of sending the service request carrying the first indication field to the wireless application protocol WAP gateway entity, the method further includes: acquiring a check random number for checking the message validity; and generating a third indication field according to the check random number. The random numbers of different flows have different values, wherein each flow corresponds to one TCP connection, that is, the random numbers of different TCP connections have different values, but the random numbers of different messages in each flow have the same value. After the PGW entity generates the third indication field, the PGW entity further encapsulates the third indication field in the initial service request, generates a new service request, and forwards the new service request to the WAP gateway entity.
Taking the PGW entity as the PGW functional entity in the SAE-GW entity as an example, the SAE-GW entity parses an HTTP message that needs to be groomed by the WAP gateway entity, generates a first indication field for the parsed target address, further calculates the length of the HTTP message, and records the length as the value of X-HTTP-head-length, generates a second indication field, randomly generates a random number X-random-number for each stream, and generates a third indication field. After the first indication field, the second indication field and the third indication field are generated, the three indication fields are inserted in front of a head field of the initial service request and are forwarded to the WAP gateway entity, so that the WAP gateway entity judges whether the initial service request is a service of a fraudulent flow.
In the service processing method of the embodiment of the invention, when receiving a service request sent by a terminal, a PGW entity analyzes the service request to obtain a first target address of the terminal, encapsulates the first target address in the service request and forwards the service request to a WAPGW entity, and the WAPGW entity performs DNS analysis according to the first target address to obtain a corresponding IP address, so as to avoid the problem of traffic fraud and improve the accuracy of traffic charging.
As shown in fig. 4, an embodiment of the present invention further provides a service processing apparatus, which is applied to a public data network gateway PGW entity, where the service processing apparatus includes:
a sending module 410, configured to send a service request carrying a first indication field to a wireless application protocol gateway, WAPGW, entity; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity.
Wherein, the business processing device also comprises:
the second analysis module is used for analyzing the initial service request of the terminal to obtain a first target address corresponding to the terminal;
the first generation module is used for generating a first indication field for indicating the first target address according to the first target address.
Wherein, the business processing device also comprises:
the third analysis module is used for analyzing the initial service request of the terminal to obtain the message length of the initial service request;
and the second generating module is used for generating a second indicating field for indicating the message length of the initial service request according to the message length of the initial service request.
Wherein, the business processing device also comprises:
a fourth obtaining module, configured to obtain a check random number used for checking validity of the packet;
and the third generation module is used for generating a third indication field according to the check random number.
It should be noted that the apparatus is an apparatus corresponding to the service processing method, and all implementation manners in the embodiment of the method are applicable to the embodiment of the apparatus, and the same technical effect can be achieved.
In the above, a way to solve the problem of traffic fraud caused by inconsistent processing principles of the PGW and the WAPGW in the prior art is described, and another way to solve the problem is described in the following embodiment.
Specifically, as shown in fig. 5, the service processing method, applied to a wireless application protocol gateway, WAPGW, entity, specifically includes the following steps:
step 501: and receiving a service request sent by a PGW entity through a first physical interface.
The first physical interface is a receiving interface when the PGW entity resolves the service request to the terminal that the requested service is a free service. That is to say, the WAPGW entity receives a free service and a non-free service through different physical interfaces, specifically, the WAPGW includes a first physical interface and a second physical interface, and the second physical interface is a receiving interface when the service requested by the service request analyzed to the terminal by the PGW entity is not a free service. Assuming that the IP address of the first physical interface of the WAPGW is "10.0.0.174" and the IP address of the second physical interface is "10.0.0.172", when the PGW entity resolves that the service request corresponds to a free service, the service request is forwarded to the first physical interface (10.0.0.174) of the WAPGW.
Step 502: and matching the service request with a preset free service.
After receiving the service request through the first physical interface (10.0.0.174), the WAPGW entity further parses the service request, and specifically, the step 502 may be implemented as follows: analyzing a Uniform Resource Locator (URL) of the service request; and matching the URL of the service request with the URL of the pre-configured free service. Specifically, URLs of all free services are stored in the WAPGW entity, and after a service request is received through the first physical interface, the URL carried in the service request is matched with the URL of the pre-stored free service.
Step 503: if the matching is successful, performing Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address; otherwise, the service request is ignored.
And if the URL carried by the service request is one of the prestored URLs of the free services, the matching is considered to be successful, the service request is confirmed to be the free service indeed, and the service request is subjected to DNS analysis to obtain a corresponding IP address. If the URL carried by the service request is not any one of the URLs of the free services, the service request is considered to be actually the non-free service, and the possibility of fraudulent traffic exists, the service request is ignored, so that the occurrence of fraudulent services is avoided.
That is to say, the PGW entity can send service requests of non-free services (or called charging messages) and free services to the WAPGW entity through different physical interfaces (different IP addresses), where URLs of all the free services are configured in advance, and after receiving the service request through the first physical interface, the service request is verified again, and the successful matching party can forward the service request, so as to avoid fraud.
The initial service request initiated by the terminal is assumed to be the following request message:
“GET/news.html http/1.1\r\n
SPHost:www.sina.com\r\n
Host:www.10086.com\r\n
\r\n”
and the SAE-GW entity does not consider that the SPhost is the Host during analysis, and cannot identify the Host, so that the next Host is matched with www.10086.com, and the service request is counted as a flow-free service when the content charging rule is matched. In order to avoid the occurrence of the phenomenon of fraudulent traffic at the terminal, in the embodiment of the present invention, after the SAE-GW entity resolves that the first target address is Host: www.10086.com, the service request is considered to be a free service, and the service request is forwarded to the physical interface with the address of "10.0.0.174" in the WAPGW entity, after receiving the HTTP message at the 10.0.0.174 interface, the WAPGW entity extracts the seven-layer URL "www.sina.com" as a forwarding basis to perform data matching, and since "www.sina.com" is not one of the URLs of the free service, the matching fails, and the WAPGW entity considers that the service request is fraudulent, and discards the message, so as to avoid the occurrence of fraudulent service.
Further, the method further comprises: and receiving a service request sent by a PGW entity through a second physical interface, and performing Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address. The second physical interface is a receiving interface when the PGW entity analyzes that the service requested by the service request to the terminal is not a free service.
Specifically, if the PGW entity resolves that the service request is a non-free service, the service request is forwarded to a second physical interface with an address of "10.0.0.172" in the WAPGE entity, and the WAPGW entity directly performs DNS resolution on the service request to obtain a corresponding IP address, and forwards an HTTP request in the initial service request carried in the service request to the corresponding IP address.
In the method of the embodiment of the invention, the WAPGW entity receives the service request through the first physical interface and then analyzes the service request, if the service request is analyzed to be free service, DNS analysis is carried out on the service request, otherwise, the service request is considered to be a fraud request, and packet loss processing is carried out on the fraud request, so that the problem of traffic fraud is avoided, and the accuracy of traffic charging is improved.
As shown in fig. 6, an embodiment of the present invention further provides a service processing apparatus, which is applied to a wireless application protocol gateway, WAPGW, entity, where the service processing apparatus includes:
a first receiving module 610, configured to receive, through a first physical interface, a service request sent by a PGW entity; the first physical interface is a receiving interface when the PGW entity analyzes that the service requested by the service request of the terminal is free service;
a matching module 620, configured to match the service request with a preconfigured free service;
the first processing module 630 is configured to, when matching is successful, perform domain name DNS resolution on the service request to obtain a corresponding IP address; otherwise, the service request is ignored.
Wherein, the matching module includes:
the analysis unit is used for analyzing the uniform resource locator URL of the service request;
and the matching unit is used for matching the URL of the service request with the URL of the preset free service.
Wherein, the service processing device further comprises:
the second receiving module is used for receiving a service request sent by a PGW entity through a second physical interface; the second physical interface is a receiving interface when the service requested by the service request analyzed to the terminal by the PGW entity is not a free service;
and the second processing module is used for carrying out Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address. It should be noted that the apparatus is an apparatus corresponding to the service processing method, and all implementation manners in the embodiment of the method are applicable to the embodiment of the apparatus, and the same technical effect can be achieved.
Further, the foregoing embodiment describes the service processing method and apparatus according to the embodiment of the present invention from the WAPGW entity side, and the following embodiment describes the service processing method and apparatus according to the embodiment of the present invention from the PGW entity side with reference to the drawings.
An embodiment of the present invention provides a service processing method, which is applied to a packet data network gateway PGW entity, and as shown in fig. 7, the method specifically includes the following steps:
step 701: and analyzing whether the service requested by the service request of the terminal is a free service.
Wherein, the PGW entity may be: the PGW function entity in the SAE-GW entity, which combines the SGW entity and the PGW entity, may also be an independent PGW entity. Specifically, when an HTTP request occurs, the PGW entity obtains the URL of the target access address of the HTTP request by analyzing the seven-layer URL, and can determine which type of service the HTTP request belongs to according to the target access address, and classify the HTTP request into a corresponding charging service or a free service.
Step 702: and if the service requested by the service request is free service, sending the service request to a first physical interface of a Wireless Application Protocol Gateway (WAPGW) entity.
The first physical interface is a target interface when the service requested by the service request analyzed to the terminal is a free service. That is to say, the WAPGW entity receives a free service and a non-free service through different physical interfaces, specifically, the WAPGW includes a first physical interface and a second physical interface, and the second physical interface is a receiving interface when the service requested by the service request analyzed to the terminal by the PGW entity is not a free service. Assuming that the IP address of the first physical interface of the WAPGW is "10.0.0.174" and the IP address of the second physical interface is "10.0.0.172", when the PGW entity resolves that the service request corresponds to a free service, the service request is forwarded to the first physical interface (10.0.0.174) of the WAPGW.
After step 701, further comprising: and if the service requested by the service request is not a free service, sending the service request to a second physical interface of the Wireless Application Protocol Gateway (WAPGW) entity. The second physical interface is a target interface when the service requested by the service request analyzed to the terminal is not a free service. That is to say, if the PGW entity resolves that the service request is a non-free service, the service request is forwarded to the second physical interface with an address of "10.0.0.172" in the WAPGE entity, and the WAPGW entity directly performs DNS resolution on the service request to obtain a corresponding IP address, and forwards the HTTP request in the initial service request carried in the service request to the corresponding IP address.
In the method of the embodiment of the invention, when a PGW entity receives a service request sent by a terminal, whether the service request is a free service is analyzed, if the service request is the free service, the service request is forwarded to a first physical interface of the WAPGW entity, if the WAPGW entity analyzes that the service request is also the free service, DNS analysis is carried out on the service request, otherwise, the service request is considered as a fraud request, packet loss processing is carried out on the fraud request, so that the problem of traffic fraud is avoided, and the accuracy of traffic charging is improved.
As shown in fig. 8, an embodiment of the present invention further provides a service processing apparatus, which is applied to a packet data network gateway PGW entity, where the service processing apparatus includes:
a first parsing module 810, configured to parse whether a service requested by a service request of a terminal is a free service;
a first sending module 820, configured to send a service request to a first physical interface of a wireless application protocol gateway, WAPGW, entity when a service requested by the service request is a free service; the first physical interface is a target interface when the service requested by the service request analyzed to the terminal is a free service.
Wherein, the service processing device further comprises:
the second sending module is used for sending the service request to a second physical interface of the wireless application protocol gateway WAPGW entity when the service requested by the service request is not free service; the second physical interface is a target interface when the service requested by the service request analyzed to the terminal is not a free service.
It should be noted that the apparatus is an apparatus corresponding to the service processing method, and all implementation manners in the embodiment of the method are applicable to the embodiment of the apparatus, and the same technical effect can be achieved.
Further, an embodiment of the present invention further provides a network element entity, including a memory, a processor, and a computer program stored in the memory and executable on the processor; the processor executes the program to realize the service processing method. And a computer-readable storage medium, on which a computer program is stored, which when executed by a processor implements the steps of the service processing method described above.
As shown in fig. 9, an embodiment of the present invention further provides a network element entity, including: and a processor 900 for reading the program in the memory 920 and executing the corresponding process. A transceiver 910 for receiving and transmitting data under the control of the processor 900.
In fig. 9, among other things, the bus architecture may include any number of interconnected buses and bridges, with one or more processors, represented by processor 900, and various circuits, represented by memory 920, being linked together. The bus architecture may also link together various other circuits such as peripherals, voltage regulators, power management circuits, and the like, which are well known in the art, and therefore, will not be described any further herein. The bus interface provides an interface. The transceiver 910 may be a number of elements, including a transmitter and a transceiver, providing a means for communicating with various other apparatus over a transmission medium. The processor 900 is responsible for managing the bus architecture and general processing, and the memory 920 may store data used by the processor 900 in performing operations.
The processor 900 is responsible for managing the bus architecture and general processing, and the memory 920 may store data used by the processor 900 in performing operations.
Specifically, in the first aspect, when the network element entity is applied to a wireless application protocol WAP gateway entity, the transceiver 910 is specifically configured to: receiving a service request which is sent by a PGW entity and carries a first indication field; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity.
The processor 900 is configured to: and performing Domain Name System (DNS) resolution according to the first indication field in the service request to obtain a corresponding IP address.
The processor 900 is further configured to: and forwarding the initial service request in the service request according to the IP address.
Wherein the processor 900 is further configured to: acquiring identification information of a first indication field in a service request;
and if the identification information is inconsistent with the preset identification information, ignoring the service request.
Wherein the service request further comprises: and the second indication field is used for indicating the message length of the initial service request of the terminal.
The processor 900 is further configured to: acquiring a first message length of an initial service request;
and if the first message length is not consistent with the message length indicated by the second indication field, ignoring the service request.
Wherein, the service request further comprises: a third indication field for indicating a check random number.
The processor 900 is further configured to: acquiring a check random number indicated by a third indication field in the service request;
and if the check random number is inconsistent with the preset check random number, ignoring the service request.
In a second aspect, when the network element entity is applied to a public data network gateway PGW entity, the transceiver 910 is specifically configured to: sending a service request carrying a first indication field to a Wireless Application Protocol Gateway (WAPGW) entity; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of the terminal by the PGW entity.
The processor 900 is configured to: analyzing an initial service request of a terminal to obtain a first target address corresponding to the terminal;
according to the first target address, a first indication field for indicating the first target address is generated.
The processor 900 is configured to: analyzing an initial service request of a terminal to obtain the message length of the initial service request;
and generating a second indication field for indicating the message length of the initial service request according to the message length of the initial service request.
The processor 900 is configured to: acquiring a check random number for checking the message validity;
and generating a third indication field according to the check random number.
When receiving a service request sent by a terminal, a PGW entity of the embodiment of the present invention parses the service request to obtain a first target address of the terminal, and in order to avoid a problem that the first target address parsed by the PGW entity is inconsistent with a target access address, the PGW entity encapsulates the parsed first target address in the service request and forwards the service request to a WAP gateway entity, and the WAP gateway entity performs DNS resolution according to the first target address, so as to avoid a problem of traffic fraud and improve accuracy of traffic charging.
In a third aspect, when the network element entity is applied to a wireless application protocol WAP gateway entity, the transceiver 910 is specifically configured to: receiving a service request sent by a PGW entity through a first physical interface; the first physical interface is a receiving interface when the PGW entity resolves the service request to the terminal that the requested service is a free service.
The processor 900 is configured to: matching the service request with a preset free service;
if the matching is successful, performing Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address; otherwise, the service request is ignored.
The processor 900 is configured to: analyzing a Uniform Resource Locator (URL) of the service request;
and matching the URL of the service request with the URL of the pre-configured free service.
The transceiver 910 is configured to: receiving a service request sent by a PGW entity through a second physical interface; the second physical interface is a receiving interface when the service requested by the service request analyzed to the terminal by the PGW entity is not a free service;
the processor 900 is configured to: and performing Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address.
In a fourth aspect, when the network element entity is applied to a public data network gateway PGW entity, the processor 900 is specifically configured to: analyzing whether the service requested by the service request of the terminal is a free service or not;
the transceiver 910 is configured to: if the service requested by the service request is a free service, sending the service request to a first physical interface of a Wireless Application Protocol Gateway (WAPGW) entity; wherein the first physical interface is a target interface when the service requested by the service request analyzed to the terminal is free service
The transceiver 910 is further configured to: if the service requested by the service request is not a free service, sending the service request to a second physical interface of the wireless application protocol gateway WAPGW entity; the second physical interface is a target interface when the service requested by the service request analyzed to the terminal is not a free service.
The WAPGW entity of the embodiment of the invention receives the service request through the first physical interface, analyzes the service request, if the service request is analyzed to be free service, DNS analysis is carried out on the service request, otherwise, the service request is considered to be a fraud request, and packet loss processing is carried out on the fraud request, so that the problem of traffic fraud is avoided, and the accuracy of traffic charging is improved.
In the several embodiments provided in the present application, it should be understood that the disclosed method and apparatus may be implemented in other ways. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the units is only one logical division, and other divisions may be realized in practice, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may be physically included alone, or two or more units may be integrated into one unit. The integrated unit can be realized in a form of hardware, or in a form of hardware plus a software functional unit.
The integrated unit implemented in the form of a software functional unit may be stored in a computer readable storage medium. The software functional unit is stored in a storage medium and includes several instructions to enable a computer device (which may be a personal computer, a server, or a network device) to execute some steps of the transceiving method according to various embodiments of the present invention. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.
While the preferred embodiments of the present invention have been described, it will be understood by those skilled in the art that various changes and modifications may be made without departing from the spirit and scope of the invention as defined in the following claims.

Claims (36)

1. A service processing method is applied to a Wireless Application Protocol Gateway (WAPGW) entity, and is characterized in that the service processing method comprises the following steps:
receiving a service request which is sent by a PGW entity and carries a first indication field; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of a terminal by the PGW entity;
and performing Domain Name System (DNS) resolution according to the first indication field in the service request to obtain a corresponding IP address.
2. The service processing method according to claim 1, wherein after the step of performing Domain Name System (DNS) resolution according to the first indication field in the service request to obtain the corresponding IP address, the method further comprises:
and forwarding the initial service request in the service request according to the IP address.
3. The service processing method according to claim 1, wherein after the step of receiving the service request carrying the first indication field sent by the PGW entity, the method further comprises:
acquiring identification information of a first indication field in the service request;
and if the identification information is inconsistent with the preset identification information, ignoring the service request.
4. The service processing method of claim 1, wherein the service request further comprises: and the second indication field is used for indicating the message length of the initial service request of the terminal.
5. The service processing method according to claim 4, wherein after the step of receiving the service request carrying the first indication field and sent by the PGW entity, the method further comprises:
acquiring a first message length of the initial service request;
and if the first message length is not consistent with the message length indicated by the second indication field, ignoring the service request.
6. The service processing method of claim 1, wherein the service request further comprises: a third indication field for indicating a check random number.
7. The service processing method according to claim 6, wherein after the step of receiving the service request carrying the first indication field and sent by the PGW entity, the method further comprises:
acquiring a check random number indicated by a third indication field in the service request;
and if the check random number is inconsistent with a preset check random number, ignoring the service request.
8. A service processing apparatus, applied to a wireless application protocol gateway, WAPGW, entity, the service processing apparatus comprising:
the receiving module is used for receiving a service request which is sent by a packet data network gateway (PGW) entity and carries a first indication field; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of a terminal by the PGW entity;
and the resolution module is used for performing Domain Name System (DNS) resolution according to the first indication field in the service request to obtain a corresponding IP address.
9. The traffic processing apparatus according to claim 8, wherein the traffic processing apparatus further comprises:
and the forwarding module is used for forwarding the initial service request in the service request according to the IP address.
10. The traffic processing apparatus according to claim 8, wherein the traffic processing apparatus further comprises:
a first obtaining module, configured to obtain identification information of a first indication field in the service request;
and the first processing module is used for ignoring the service request if the identification information is inconsistent with preset identification information.
11. The service processing apparatus of claim 8, wherein the service request further comprises: and the second indication field is used for indicating the message length of the initial service request of the terminal.
12. The traffic processing apparatus according to claim 11, wherein the traffic processing apparatus further comprises:
a second obtaining module, configured to obtain a first message length of the initial service request;
and the second processing module is used for ignoring the service request if the first message length is not consistent with the message length indicated by the second indication field.
13. The service processing apparatus of claim 8, wherein the service request further comprises: a third indication field for indicating a check random number.
14. The traffic processing apparatus according to claim 13, wherein the traffic processing apparatus further comprises:
a third obtaining module, configured to obtain a check random number indicated by a third indication field in the service request;
and the third processing module is used for ignoring the service request if the check random number is inconsistent with a preset check random number.
15. A service processing method is applied to a packet data network gateway (PGW) entity, and is characterized in that the service processing method comprises the following steps:
sending a service request carrying a first indication field to a Wireless Application Protocol Gateway (WAPGW) entity; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of a terminal by the PGW entity.
16. The service processing method according to claim 15, wherein before the step of sending the service request carrying the first indication field to the wireless application protocol gateway, WAPGW, entity, the method further comprises:
analyzing an initial service request of a terminal to obtain a first target address corresponding to the terminal;
and generating a first indication field for indicating the first target address according to the first target address.
17. The method of claim 15, wherein the first indication field further carries an identification information.
18. The service processing method according to claim 15, wherein before the step of sending the service request carrying the first indication field to the wireless application protocol gateway, WAPGW, entity, the method further comprises:
analyzing an initial service request of a terminal to obtain the message length of the initial service request;
and generating a second indication field for indicating the message length of the initial service request according to the message length of the initial service request.
19. The service processing method according to claim 15, wherein before the step of sending the service request carrying the first indication field to the wireless application protocol gateway, WAPGW, entity, the method further comprises:
acquiring a check random number for checking the message validity;
and generating a third indication field according to the check random number.
20. A service processing device applied to a packet data network gateway (PGW) entity is characterized in that the service processing device comprises:
a sending module, configured to send a service request carrying a first indication field to a Wireless Application Protocol Gateway (WAPGW) entity; the first indication field is used for indicating a first target address obtained by analyzing an initial service request of a terminal by the PGW entity.
21. The traffic processing apparatus of claim 20, wherein the traffic processing apparatus further comprises:
the second analysis module is used for analyzing the initial service request of the terminal to obtain a first target address corresponding to the terminal;
and the first generation module is used for generating a first indication field for indicating the first target address according to the first target address.
22. The device of claim 20, wherein the first indication field further carries an identification information.
23. The traffic processing apparatus of claim 20, wherein the traffic processing apparatus further comprises:
the third analysis module is used for analyzing the initial service request of the terminal to obtain the message length of the initial service request;
and the second generating module is used for generating a second indicating field for indicating the message length of the initial service request according to the message length of the initial service request.
24. The traffic processing apparatus of claim 20, wherein the traffic processing apparatus further comprises:
a fourth obtaining module, configured to obtain a check random number used for checking validity of the packet;
and the third generation module is used for generating a third indication field according to the check random number.
25. A service processing method is applied to a Wireless Application Protocol Gateway (WAPGW) entity, and is characterized in that the service processing method comprises the following steps:
receiving a service request sent by a PGW entity through a first physical interface; the first physical interface is a receiving interface when the PGW entity resolves the service request of the terminal that the requested service is a free service;
matching the service request with a preset free service;
if the matching is successful, performing Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address; otherwise, the service request is ignored.
26. The service processing method of claim 25, wherein the step of matching the service request with a pre-configured free service comprises:
analyzing a Uniform Resource Locator (URL) of the service request;
and matching the URL of the service request with a preset URL of a free service.
27. The traffic processing method according to claim 25, wherein said method further comprises:
receiving a service request sent by a PGW entity through a second physical interface; the second physical interface is a receiving interface when the service requested by the service request analyzed to the terminal by the PGW entity is not a free service;
and performing Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address.
28. A service processing device applied to a Wireless Application Protocol Gateway (WAPGW) entity is characterized by comprising:
the first receiving module is used for receiving a service request sent by a PGW entity through a first physical interface; the first physical interface is a receiving interface when the PGW entity resolves the service request of the terminal that the requested service is a free service;
the matching module is used for matching the service request with a preset free service;
the first processing module is used for carrying out Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address when the matching is successful; otherwise, the service request is ignored.
29. The traffic processing apparatus of claim 28, wherein the matching module comprises:
the analysis unit is used for analyzing the uniform resource locator URL of the service request;
and the matching unit is used for matching the URL of the service request with the URL of the preset free service.
30. The traffic processing apparatus of claim 28, further comprising:
the second receiving module is used for receiving a service request sent by a PGW entity through a second physical interface; the second physical interface is a receiving interface when the service requested by the service request analyzed to the terminal by the PGW entity is not a free service;
and the second processing module is used for carrying out Domain Name System (DNS) analysis on the service request to obtain a corresponding IP address.
31. A service processing method is applied to a packet data network gateway (PGW) entity, and is characterized in that the service processing method comprises the following steps:
analyzing whether the service requested by the service request of the terminal is a free service or not;
if the service requested by the service request is a free service, sending the service request to a first physical interface of a Wireless Application Protocol Gateway (WAPGW) entity; the first physical interface is a target interface when the service requested by the service request analyzed to the terminal is a free service.
32. The service processing method of claim 31, wherein after the step of analyzing whether the service requested by the service request of the terminal is a free service, the method further comprises:
if the service requested by the service request is not a free service, sending the service request to a second physical interface of a Wireless Application Protocol Gateway (WAPGW) entity; and the second physical interface is a target interface when the service requested by the service request analyzed to the terminal is not a free service.
33. A service processing device applied to a packet data network gateway (PGW) entity is characterized by comprising:
the analysis module is used for analyzing whether the service requested by the service request of the terminal is a free service;
a first sending module, configured to send the service request to a first physical interface of a wireless application protocol gateway, WAPGW, entity when a service requested by the service request is a free service; the first physical interface is a target interface when the service requested by the service request analyzed to the terminal is a free service.
34. The traffic processing apparatus of claim 33, further comprising:
a second sending module, configured to send the service request to a second physical interface of a wireless application protocol gateway WAPGW entity when the service requested by the service request is not a free service; and the second physical interface is a target interface when the service requested by the service request analyzed to the terminal is not a free service.
35. A network element entity comprising a memory, a processor and a computer program stored on said memory and executable on said processor; characterized in that the processor implements the traffic processing method according to any of claims 1 to 7, 15 to 19, 25 to 27 or 31 to 32 when executing the program.
36. A computer-readable storage medium, on which a computer program is stored, which program, when being executed by a processor, carries out the steps of the traffic processing method according to any one of claims 1 to 7, 15 to 19, 25 to 27 or 31 to 32.
CN201710851657.2A 2017-09-19 2017-09-19 Service processing method, device, network element entity and computer readable storage medium Active CN109525682B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710851657.2A CN109525682B (en) 2017-09-19 2017-09-19 Service processing method, device, network element entity and computer readable storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710851657.2A CN109525682B (en) 2017-09-19 2017-09-19 Service processing method, device, network element entity and computer readable storage medium

Publications (2)

Publication Number Publication Date
CN109525682A CN109525682A (en) 2019-03-26
CN109525682B true CN109525682B (en) 2021-08-06

Family

ID=65767753

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710851657.2A Active CN109525682B (en) 2017-09-19 2017-09-19 Service processing method, device, network element entity and computer readable storage medium

Country Status (1)

Country Link
CN (1) CN109525682B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109996200B (en) * 2017-12-31 2021-05-04 中国移动通信集团四川有限公司 Method, device, equipment and medium for preventing flow fraud
CN113726897B (en) * 2021-09-01 2024-04-19 马上消费金融股份有限公司 Data processing method, device and equipment

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102651862A (en) * 2011-02-23 2012-08-29 中国移动通信集团公司 IP (Internet Protocol) address configuration method of WAP (Wireless Application Protocol) gateway and equipment thereof
CN103686624A (en) * 2012-09-12 2014-03-26 中国移动通信集团公司 Message pushing method and device and service platform
CN105191478A (en) * 2013-11-29 2015-12-23 华为技术有限公司 Message transmission method, apparatus and gateway device
CN105516165A (en) * 2015-12-22 2016-04-20 华为技术有限公司 Method, device and system for identifying illegal proxy for charging fraud

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2792111A1 (en) * 2011-12-15 2014-10-22 Telefonaktiebolaget L M Ericsson (publ) Method and network node for handling tcp traffic
US20160065456A1 (en) * 2014-09-03 2016-03-03 Alcatel Lucent System and method providing service chaining in a mobile network

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102651862A (en) * 2011-02-23 2012-08-29 中国移动通信集团公司 IP (Internet Protocol) address configuration method of WAP (Wireless Application Protocol) gateway and equipment thereof
CN103686624A (en) * 2012-09-12 2014-03-26 中国移动通信集团公司 Message pushing method and device and service platform
CN105191478A (en) * 2013-11-29 2015-12-23 华为技术有限公司 Message transmission method, apparatus and gateway device
CN105516165A (en) * 2015-12-22 2016-04-20 华为技术有限公司 Method, device and system for identifying illegal proxy for charging fraud

Also Published As

Publication number Publication date
CN109525682A (en) 2019-03-26

Similar Documents

Publication Publication Date Title
US11399288B2 (en) Method for HTTP-based access point fingerprint and classification using machine learning
CN107124430B (en) Page hijacking monitoring method, device, system and storage medium
US11606439B2 (en) Exit node benchmark feature
US9379952B2 (en) Monitoring NAT behaviors through URI dereferences in web browsers
CN111294798B (en) Data interaction method, device, terminal equipment and medium
CN109996201B (en) Network access method and network equipment
WO2014000303A1 (en) Method for receiving message, and deep packet inspection device and system
CN108063833B (en) HTTP DNS analysis message processing method and device
CN110769009B (en) User identity authentication method and system
CN108429739B (en) Method, system and terminal equipment for identifying honeypots
CN111917900A (en) Request processing method and device for domain name proxy
CN105393247A (en) Webpage optimization device and method
US10033830B2 (en) Requesting web pages and content rating information
CN103685584A (en) Method and system of resisting domain name hijacking based on tunnelling
CN109525682B (en) Service processing method, device, network element entity and computer readable storage medium
US20090041013A1 (en) Dynamically Assigning A Policy For A Communication Session
CN103139758B (en) Mobile Socket class application system, server, method and WAP gateway
CN112311722A (en) Access control method, device, equipment and computer readable storage medium
WO2017020597A1 (en) Resource cache method and apparatus
CN112491836B (en) Communication system, method, device and electronic equipment
CN112398796B (en) Information processing method, device, equipment and computer readable storage medium
CN103533001A (en) Communication method and communication system based on HTTP multi-proxy, and intermediate proxy server
JP2014523671A (en) Assessing the overall performance of interactive application services
CN111130993B (en) Information extraction method and device and readable storage medium
CN113179317B (en) Test system and method for content rewriting device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant