CN109787951A - A kind of network data access method, device and electronic equipment - Google Patents

A kind of network data access method, device and electronic equipment Download PDF

Info

Publication number
CN109787951A
CN109787951A CN201811400599.2A CN201811400599A CN109787951A CN 109787951 A CN109787951 A CN 109787951A CN 201811400599 A CN201811400599 A CN 201811400599A CN 109787951 A CN109787951 A CN 109787951A
Authority
CN
China
Prior art keywords
domain name
address
client
server
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201811400599.2A
Other languages
Chinese (zh)
Other versions
CN109787951B (en
Inventor
吴岩
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing QIYI Century Science and Technology Co Ltd
Original Assignee
Beijing QIYI Century Science and Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing QIYI Century Science and Technology Co Ltd filed Critical Beijing QIYI Century Science and Technology Co Ltd
Priority to CN201811400599.2A priority Critical patent/CN109787951B/en
Publication of CN109787951A publication Critical patent/CN109787951A/en
Application granted granted Critical
Publication of CN109787951B publication Critical patent/CN109787951B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The embodiment of the invention provides a kind of network data access method, device and electronic equipments.The method is applied to client, comprising: firstly, obtaining the first URL request for being used for access target network data;Secondly, determining target proxy IP address;Then, based on target proxy IP address, the HTTPS request for carrying the first domain name and routing information in the first URL request is sent to destination server, so that destination server is after receiving HTTPS request, it determines corresponding second domain name of the first domain name, based on the domain name system DNS server in corporate intranet, determines the corresponding IP address of the second domain name, access IP address obtains the corresponding target network data of routing information, and feeds back to client;Finally, receiving the target network data of destination server feedback.Being able to achieve using the embodiment of the present invention prevents HTTP from kidnapping kidnaps with domain name mapping, to access the purpose of effective network data.

Description

A kind of network data access method, device and electronic equipment
Technical field
The present invention relates to internet areas, more particularly to a kind of network data access method, device and electronic equipment.
Background technique
With the popularity of the internet, user carries out various network data access using client with can be convenient.For example, can To use the related content of searching class client-side search keyword, or use video playback class client viewing network video Deng.The client includes the client of desktop version and the client of webpage version.Network data access is carried out using client Process may is that user utilizes HTTP (hypertext transfer protocol, Hyper text transfer) agreement in the client The URL (Uniform Resource Locator, uniform resource locator) for accessing network data is submitted to request, by client Local DNS (Domain Name System, the domain name system) resolver in end by the domain name in the URL request, is converted into network (Internet Protocol, the Internet protocol) address IP that can identify simultaneously returns to client, and client receives the IP Behind address, the IP address is accessed, obtains corresponding data.
But since http protocol is a kind of plaintext agreement, it is possible to be kidnapped, i.e., HTTP message content is illegally gone back Original or user are tampered by the web site contents of HTTP request, and may cause client can not access network data, even Lead to user sensitive information leakage or property loss;Also, the DNS resolver of client local is provided by operator, is held Easily be held as a hostage, which may return to client for the IP address after abduction, then client according to the IP address into When row network accesses, it equally will appear the above problem.
Therefore, how to prevent from HTTP from kidnapping to kidnap with domain name mapping, be urgently to be resolved to access effective network data The problem of.
Summary of the invention
The embodiment of the present invention is designed to provide a kind of method, apparatus for preventing Domain Hijacking and electronic equipment, with reality It now prevents from HTTP from kidnapping to kidnap with domain name mapping, to access the purpose of effective network data.Specific technical solution is as follows:
In a first aspect, being applied to client, the method the embodiment of the invention provides a kind of network data access method Include:
It obtains and is requested for the first uniform resource position mark URL of access target network data;Wherein, the first URL The first domain name and routing information are carried in request;
Determine target proxy internet protocol address;Wherein, the target proxy IP address is belonging to the client Enterprise is set to the IP address of the destination server on internet, and the destination server is for acting on behalf of client access institute State the corresponding server of the first domain name;
Based on the target proxy IP address, the transmission of Xiang Suoshu destination server is carried in first URL request The Hyper text transfer security protocol HTTPS request of first domain name and routing information, so that the destination server is receiving After the HTTPS request, corresponding second domain name of the first domain name is determined, based on the domain name system DNS server in corporate intranet, It determines the corresponding IP address of second domain name, accesses the IP address, obtain the corresponding target network number of the routing information According to, and feed back to the client;Second domain name are as follows: in the corporate intranet, the corresponding service of first domain name The Intranet domain name of device;
Receive the target network data of the destination server feedback.
Optionally, described to be based on the target proxy IP address, the transmission of Xiang Suoshu destination server carries described first The Hyper text transfer security protocol HTTPS request of the first domain name and routing information in URL request, comprising:
By the target proxy IP address be inserted into after the protocol information of first URL request and the first domain name it Before, and the protocol information is replaced with into HTTPS agreement, obtain the second URL request;
The corresponding HTTPS request of second URL request is constructed, the purpose IP address of the HTTPS request is the mesh Agent IP address is marked, request content is the first domain name and routing information of first URL request;
The HTTPS request is sent to the destination server with the target proxy IP address.
Optionally, the determining target proxy internet protocol address, comprising:
Determine the attribute information of the client;
In preset multiple agent IP address, the determining and matched target proxy IP address of the attribute information.
Optionally, the determining target proxy internet protocol address, comprising:
Utilize the corresponding server of HTTPS protocol access preset IP address;
Receive the target proxy IP address of the corresponding server push of the preset IP address;Wherein, the default IP The corresponding server in location determines the attribute information of the client after the access for receiving the client, preset more It is determining with the matched target proxy IP address of the attribute information in a agent IP address, and by the target proxy IP address It is pushed to the client.
Second aspect, the embodiment of the invention provides a kind of network data access methods, are applied to destination server, described Destination server is the server that client owned enterprise is set on internet, and for acting on behalf of the client access first The corresponding server of domain name, the IP address of the destination server are target proxy IP address, which comprises
Receive the HTTPS request that the client is sent;Wherein, the HTTPS request is that the client is being visited After the first URL request for asking target network data, sent based on the target proxy IP address to the destination server, institute It states the first URL request and carries the first domain name and routing information, first domain name and path are carried in the HTTPS request Information;
Determine corresponding second domain name of the first domain name;Wherein, second domain name are as follows: in corporate intranet, described first The Intranet domain name of the corresponding server of domain name;
Based on the dns server in the corporate intranet, the corresponding IP address of second domain name is determined;
The IP address is accessed, obtains the corresponding target network data of the routing information, and feed back to the client.
Optionally, corresponding second domain name of first domain name of determination, comprising:
Based on preset domain name corresponding relationship, corresponding second domain name of first domain name is determined;Wherein, domain name pair It should be related to for characterizing the domain name in URL request, the Intranet domain name of server corresponding with the domain name in the corporate intranet Mapping relations.
The third aspect, the embodiment of the invention provides a kind of network data access mechanisms, are applied to client, described device Include:
Module is obtained, for obtaining the first uniform resource position mark URL request for being used for access target network data;Its In, the first domain name and routing information are carried in first URL request;
Determining module, for determining target proxy internet protocol address;Wherein, the target proxy IP address is institute The IP address for the destination server that client owned enterprise is set on internet is stated, the destination server is described for acting on behalf of Client accesses the corresponding server of first domain name;
Sending module, for being based on the target proxy IP address, the transmission of Xiang Suoshu destination server carries described the The Hyper text transfer security protocol HTTPS request of the first domain name and routing information in one URL request, so that the target takes Device be engaged in after receiving the HTTPS request, corresponding second domain name of the first domain name is determined, based on the domain name system in corporate intranet System dns server, determines the corresponding IP address of second domain name, accesses the IP address, and it is corresponding to obtain the routing information Target network data, and feed back to the client;Second domain name are as follows: in the corporate intranet, first domain The Intranet domain name of the corresponding server of name;
Receiving module, for receiving the target network data of the destination server feedback.
Optionally, the sending module, is specifically used for:
By the target proxy IP address be inserted into after the protocol information of first URL request and the first domain name it Before, and the protocol information is replaced with into HTTPS agreement, obtain the second URL request;
The corresponding HTTPS request of second URL request is constructed, the purpose IP address of the HTTPS request is the mesh Agent IP address is marked, request content is the first domain name and routing information of first URL request;
The HTTPS request is sent to the destination server with the target proxy IP address.
Optionally, the determining module, is specifically used for:
Determine the attribute information of the client;
In preset multiple agent IP address, the determining and matched target proxy IP address of the attribute information.
Optionally, the determining module, is specifically used for:
Utilize the corresponding server of HTTPS protocol access preset IP address;
Receive the target proxy IP address of the corresponding server push of the preset IP address;Wherein, the default IP The corresponding server in location determines the attribute information of the client after the access for receiving the client, preset more It is determining with the matched target proxy IP address of the attribute information in a agent IP address, and by the target proxy IP address It is pushed to the client.
Fourth aspect, the embodiment of the invention provides a kind of network data access mechanisms, are applied to destination server, described Destination server is the server that client owned enterprise is set on internet, and for acting on behalf of the client access first The IP address of the corresponding server of domain name, the destination server is target proxy IP address, and described device includes:
Receiving module, the HTTPS request sent for receiving the client;Wherein, the HTTPS request is the visitor Family end is taken based on the target proxy IP address to the target after the first URL request for obtaining access target network data It is engaged in what device was sent, first URL request carries the first domain name and routing information, carries in the HTTPS request described First domain name and routing information;
First determining module, for determining corresponding second domain name of the first domain name;Wherein, second domain name are as follows: looking forward to In the industry in net, the Intranet domain name of the corresponding server of first domain name;
Second determining module, for determining that second domain name is corresponding based on the dns server in the corporate intranet IP address;
Feedback module obtains the corresponding target network data of the routing information, and feed back for accessing the IP address To the client.
Optionally, first determining module, is specifically used for:
Based on preset domain name corresponding relationship, corresponding second domain name of first domain name is determined;Wherein, domain name pair It should be related to for characterizing the domain name in URL request, the Intranet domain name of server corresponding with the domain name in the corporate intranet Mapping relations.
5th aspect, the embodiment of the invention provides a kind of electronic equipment, the electronic equipment is to be equipped with client Equipment, the electronic equipment include processor and memory, wherein
The memory, for storing computer program;
The processor when for executing the program stored on the memory, realizes the slave client of first aspect A kind of the step of network data access method that angle provides.
6th aspect, the embodiment of the invention provides a kind of electronic equipment, the electronic equipment is destination server, described Destination server is the server that client owned enterprise is set on internet, and accesses the first domain name for agent client Corresponding server, the IP address of the destination server are target proxy IP address, the electronic equipment include processor and Memory, wherein
The memory, for storing computer program;
The processor when for executing the program stored on the memory, realizes the slave target clothes of second aspect A kind of the step of network data access method that device angle of being engaged in provides.
In scheme provided by the embodiment of the present invention, firstly, client, which obtains, is used for the first of access target network data URL request, secondly, client determines target proxy IP address, then, client is based on the target proxy IP address, to institute It states destination server and sends the HTTPS request for carrying the first domain name and routing information in first URL request, so that The destination server determines corresponding second domain name of the first domain name after receiving the HTTPS request, is based on corporate intranet In domain name system DNS server, determine the corresponding IP address of second domain name, access the IP address, obtain the road The corresponding target network data of diameter information, and feed back to the client;Finally, client receives the destination server feedback The target network data, thus complete network data access.Since HTTPS request is a kind of network request of encryption, and And due to the highly-safe DNS resolver in client local of the Intranet dns server of enterprise, institute of the embodiment of the present invention HTTP abduction can be effectively prevented in the scheme of offer and domain name mapping is kidnapped, to realize the mesh for accessing effective network data 's.
Certainly, it implements any of the products of the present invention or method must be not necessarily required to reach all the above excellent simultaneously Point.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below There is attached drawing needed in technical description to be briefly described.
Fig. 1 is a kind of process signal of network data access method provided by angle of the embodiment of the present invention from client Figure;
Fig. 2 is a kind of process of network data access method provided by angle of the embodiment of the present invention from destination server Schematic diagram;
Fig. 3 is a kind of timing diagram of network data access method provided by the embodiment of the present invention;
Fig. 4 is a kind of structural representation of network data access mechanism provided by angle of the embodiment of the present invention from client Figure;
Fig. 5 is a kind of structure of network data access mechanism provided by angle of the embodiment of the present invention from destination server Schematic diagram;
Fig. 6 is the structural schematic diagram of a kind of electronic equipment provided by angle of the embodiment of the present invention from client;
Fig. 7 is the structural schematic diagram of a kind of electronic equipment provided by angle of the embodiment of the present invention from destination server.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention is described.
Prevent domain name mapping from kidnapping to realize, so that the purpose of effective network data is accessed, the embodiment of the present invention point Not from the angle of client and destination server, provides a kind of network data access method, device, electronic equipment and storage and be situated between Matter.
In a first aspect, the embodiment of the invention provides a kind of network data access methods from the angle of client.
It should be noted that a kind of executing subject of network data access method provided by the embodiment of the present invention can be A kind of network data access mechanism, the device can be run in client.It is understood that the client can be webpage Client, alternatively, needing to download the client of the desktop version of installation, i.e. APP (Application, application program).
As shown in Figure 1, a kind of network data access method provided by the embodiment of the present invention can from the angle of client To include the following steps:
S101 obtains the first URL request for being used for access target network data;
The client can obtain user in the client determine, for access target network data first URL request.Wherein, which can be what user was manually entered, be also possible to the mesh that user needs to access in selection Generated after mark network data, for example, user click it is generating after some video title, access the corresponding network of the video title The URL request etc. of data.
Illustratively, first URL request can be with are as follows:
Http//www.liangshunet.com/pub/item.aspx? t=osw7.
Wherein, the first domain name liangshunet.com and routing information/pub/ is carried in first URL request Item.aspx? t=osw7.
S102 determines target proxy IP address;
Wherein, the target proxy IP address is the destination server that the client owned enterprise is set on internet IP address, the destination server accesses the corresponding server of first domain name for acting on behalf of the client.
In embodiments of the present invention, a fixed target generation can be arranged in the client owned enterprise on the internet IP address is managed, provides agency service by the corresponding destination server of target proxy IP address for multiple client.
Multiple agent IP address, each agent IP address pair can also be arranged in the client owned enterprise on the internet A proxy server is answered, by determining that a suitable agent IP address is made for the client in multiple agent IP address For target proxy IP address, thus make the target proxy IP address corresponding destination server client provide it is faster effectively Agency service.Based on such thought, in embodiments of the present invention, determine that target proxy IP address can there are two types of optional sides Formula.
Optionally, the first way for determining target proxy internet protocol address may include step a1 and step A2:
Step a1: the attribute information of the client is determined;
Wherein, the attribute information may include one of regional information and operator's informaiton or a variety of.
Wherein, the regional information can be the region zones grades such as province, city or area;During the operator's informaiton may include One in the operators such as state's movement, China Unicom or China Telecom.For example, the attribute information of the client can be determined Are as follows: regional information is Shaanxi Province and operator's informaiton is China Mobile.
Step a2: in preset multiple agent IP address, the determining and matched target proxy IP of the attribute information Location.
It is understood that the regional information of preset multiple agent IP address can cover all parts of the country, operator's letter Breath may include a variety of operators, then, the client can determine regional information in preset multiple agent IP address For Shaanxi Province and operator's informaiton is an agent IP address of China Mobile, as with the attribute information matched target generation Manage IP address.
Certainly, if searching less than regional information is Shaanxi Province and operator's informaiton is an Agent IP of China Mobile Location, the client can determine that operator's informaiton is China Mobile, a regional information agency closest with Shaanxi Province IP address, as with the matched target proxy IP address of the attribute information etc., this is all reasonable.
Optionally, the second way of the determining target proxy internet protocol address, may include step b1 and Step b2:
Step b1: the corresponding server of HTTPS protocol access preset IP address is utilized;
In embodiments of the present invention, it integrates and accesses for the ease of client, one can be arranged in the client Preset IP address, such as bgp anycast ip.The corresponding server of this accessible preset IP address of the client of the whole network.
In embodiments of the present invention, it can use the corresponding server of the HTTPS protocol access preset IP address, due to HTTPS agreement is a kind of cryptographic protocol, it can be ensured that data transmission is in encrypted state always, is not easy to be tampered, it is ensured that The safety of access.
Step b2: the target proxy IP address of the corresponding server push of the preset IP address is received;
It is corresponding to can receive the preset IP address after the corresponding server of access preset IP address for the client Server push target proxy IP address.Wherein, the corresponding server of the preset IP address is receiving the client After the access at end, the attribute information of the client can be determined first, then in preset multiple agent IP address, determined With the matched target proxy IP address of the attribute information, and the target proxy IP address is pushed to the client.
The attribute information that the client is determined about the corresponding server of the preset IP address, in preset multiple generations It manages in IP address, determination is similar with step a1- step a2 with the process of the matched target proxy IP address of the attribute information, This is no longer illustrated.
It is understood that the second way is by the corresponding server of the preset IP address relative to first way The attribute information for determining the client is executed, in preset multiple agent IP address, determination is matched with the attribute information Target proxy IP address process, it is possible to reduce the treatment process of the client.
It should be noted that in embodiments of the present invention, S102 can be first carried out and execute S101 again, for example, in the visitor After the starting of family end, it is immediately performed S102, using determining target proxy IP address as the basis of subsequent network data access, in this way It can be immediately performed S103, network data can be improved after obtaining the first URL request for access target network data Access speed.
S103, is based on the target proxy IP address, and the transmission of Xiang Suoshu destination server carries first URL request In the first domain name and routing information HTTPS request so that the destination server is receiving the HTTPS request Afterwards, it determines corresponding second domain name of the first domain name, based on the dns server in corporate intranet, determines that second domain name is corresponding IP address, access the IP address, obtain the corresponding target network data of the routing information, and feed back to the client End;
Wherein, second domain name are as follows: in the corporate intranet, the interior domain of the corresponding server of first domain name Name.
Optionally, in embodiments of the present invention, described to be based on the target proxy IP address, Xiang Suoshu destination server hair The Hyper text transfer security protocol HTTPS request for carrying the first domain name and routing information in first URL request is sent, it can To include step c1- step c3:
Step c1: the target proxy IP address is inserted into after the protocol information of first URL request and first Before domain name, and the protocol information is replaced with into HTTPS agreement, obtains the second URL request;
Such as first URL request are as follows:
Http:// a.b.c.d/user? id=100, wherein protocol information http: //;First domain name is a.b.c.d; Does is routing information /user? id=100.
Assuming that the target proxy IP address is 1.2.3.4, the target proxy IP address is inserted into the first URL After the protocol information of request and before the first domain name, and by the protocol information http: // replace with HTTPS agreement Https: //, the second obtained URL request are as follows:
Https: // 1.2.3.4/a.b.c.d/user? id=100.
Step c2: the corresponding HTTPS request of building second URL request;
Wherein, the purpose IP address of the HTTPS request is the target proxy IP address, and request content is described first The first domain name and routing information of URL request.
Step c3: the HTTPS request is sent to the destination server with the target proxy IP address.
It is understood that HTTPS request is a kind of request of encryption, it is ensured that the safety of data transmission, it can be with It effectively prevent HTTP to kidnap.
The destination server can determine corresponding second domain name of the first domain name after receiving the HTTPS request, Based on the domain name system DNS server in corporate intranet, the corresponding IP address of second domain name is determined, with accessing the IP Location obtains the corresponding target network data of the routing information, and feeds back to the client.
In order to be laid out clear and understand convenient for scheme, the concrete processing procedure in the step about the destination server, It is introduced in a kind of network data access method provided by the angle from the destination server later.
S104 receives the target network data of the destination server feedback.
In scheme provided by the embodiment of the present invention, client obtains first for access target network data first Then URL request, is based on the target proxy IP address, Xiang Suoshu destination server secondly, determining target proxy IP address The HTTPS request for carrying the first domain name and routing information in first URL request is sent, so that the destination service Device determines corresponding second domain name of the first domain name, based on the DNS service in corporate intranet after receiving the HTTPS request Device determines the corresponding IP address of second domain name, accesses the IP address, obtains the corresponding target network of the routing information Data, and the client is fed back to, finally, client receives the target network data of the destination server feedback, To complete network data access.Since HTTPS request is a kind of network request of encryption, and due to the Intranet DNS of enterprise Server Security is higher than the DNS resolver of client local, and therefore, scheme provided by the embodiment of the present invention can effectively prevent Only HTTP is kidnapped and domain name mapping is kidnapped, to realize the purpose for accessing effective network data.Also, due to corporate intranet Delay is much smaller than public network, and therefore, scheme provided by the embodiment of the present invention can also improve the access speed of network data.
Second aspect, from the angle of destination server, the embodiment of the invention provides a kind of network data access methods.
It should be noted that a kind of executing subject of network data access method provided by the embodiment of the present invention can be A kind of network data access mechanism, the device can be run in destination server.The destination server is belonging to client Enterprise is set to the server on internet, and accesses the corresponding server of the first domain name for acting on behalf of the client, described The IP address of destination server is target proxy IP address.
As shown in Fig. 2, from the angle of destination server, a kind of network data access side provided by the embodiment of the present invention Method may include steps of:
S201 receives the HTTPS request that the client is sent;
Wherein, the HTTPS request is the client after the first URL request for obtaining access target network data, Sent based on the target proxy IP address to the destination server, first URL request carry the first domain name and Routing information carries first domain name and routing information in the HTTPS request;The destination server can be to described HTTPS request is parsed, and the first domain name and the routing information in the first URL request are obtained.
Treatment process in the step about the client may refer to being mentioned from the angle of the client above A kind of related content of the network data access method supplied, details are not described herein again.
S202 determines corresponding second domain name of the first domain name;
Wherein, second domain name are as follows: in corporate intranet, the Intranet domain name of the corresponding server of first domain name.
In embodiments of the present invention, the destination server can be based on preset domain name corresponding relationship, determine described the Corresponding second domain name of one domain name.
Wherein, domain name corresponding relationship is used to characterize the domain name in URL request, with the domain name pair in the corporate intranet The mapping relations of the Intranet domain name for the server answered.Wherein, domain name corresponding relationship can be domain name mapping table etc..
S203 determines the corresponding IP address of second domain name based on the dns server in the corporate intranet;
In this step, since the destination server is the service that the client owned enterprise is set on internet Device, the destination server can be communicated with the dns server in the corporate intranet, and the destination server can incite somebody to action Second domain name is sent to the dns server in the corporate intranet, by the dns server in the corporate intranet to described Second domain name is parsed, and obtains the corresponding IP address of second domain name, and the IP address is returned to the target and is taken Business device.
Second domain name is parsed about the dns server in the corporate intranet, obtains second domain name The process of corresponding IP address is the prior art, and this will not be repeated here.
S204 accesses the IP address, obtains the corresponding target network data of the routing information, and feed back to the visitor Family end.
In scheme provided by the embodiment of the present invention, the destination server receives what the client was sent first HTTPS request;Wherein, the HTTPS request is the client in the first URL request for obtaining access target network data Afterwards, it is sent based on the target proxy IP address to the destination server, first URL request carries the first domain name And routing information, first domain name and routing information are carried in the HTTPS request;Secondly, the destination server is true Fixed corresponding second domain name of first domain name, then, the destination server is based on the dns server in the corporate intranet, really Determine the corresponding IP address of second domain name and obtains the routing information finally, the destination server accesses the IP address Corresponding target network data, and the client is fed back to, to complete network data access.Since HTTPS request is one The network request of kind of encryption, and due to the highly-safe DNS resolver in client local of the Intranet dns server of enterprise, Therefore, HTTP abduction can be effectively prevented in scheme provided by the embodiment of the present invention and domain name mapping is kidnapped, to realize access The purpose of effective network data.Also, since the delay of corporate intranet is much smaller than public network, the embodiment of the present invention Provided scheme can also improve the access speed of network data.
In order to facilitate scheme is understood, the timing diagram provided below with reference to Fig. 3 introduces network provided by the embodiment of the present invention The process of data access.The process of the access of network data provided by the embodiment of the present invention may include steps of:
S301, the client obtain the first URL request for being used for access target network data;
Wherein, the first domain name and routing information are carried in first URL request.
S302, the client determine target proxy IP address;
S303, the client are based on the target proxy IP address, and the transmission of Xiang Suoshu destination server carries described The HTTPS request of the first domain name and routing information in first URL request;
S304, the destination server receive the HTTPS request that the client is sent;
S305, the destination server determine corresponding second domain name of the first domain name;
Wherein, second domain name are as follows: in corporate intranet, the Intranet domain name of the corresponding server of first domain name.
Second domain name is sent to the dns server in the corporate intranet by S306, the destination server;
S307, the dns server in the corporate intranet parse second domain name, obtain second domain name Corresponding IP address;
The IP address is returned to the destination server by S308, the dns server in the corporate intranet;
S309, the destination server access the IP address, obtain the corresponding target network data of the routing information;
S310, the destination server give the target network data feedback to the client;
S311, the client receive the target network data of the destination server feedback.
In scheme provided by the embodiment of the present invention, due to client to the HTTPS request that destination server is sent be one The network request of kind encryption, and the highly-safe DNS resolver in client local of Intranet dns server of enterprise, therefore, this HTTP abduction can be effectively prevented in scheme provided by inventive embodiments and domain name mapping is kidnapped, to realize the effective net of access The purpose of network data.Also, since the delay of corporate intranet is much smaller than public network, provided by the embodiment of the present invention Scheme can also improve the access speed of network data.
The third aspect, relative to a kind of network data access method provided by the angle from client, the present invention is implemented Example additionally provides a kind of network data access mechanism, is applied to client, as shown in figure 4, the device includes:
Module 401 is obtained, for obtaining the first uniform resource position mark URL request for being used for access target network data; Wherein, the first domain name and routing information are carried in first URL request;
Determining module 402, for determining target proxy internet protocol address;Wherein, the target proxy IP address It is the IP address that the client owned enterprise is set to the destination server on internet, the destination server is for acting on behalf of The client accesses the corresponding server of first domain name;
Sending module 403, for being based on the target proxy IP address, the transmission of Xiang Suoshu destination server carries described The Hyper text transfer security protocol HTTPS request of the first domain name and routing information in first URL request, so that the target Server determines corresponding second domain name of the first domain name, based on the domain name in corporate intranet after receiving the HTTPS request System dns server determines the corresponding IP address of second domain name, accesses the IP address, obtain the routing information pair The target network data answered, and feed back to the client;Second domain name are as follows: in the corporate intranet, described first The Intranet domain name of the corresponding server of domain name;
Receiving module 404, for receiving the target network data of the destination server feedback.
Optionally, in embodiments of the present invention, the sending module 403, is specifically used for:
By the target proxy IP address be inserted into after the protocol information of first URL request and the first domain name it Before, and the protocol information is replaced with into HTTPS agreement, obtain the second URL request;
The corresponding HTTPS request of second URL request is constructed, the purpose IP address of the HTTPS request is the mesh Agent IP address is marked, request content is the first domain name and routing information of first URL request;
The HTTPS request is sent to the destination server with the target proxy IP address.
Optionally, in embodiments of the present invention, the determining module 402, is specifically used for:
Determine the attribute information of the client;
In preset multiple agent IP address, the determining and matched target proxy IP address of the attribute information.
Optionally, in embodiments of the present invention, the determining module 402, is specifically used for:
Utilize the corresponding server of HTTPS protocol access preset IP address;
Receive the target proxy IP address of the corresponding server push of the preset IP address;Wherein, the default IP The corresponding server in location determines the attribute information of the client after the access for receiving the client, preset more It is determining with the matched target proxy IP address of the attribute information in a agent IP address, and by the target proxy IP address It is pushed to the client.
In scheme provided by the embodiment of the present invention, client obtains first for access target network data first Then URL request, is based on the target proxy IP address, Xiang Suoshu destination server secondly, determining target proxy IP address The HTTPS request for carrying the first domain name and routing information in first URL request is sent, so that the destination service Device determines corresponding second domain name of the first domain name, based on the DNS service in corporate intranet after receiving the HTTPS request Device determines the corresponding IP address of second domain name, accesses the IP address, obtains the corresponding target network of the routing information Data, and the client is fed back to, finally, client receives the target network data of the destination server feedback, To complete network data access.Since HTTPS request is a kind of network request of encryption, and due to the Intranet DNS of enterprise Server Security is higher than the DNS resolver of client local, and therefore, scheme provided by the embodiment of the present invention can effectively prevent Only HTTP is kidnapped and domain name mapping is kidnapped, to realize the purpose for accessing effective network data.Also, due to corporate intranet Delay is much smaller than public network, and therefore, scheme provided by the embodiment of the present invention can also improve the access speed of network data.
Fourth aspect, relative to a kind of network data access method provided by the angle from destination server, the present invention Embodiment additionally provides a kind of network data access mechanism, is applied to destination server.The destination server is client institute Belong to enterprise and be set to the server on internet, and accesses the corresponding server of the first domain name, institute for acting on behalf of the client The IP address for stating destination server is target proxy IP address.As shown in figure 5, the device includes:
Receiving module 501, the HTTPS request sent for receiving the client;Wherein, the HTTPS request is institute Client is stated after the first URL request for obtaining access target network data, is based on the target proxy IP address to the mesh Mark what server was sent, first URL request carries the first domain name and routing information, carries in the HTTPS request First domain name and routing information;
First determining module 502, for determining corresponding second domain name of the first domain name;Wherein, second domain name are as follows: In corporate intranet, the Intranet domain name of the corresponding server of first domain name;
Second determining module 503, for determining second domain name pair based on the dns server in the corporate intranet The IP address answered;
Feedback module 504 obtains the corresponding target network data of the routing information for accessing the IP address, and Feed back to the client.
Optionally, in embodiments of the present invention, first determining module 502, is specifically used for:
Based on preset domain name corresponding relationship, corresponding second domain name of first domain name is determined;Wherein, domain name pair It should be related to for characterizing the domain name in URL request, the Intranet domain name of server corresponding with the domain name in the corporate intranet Mapping relations.
In scheme provided by the embodiment of the present invention, the destination server receives what the client was sent first HTTPS request;Wherein, the HTTPS request is the client in the first URL request for obtaining access target network data Afterwards, it is sent based on the target proxy IP address to the destination server, first URL request carries the first domain name And routing information, first domain name and routing information are carried in the HTTPS request;Secondly, the destination server is true Fixed corresponding second domain name of first domain name, then, the destination server is based on the dns server in the corporate intranet, really Determine the corresponding IP address of second domain name and obtains the routing information finally, the destination server accesses the IP address Corresponding target network data, and the client is fed back to, to complete network data access.Since HTTPS request is one The network request of kind of encryption, and due to the highly-safe DNS resolver in client local of the Intranet dns server of enterprise, Therefore, HTTP abduction can be effectively prevented in scheme provided by the embodiment of the present invention and domain name mapping is kidnapped, to realize access The purpose of effective network data.Also, since the delay of corporate intranet is much smaller than public network, the embodiment of the present invention Provided scheme can also improve the access speed of network data.
5th aspect, relative to a kind of network data access method provided by the angle from client, the present invention is implemented Example additionally provides a kind of electronic equipment, and the electronic equipment is the equipment for being equipped with client.As shown in fig. 6, the electronics is set Standby may include processor 601 and memory 602, wherein
The memory 602, for storing computer program;
The processor 601 when for executing the program stored on the memory 602, realizes the embodiment of the present invention Provided by angle from client the step of a kind of network data access method.
Above-mentioned memory may include RAM (Random Access Memory, random access memory), also may include NVM (Non-Volatile Memory, nonvolatile memory), for example, at least a magnetic disk storage.Optionally, memory It can also be that at least one is located away from the storage device of above-mentioned processor.
Above-mentioned processor can be general processor, including CPU (Central Processing Unit, central processing Device), NP (Network Processor, network processing unit) etc.;Can also be DSP (Digital Signal Processor, Digital signal processor), ASIC (Application Specific Integrated Circuit, specific integrated circuit), FPGA (Field-Programmable Gate Array, field programmable gate array) or other programmable logic device are divided Vertical door or transistor logic, discrete hardware components.
By above-mentioned electronic equipment, can be realized: client obtains the first URL for access target network data first Then request, is based on the target proxy IP address, Xiang Suoshu destination server is sent secondly, determining target proxy IP address The HTTPS request for carrying the first domain name and routing information in first URL request, so that the destination server exists After receiving the HTTPS request, corresponding second domain name of the first domain name is determined, based on the dns server in corporate intranet, really Determine the corresponding IP address of second domain name, access the IP address, obtain the corresponding target network data of the routing information, And the client is fed back to, finally, client receives the target network data of the destination server feedback, thus complete At network data access.Since HTTPS request is a kind of network request of encryption, and due to the Intranet dns server of enterprise The highly-safe DNS resolver in client local, therefore, HTTP can be effectively prevented in scheme provided by the embodiment of the present invention It kidnaps and domain name mapping is kidnapped, to realize the purpose for accessing effective network data.Also, since the delay of corporate intranet is remote Less than public network, therefore, scheme provided by the embodiment of the present invention can also improve the access speed of network data.
6th aspect, relative to a kind of network data access method provided by the angle from destination server, the present invention Embodiment additionally provides a kind of electronic equipment, and the electronic equipment is destination server, and the destination server is client institute Belong to enterprise and be set to the server on internet, and accesses the corresponding server of the first domain name, the mesh for agent client The IP address for marking server is target proxy IP address.As shown in fig. 7, the electronic equipment may include processor 701 and deposit Reservoir 702, wherein
The memory 702, for storing computer program;
The processor 701 when for executing the program stored on the memory 702, realizes the embodiment of the present invention Provided by angle from destination server the step of a kind of network data access method.
Above-mentioned memory may include RAM (Random Access Memory, random access memory), also may include NVM (Non-Volatile Memory, nonvolatile memory), for example, at least a magnetic disk storage.Optionally, memory It can also be that at least one is located away from the storage device of above-mentioned processor.
Above-mentioned processor can be general processor, including CPU (Central Processing Unit, central processing Device), NP (Network Processor, network processing unit) etc.;Can also be DSP (Digital Signal Processor, Digital signal processor), ASIC (Application Specific Integrated Circuit, specific integrated circuit), FPGA (Field-Programmable Gate Array, field programmable gate array) or other programmable logic device are divided Vertical door or transistor logic, discrete hardware components.
By above-mentioned electronic equipment, can be realized: the destination server receives the HTTPS that the client is sent first Request;Wherein, the HTTPS request is the client after the first URL request for obtaining access target network data, is based on What the target proxy IP address was sent to the destination server, first URL request carries the first domain name and path Information carries first domain name and routing information in the HTTPS request;Secondly, the destination server determines first Corresponding second domain name of domain name, then, the destination server based on the dns server in the corporate intranet, determine described in It is corresponding to obtain the routing information finally, the destination server accesses the IP address for the corresponding IP address of second domain name Target network data, and the client is fed back to, to complete network data access.Since HTTPS request is a kind of encryption Network request, and due to the highly-safe DNS resolver in client local of the Intranet dns server of enterprise, this HTTP abduction can be effectively prevented in scheme provided by inventive embodiments and domain name mapping is kidnapped, to realize the effective net of access The purpose of network data.Also, since the delay of corporate intranet is much smaller than public network, provided by the embodiment of the present invention Scheme can also improve the access speed of network data.
7th aspect, relative to a kind of network data access method provided by the angle from client, the present invention is implemented Example additionally provides a kind of computer readable storage medium, and computer program is stored in the computer readable storage medium, calculates A kind of network data access side provided by angle of the embodiment of the present invention from client is realized when machine program is executed by processor The step of method.
Above-mentioned computer-readable recording medium storage has execution angle institute of the embodiment of the present invention from client at runtime A kind of application program of the network data access method provided, therefore can be realized: client is obtained first for access target Then first URL request of network data, is based on the target proxy IP address secondly, determining target proxy IP address, to The destination server sends the HTTPS request for carrying the first domain name and routing information in first URL request, so that The destination server is obtained after receiving the HTTPS request, determines corresponding second domain name of the first domain name, based in enterprise Dns server in net determines the corresponding IP address of second domain name, accesses the IP address, obtain the routing information Corresponding target network data, and the client is fed back to, finally, client receives the described of the destination server feedback Target network data, to complete network data access.Since HTTPS request is a kind of network request of encryption, and due to The highly-safe DNS resolver in client local of the Intranet dns server of enterprise, therefore, provided by the embodiment of the present invention HTTP abduction can be effectively prevented in scheme and domain name mapping is kidnapped, to realize the purpose for accessing effective network data.Also, Since the delay of corporate intranet is much smaller than public network, scheme provided by the embodiment of the present invention can also improve network The access speed of data.
Eighth aspect, relative to a kind of network data access method provided by the angle from destination server, the present invention Embodiment additionally provides a kind of computer readable storage medium, is stored with computer program in the computer readable storage medium, Realize the embodiment of the present invention relative to one kind provided by the angle from destination server when computer program is executed by processor The step of network data access method.
Above-mentioned computer-readable recording medium storage has executes the embodiment of the present invention relative to from destination service at runtime A kind of application program of network data access method provided by the angle of device, therefore can be realized: the destination server is first First receive the HTTPS request that the client is sent;Wherein, the HTTPS request is that the client is obtaining access target After first URL request of network data, sent based on the target proxy IP address to the destination server, described first URL request carries the first domain name and routing information, and first domain name and routing information are carried in the HTTPS request; Secondly, the destination server determines corresponding second domain name of the first domain name, then, the destination server is based on the enterprise Dns server in Intranet determines the corresponding IP address of second domain name, finally, the destination server accesses the IP Address obtains the corresponding target network data of the routing information, and feeds back to the client, to complete network data visit It asks.Since HTTPS request is a kind of network request of encryption, and since the Intranet dns server of enterprise is highly-safe in visitor The DNS resolver at family end, therefore, scheme provided by the embodiment of the present invention can be effectively prevented HTTP and kidnap and domain name solution Analysis is kidnapped, to realize the purpose for accessing effective network data.Also, since the delay of corporate intranet is much smaller than public network Network, therefore, scheme provided by the embodiment of the present invention can also improve the access speed of network data.
For electronic equipment and computer readable storage medium embodiment, method content base as involved in it Originally it is similar to embodiment of the method above-mentioned, so being described relatively simple, referring to the part explanation of embodiment of the method in place of correlation ?.
It should be noted that, in this document, relational terms such as first and second and the like are used merely to a reality Body or operation are distinguished with another entity or operation, are deposited without necessarily requiring or implying between these entities or operation In any actual relationship or order or sequence.Moreover, the terms "include", "comprise" or its any other variant are intended to Non-exclusive inclusion, so that the process, method, article or equipment including a series of elements is not only wanted including those Element, but also including other elements that are not explicitly listed, or further include for this process, method, article or equipment Intrinsic element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that There is also other identical elements in process, method, article or equipment including the element.
Each embodiment in this specification is all made of relevant mode and describes, same and similar portion between each embodiment Dividing may refer to each other, and each embodiment focuses on the differences from other embodiments.Especially for system reality For applying example, since it is substantially similar to the method embodiment, so being described relatively simple, related place is referring to embodiment of the method Part explanation.
The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the scope of the present invention.It is all Any modification, equivalent replacement, improvement and so within the spirit and principles in the present invention, are all contained in protection scope of the present invention It is interior.

Claims (14)

1. a kind of network data access method, which is characterized in that be applied to client, which comprises
It obtains and is requested for the first uniform resource position mark URL of access target network data;Wherein, first URL request In carry the first domain name and routing information;
Determine target proxy internet protocol address;Wherein, the target proxy IP address is the client owned enterprise It is set to the IP address of the destination server on internet, the destination server is for acting on behalf of the client access described the The corresponding server of one domain name;
Based on the target proxy IP address, Xiang Suoshu destination server sends first carried in first URL request The Hyper text transfer security protocol HTTPS request of domain name and routing information so that the destination server receive it is described After HTTPS request, corresponding second domain name of the first domain name is determined, based on the domain name system DNS server in corporate intranet, determine The corresponding IP address of second domain name, accesses the IP address, obtains the corresponding target network data of the routing information, and Feed back to the client;Second domain name are as follows: in the corporate intranet, the corresponding server of first domain name it is interior Domain name;
Receive the target network data of the destination server feedback.
2. the method according to claim 1, wherein described be based on the target proxy IP address, Xiang Suoshu mesh Mark server sends the Hyper text transfer security protocol for carrying the first domain name and routing information in first URL request HTTPS request, comprising:
The target proxy IP address is inserted into after the protocol information of first URL request and before the first domain name, and The protocol information is replaced with into HTTPS agreement, obtains the second URL request;
The corresponding HTTPS request of second URL request is constructed, the purpose IP address of the HTTPS request is the target generation IP address is managed, request content is the first domain name and routing information of first URL request;
The HTTPS request is sent to the destination server with the target proxy IP address.
3. the method according to claim 1, wherein the determining target proxy internet protocol address, packet It includes:
Determine the attribute information of the client;
In preset multiple agent IP address, the determining and matched target proxy IP address of the attribute information.
4. the method according to claim 1, wherein the determining target proxy internet protocol address, packet It includes:
Utilize the corresponding server of HTTPS protocol access preset IP address;
Receive the target proxy IP address of the corresponding server push of the preset IP address;Wherein, the preset IP address pair The server answered determines the attribute information of the client after the access for receiving the client, in preset multiple generations It manages in IP address, the determining and matched target proxy IP address of the attribute information, and the target proxy IP address is pushed To the client.
5. a kind of network data access method, which is characterized in that be applied to destination server, the destination server is client Owned enterprise is set to the server on internet, and accesses the corresponding server of the first domain name for acting on behalf of the client, The IP address of the destination server is target proxy IP address, the described method includes:
Receive the HTTPS request that the client is sent;Wherein, the HTTPS request is that the client is obtaining access mesh It after the first URL request for marking network data, is sent based on the target proxy IP address to the destination server, described the One URL request carries the first domain name and routing information, and first domain name and path letter are carried in the HTTPS request Breath;
Determine corresponding second domain name of the first domain name;Wherein, second domain name are as follows: in corporate intranet, first domain name The Intranet domain name of corresponding server;
Based on the dns server in the corporate intranet, the corresponding IP address of second domain name is determined;
The IP address is accessed, obtains the corresponding target network data of the routing information, and feed back to the client.
6. according to the method described in claim 5, it is characterized in that, corresponding second domain name of the first domain name of the determination, comprising:
Based on preset domain name corresponding relationship, corresponding second domain name of first domain name is determined;Wherein, domain name is corresponding closes System is for characterizing the domain name in URL request, the mapping of the Intranet domain name of server corresponding with the domain name in the corporate intranet Relationship.
7. a kind of network data access mechanism, which is characterized in that be applied to client, described device includes:
Module is obtained, for obtaining the first uniform resource position mark URL request for being used for access target network data;Wherein, institute It states and carries the first domain name and routing information in the first URL request;
Determining module, for determining target proxy internet protocol address;Wherein, the target proxy IP address is the visitor Hu Duan owned enterprise is set to the IP address of the destination server on internet, and the destination server is for acting on behalf of the client End accesses the corresponding server of first domain name;
Sending module, for being based on the target proxy IP address, the transmission of Xiang Suoshu destination server carries the first URL The Hyper text transfer security protocol HTTPS request of the first domain name and routing information in request, so that the destination server After receiving the HTTPS request, corresponding second domain name of the first domain name is determined, based on the domain name system in corporate intranet Dns server determines the corresponding IP address of second domain name, accesses the IP address, it is corresponding to obtain the routing information Target network data, and feed back to the client;Second domain name are as follows: in the corporate intranet, first domain name The Intranet domain name of corresponding server;
Receiving module, for receiving the target network data of the destination server feedback.
8. device according to claim 7, which is characterized in that the sending module is specifically used for:
The target proxy IP address is inserted into after the protocol information of first URL request and before the first domain name, and The protocol information is replaced with into HTTPS agreement, obtains the second URL request;
The corresponding HTTPS request of second URL request is constructed, the purpose IP address of the HTTPS request is the target generation IP address is managed, request content is the first domain name and routing information of first URL request;
The HTTPS request is sent to the destination server with the target proxy IP address.
9. device according to claim 7, which is characterized in that the determining module is specifically used for:
Determine the attribute information of the client;
In preset multiple agent IP address, the determining and matched target proxy IP address of the attribute information.
10. device according to claim 7, which is characterized in that the determining module is specifically used for:
Utilize the corresponding server of HTTPS protocol access preset IP address;
Receive the target proxy IP address of the corresponding server push of the preset IP address;Wherein, the preset IP address pair The server answered determines the attribute information of the client after the access for receiving the client, in preset multiple generations It manages in IP address, the determining and matched target proxy IP address of the attribute information, and the target proxy IP address is pushed To the client.
11. a kind of network data access mechanism, which is characterized in that be applied to destination server, the destination server is client End owned enterprise is set to the server on internet, and accesses the corresponding service of the first domain name for acting on behalf of the client The IP address of device, the destination server is target proxy IP address, and described device includes:
Receiving module, the HTTPS request sent for receiving the client;Wherein, the HTTPS request is the client After the first URL request for obtaining access target network data, the target proxy IP address is based on to the destination server It sends, first URL request carries the first domain name and routing information, and described first is carried in the HTTPS request Domain name and routing information;
First determining module, for determining corresponding second domain name of the first domain name;Wherein, second domain name are as follows: in enterprise In net, the Intranet domain name of the corresponding server of first domain name;
Second determining module, for based on the dns server in the corporate intranet, with determining the corresponding IP of second domain name Location;
Feedback module obtains the corresponding target network data of the routing information, and feed back to institute for accessing the IP address State client.
12. device according to claim 11, which is characterized in that first determining module is specifically used for:
Based on preset domain name corresponding relationship, corresponding second domain name of first domain name is determined;Wherein, domain name is corresponding closes System is for characterizing the domain name in URL request, the mapping of the Intranet domain name of server corresponding with the domain name in the corporate intranet Relationship.
13. a kind of electronic equipment, which is characterized in that the electronic equipment is the equipment for being equipped with client, the electronic equipment Including processor and memory, wherein
The memory, for storing computer program;
The processor when for executing the program stored on the memory, realizes any side claim 1-4 Method step.
14. a kind of electronic equipment, which is characterized in that the electronic equipment is destination server, and the destination server is client End owned enterprise is set to the server on internet, and accesses the corresponding server of the first domain name, institute for agent client The IP address for stating destination server is target proxy IP address, and the electronic equipment includes processor and memory, wherein
The memory, for storing computer program;
The processor when for executing the program stored on the memory, realizes any side claim 5-6 Method step.
CN201811400599.2A 2018-11-22 2018-11-22 Network data access method and device and electronic equipment Active CN109787951B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811400599.2A CN109787951B (en) 2018-11-22 2018-11-22 Network data access method and device and electronic equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811400599.2A CN109787951B (en) 2018-11-22 2018-11-22 Network data access method and device and electronic equipment

Publications (2)

Publication Number Publication Date
CN109787951A true CN109787951A (en) 2019-05-21
CN109787951B CN109787951B (en) 2022-09-02

Family

ID=66496000

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811400599.2A Active CN109787951B (en) 2018-11-22 2018-11-22 Network data access method and device and electronic equipment

Country Status (1)

Country Link
CN (1) CN109787951B (en)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110276028A (en) * 2019-06-25 2019-09-24 云深互联(北京)科技有限公司 For the treating method and apparatus of the inner link functional requirement of operation system
CN110619071A (en) * 2019-08-06 2019-12-27 微梦创科网络科技(中国)有限公司 Account access security monitoring and processing method and device
CN111314181A (en) * 2020-03-20 2020-06-19 北京无限光场科技有限公司 Network connectivity diagnosis method, device, terminal and storage medium
CN111741109A (en) * 2020-06-19 2020-10-02 深圳前海微众银行股份有限公司 Access method, device, equipment and storage medium based on proxy
CN112019584A (en) * 2019-05-31 2020-12-01 阿里巴巴集团控股有限公司 Resource access control method and device and computer system
CN112163130A (en) * 2020-10-28 2021-01-01 河北时代电子有限公司 Access processing method for social security data query
CN112272158A (en) * 2020-09-16 2021-01-26 厦门网宿有限公司 Data proxy method, system and proxy server
CN113377678A (en) * 2021-07-13 2021-09-10 挂号网(杭州)科技有限公司 Test environment switching method and device, electronic equipment and storage medium
CN114945045A (en) * 2022-05-18 2022-08-26 深圳渊联技术有限公司 Network service response method, device, network equipment and storage medium

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101277306A (en) * 2008-05-14 2008-10-01 华为技术有限公司 Method, system and equipment for processing DNS service
CN103428179A (en) * 2012-05-18 2013-12-04 阿里巴巴集团控股有限公司 Method, system and device for logging into multi-domain-name website
CN103685597A (en) * 2013-12-02 2014-03-26 北京星网锐捷网络技术有限公司 Internal network address recording method and internal network address recording device
CN105554179A (en) * 2016-01-08 2016-05-04 中国联合网络通信集团有限公司 DNS resolution method and system in local area network, Openflow switch and controller
CN107483609A (en) * 2017-08-31 2017-12-15 深圳市迅雷网文化有限公司 A kind of Network Access Method, relevant device and system
CN107613036A (en) * 2017-09-04 2018-01-19 北京新流万联网络技术有限公司 Realize the method and system of HTTPS Transparent Proxies
CN108156210A (en) * 2016-12-06 2018-06-12 腾讯科技(深圳)有限公司 The acquisition methods and device of target resource
CN108270882A (en) * 2018-01-24 2018-07-10 腾讯科技(深圳)有限公司 The analysis method and device of domain name, storage medium, electronic device
US20180205734A1 (en) * 2017-01-18 2018-07-19 Cisco Technology, Inc. Security policy for https
CN108462760A (en) * 2018-03-21 2018-08-28 平安科技(深圳)有限公司 Electronic device, cluster access domain name automatic generation method and storage medium

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101277306A (en) * 2008-05-14 2008-10-01 华为技术有限公司 Method, system and equipment for processing DNS service
CN103428179A (en) * 2012-05-18 2013-12-04 阿里巴巴集团控股有限公司 Method, system and device for logging into multi-domain-name website
CN103685597A (en) * 2013-12-02 2014-03-26 北京星网锐捷网络技术有限公司 Internal network address recording method and internal network address recording device
CN105554179A (en) * 2016-01-08 2016-05-04 中国联合网络通信集团有限公司 DNS resolution method and system in local area network, Openflow switch and controller
CN108156210A (en) * 2016-12-06 2018-06-12 腾讯科技(深圳)有限公司 The acquisition methods and device of target resource
US20180205734A1 (en) * 2017-01-18 2018-07-19 Cisco Technology, Inc. Security policy for https
CN107483609A (en) * 2017-08-31 2017-12-15 深圳市迅雷网文化有限公司 A kind of Network Access Method, relevant device and system
CN107613036A (en) * 2017-09-04 2018-01-19 北京新流万联网络技术有限公司 Realize the method and system of HTTPS Transparent Proxies
CN108270882A (en) * 2018-01-24 2018-07-10 腾讯科技(深圳)有限公司 The analysis method and device of domain name, storage medium, electronic device
CN108462760A (en) * 2018-03-21 2018-08-28 平安科技(深圳)有限公司 Electronic device, cluster access domain name automatic generation method and storage medium

Cited By (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112019584A (en) * 2019-05-31 2020-12-01 阿里巴巴集团控股有限公司 Resource access control method and device and computer system
CN112019584B (en) * 2019-05-31 2022-05-31 阿里巴巴集团控股有限公司 Resource access control method and device and computer system
CN110276028B (en) * 2019-06-25 2021-10-08 云深互联(北京)科技有限公司 Processing method and device for internal link function requirements of business system
CN110276028A (en) * 2019-06-25 2019-09-24 云深互联(北京)科技有限公司 For the treating method and apparatus of the inner link functional requirement of operation system
CN110619071A (en) * 2019-08-06 2019-12-27 微梦创科网络科技(中国)有限公司 Account access security monitoring and processing method and device
CN111314181A (en) * 2020-03-20 2020-06-19 北京无限光场科技有限公司 Network connectivity diagnosis method, device, terminal and storage medium
CN111314181B (en) * 2020-03-20 2022-06-24 北京无限光场科技有限公司 Network connectivity diagnosis method, device, terminal and storage medium
CN111741109A (en) * 2020-06-19 2020-10-02 深圳前海微众银行股份有限公司 Access method, device, equipment and storage medium based on proxy
CN112272158A (en) * 2020-09-16 2021-01-26 厦门网宿有限公司 Data proxy method, system and proxy server
CN112163130A (en) * 2020-10-28 2021-01-01 河北时代电子有限公司 Access processing method for social security data query
CN113377678A (en) * 2021-07-13 2021-09-10 挂号网(杭州)科技有限公司 Test environment switching method and device, electronic equipment and storage medium
CN114945045A (en) * 2022-05-18 2022-08-26 深圳渊联技术有限公司 Network service response method, device, network equipment and storage medium
CN114945045B (en) * 2022-05-18 2023-09-26 深圳渊联技术有限公司 Network service response method, device, network equipment and storage medium

Also Published As

Publication number Publication date
CN109787951B (en) 2022-09-02

Similar Documents

Publication Publication Date Title
CN109787951A (en) A kind of network data access method, device and electronic equipment
CN109802936A (en) A kind of network data access method, device and electronic equipment
CN109787952A (en) A kind of network data access method, device and electronic equipment
CN106068639B (en) The Transparent Proxy certification handled by DNS
JP5681095B2 (en) Web access using cross-domain cookies
US7984186B2 (en) Method, system, and apparatus for discovering user agent DNS settings
US8286248B1 (en) System and method of web application discovery via capture and analysis of HTTP requests for external resources
AU2008200613B2 (en) Tracking web server
US7792994B1 (en) Correlating network DNS data to filter content
JP6588477B2 (en) Remote information query method and server
US20090248893A1 (en) Request routing
CN102752300B (en) Dynamic antitheft link system and dynamic antitheft link method
EP2725516A2 (en) Privacy preserving registry browsing
JP2003006074A (en) Reverse proxy mechanism
CN102594934A (en) Method and device for identifying hijacked website
CN109802919B (en) Web page access intercepting method and device
US20080155388A1 (en) Publication service using web pages and web search engines
CN103634399A (en) Method and device for realizing cross-domain data transmission
WO2011091844A1 (en) Method, apparatus and system for intercepted triggering of execution of internet services
CN104394227A (en) Method and system for transmitting user data of browser and browser
CN107070988A (en) Message processing method and device
EP2092437A2 (en) Method and system for associating one or more contents with an electronic page
CN103888540A (en) Login information synchronization method, synchronized network servers and synchronizing network servers
CN104980311B (en) Predict the method, apparatus and system of network access
US10455010B2 (en) Information processing apparatus and non-transitory computer readable medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant