CN111200516A - Intelligent client terminal system - Google Patents

Intelligent client terminal system Download PDF

Info

Publication number
CN111200516A
CN111200516A CN201911314990.5A CN201911314990A CN111200516A CN 111200516 A CN111200516 A CN 111200516A CN 201911314990 A CN201911314990 A CN 201911314990A CN 111200516 A CN111200516 A CN 111200516A
Authority
CN
China
Prior art keywords
module
client terminal
interface
intelligent client
network
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201911314990.5A
Other languages
Chinese (zh)
Inventor
蔡娜
谢国华
毛圣林
张健
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Guanglian Century Information Technology Co Ltd
Original Assignee
Shenzhen Guanglian Century Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Guanglian Century Information Technology Co Ltd filed Critical Shenzhen Guanglian Century Information Technology Co Ltd
Priority to CN201911314990.5A priority Critical patent/CN111200516A/en
Publication of CN111200516A publication Critical patent/CN111200516A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/2854Wide area networks, e.g. public data networks
    • H04L12/2856Access arrangements, e.g. Internet access
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • H04L41/0823Configuration setting characterised by the purposes of a change of settings, e.g. optimising configuration for enhancing reliability
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/22Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks comprising specially adapted graphical user interfaces [GUI]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4505Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
    • H04L61/4511Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5007Internet protocol [IP] addresses
    • H04L61/5014Internet protocol [IP] addresses using dynamic host configuration protocol [DHCP] or bootstrap protocol [BOOTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0263Rule management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • H04L67/025Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1095Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Human Computer Interaction (AREA)
  • Business, Economics & Management (AREA)
  • General Business, Economics & Management (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses an intelligent client terminal system, which is characterized in that: the system comprises an intelligent client terminal and a network module; the intelligent client terminal is provided with a graphical interface based on Web; the network module comprises an interface module, a wireless module, an exchange module, a DHCP/DNS module, a static routing module, a firewall module and a network diagnosis module; compared with the prior art, the invention has the beneficial effects that: the functions are clear and mastered at a glance, the operation is stable and efficient, and the working efficiency of a user is improved. The broadband access system is simpler and more convenient to open and use, is more reliable than a common broadband access product in stability and safety, and can be used for small-branch networking products of enterprises.

Description

Intelligent client terminal system
Technical Field
The invention belongs to the technical field of software development, and particularly relates to an intelligent client terminal system.
Background
The network company provides basic network access service for users, establishes fast and reliable network interconnection such as MPLS VPN, SDH, MSTP and the like for the different-place branches of small and medium-sized enterprises, and provides more value-added services such as telephone exchange, video conference, mail service and the like on the basis. However, in the process of networking deployment, operation and maintenance, a private line networking product with an excessively high technical threshold on management and maintenance often leads users of small and medium-sized enterprises lacking technical capability to be prohibitive.
Disclosure of Invention
In order to solve the technical problems in the prior art, the technical scheme adopted by the invention for achieving the purpose is as follows: an intelligent client terminal system comprises an intelligent client terminal and a network module; the intelligent client terminal is provided with a graphical interface based on Web; the network module comprises an interface module, a wireless module, a switching module, a DHCP/DNS module, a static routing module, a firewall module and a network diagnosis module.
Furthermore, the intelligent client terminal adopts DN/NFV technology and a micro embedded system.
Further, the graphical interface of the intelligent client terminal comprises an overview page module, and the real-time information page provides short-term summary of load, flow, wireless and connection of the system and provides all link information via the intelligent client terminal: the source address, the target address, the used protocol and the size of the data packet realize the monitoring of the flow trend of the whole intelligent client terminal network; the overview page module comprises a system module, a management right module, an upgrading/backup module and a restarting module; setting time zone, time synchronization server, log and language in system module; setting a login password of the management system in a password module; in the upgrading/backup module, a user generates a configuration backup of the current system, or uploads the backup and restores the configuration backup; in the restart module, the device is immediately restarted to effect modifications to the device or to address an irregular problem.
Further, the interface module comprises a summary page and a configuration page of each interface, and at least comprises a WAN interface and a LAN interface; the wireless module provides a wireless interface configuration of the device; the switching module comprises a device, a switching network between each physical interface is established by the device, and VLAN can be divided into the switching network to realize the isolation of data packets of access devices on different interfaces on the device; in the DHCP/DNS module, a dynamic host configuration protocol and a dynamic domain name resolution function on a LAN port are configured; the static routing module provides static routing configuration; the firewall module provides simple firewall rules for configuring the access interface, and for the firewall rules, the system provides more detailed setting for each type of rules; the network diagnostic module provides ping, tracert and nslookup tools.
Further, the firewall module comprises basic settings, port forwarding, flow rules and custom rules, and is implemented as an iptables of a kernel, so that other functions provided by the iptables are attached to the firewall module.
Compared with the prior art, the invention has the beneficial effects that: the functions are clear and mastered at a glance, the operation is stable and efficient, and the working efficiency of a user is improved. The broadband access network system is a networking product which is simpler and more convenient to open and use, more reliable than a common broadband access product in stability and safety, and applicable to small branches of enterprises. The client branch mechanism only needs to access a power supply when receiving the equipment and completes the insertion of the line into the equipment according to the instructions, so that the local Ethernet and the Wifi equipment can be accessed into the intranet of the client company; the client mobile office staff only need carry the equipment like the size of a USB flash disk, and can provide a Wifi or Ethernet over USB access mode to access the intranet of the client company through 4G.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
After accessing the network provided by the smart client device, the user can enter a device operation User Interface (UI) through a web browser input 192.168.1.1. And entering an overview page module after logging in according to the provided user name and password.
The overview page module includes basic hardware information and operational load of the device. In the system column, hardware is a white box of an external manufacturer, firmware is based on FNET-rtROM of secondary development, and short-time CPU load and memory load of equipment are also provided. The network column is the Wan interface of the device, and in this example, the PPPoE mode is used to provide internet access service. The DHCP column shows the IP allocation on the Lan interface. Wireless columns provide status and configuration of the Wifi interface of the device.
The real-time information page of the overview page module provides a short-term summary of the load, traffic, wireless, connectivity of the system. Wherein the connection submodule, provides all link information via the smart client terminal: the source address, the target address, the used protocol, the size of the data packet and the like help the user to monitor the flow trend of the whole intelligent client terminal network. Several submodules, such as a system module, a management right module, an upgrading/backup module, a restarting module and the like, are provided.
In the system module, time zone, time synchronization server, log, language, and the like can be set. In the password module, the login password of the management system can be set, and the password cannot be a weak password. In the upgrade/backup module, a user may generate a configuration backup of the current system, or upload the backup and restore it, or perform upgrade configuration under the configuration tag. In the restart module, the device may be restarted immediately to effect modifications to the device or to address some non-conventional issues.
The service menu provides the functions used in the system log, the system process and some internal tests. This part of the content is the kernel system information of the router, and is usually masked off when delivered to the client so as not to cause destructive changes to the system.
The network module comprises modules such as an interface, a wireless module, a switching module, a DHCP/DNS module, a static route module, a firewall module, a network diagnosis module and the like. Usually, the engineer is configured in advance according to the network environment of the client, and the user should not change the network environment unless the user has relevant knowledge.
The interface module has a summary page and a configuration page for each interface. Typically at least a WAN interface and a LAN interface. It should be noted that the interface here is a logical interface, and is an assignment of a physical interface and a virtual interface of a device, and a new logical interface can be created to configure the underlying physical or virtual interface. Each logical interface in the summary page has a concise state and can also enter into editing for detailed configuration.
And adding a new interface, and presenting a creation page of the interface. And assigning a logical interface name on the interface, acquiring a protocol by a network layer address of the interface, and assigning the corresponding bottom-layer physical or virtual interface. It is noted that not all protocols are supported on the interface protocol. The engineer would load the required protocols according to the specific scenario of the client device to ensure lightweight overall system. Click-through goes to the next step, taking the common LAN configuration as an example:
within the wireless module, a wireless interface configuration of the device is provided. The radio interface can be clicked into the detail settings on the summary page. Within the switching module, the device creates (virtualizes) a switching network between the physical interfaces and can partition a VLAN to the switching network to achieve isolation of packets for access devices on different interfaces on the device. In the DHCP/DNS module, the "dynamic host configuration protocol" and "dynamic domain name resolution" functions on the LAN port are configured. The static routing module provides static routing configuration. When the device LAN port accesses an additional routing device, an intra-network route may be specified therein.
The firewall module provides simple firewall rules for configuring the access interface, and the firewall module comprises 4 items of basic settings, port forwarding, flow rules and custom rules. Since the firewall is implemented as an iptables of the kernel, it is accompanied by other functions provided by the iptables. For firewall rules, the system provides a more detailed setting for each type of rule. The network diagnosis module provides three simple tools of ping, tracert and nslookup.
To simplify the maintenance costs of the customer network administrator and the network skill level requirements, the intelligent customer terminal provides a Web-based graphical interface. The configuration of the graphical interface covers all system configuration and runtime information.
The graphical interface takes the state, the system, the service and the network as the groups, each group has the detailed items, and the state is applied to the monitoring of the system operation and generally allows the complete access of a client network administrator. The system is the relevant configuration of the management interface, and allows the customer to modify and customize the management interface. The service is an underlying embedded environment, involving the system underlying configuration, whose information is typically maintained by technicians and is not open to customer personnel. The network is then a configuration of hardware interfaces, where access to this portion of the content requires a high level of network knowledge, and where a customer network administrator may, but typically should not, modify the configuration.
The client branch mechanism only needs to access a power supply when receiving the equipment and completes the insertion of the line into the equipment according to the instructions, so that the local Ethernet and the Wifi equipment can be accessed into the intranet of the client company; the client mobile office staff only need carry the equipment like the size of a USB flash disk, and can provide a Wifi or Ethernet over USB access mode to access the intranet of the client company through 4G.
Although embodiments of the present invention have been shown and described, it will be appreciated by those skilled in the art that changes, modifications, substitutions and alterations can be made in these embodiments without departing from the principles and spirit of the invention, the scope of which is defined in the appended claims and their equivalents.

Claims (5)

1. An intelligent client terminal system, characterized in that: the system comprises an intelligent client terminal and a network module; the intelligent client terminal is provided with a graphical interface based on Web; the network module comprises an interface module, a wireless module, a switching module, a DHCP/DNS module, a static routing module, a firewall module and a network diagnosis module.
2. The intelligent client terminal system according to claim 1, wherein: the intelligent client terminal adopts DN/NFV technology and a micro embedded system.
3. The intelligent client terminal system according to claim 1, wherein: the graphical interface of the intelligent client terminal comprises an overview page module, a real-time information page provides short-term summary of load, flow, wireless and connection of the system, and provides all link information via the intelligent client terminal: the source address, the target address, the used protocol and the size of the data packet realize the monitoring of the flow trend of the whole intelligent client terminal network; the overview page module comprises a system module, a management right module, an upgrading/backup module and a restarting module; setting time zone, time synchronization server, log and language in system module; setting a login password of the management system in a password module; in the upgrading/backup module, a user generates a configuration backup of the current system, or uploads the backup and restores the configuration backup; in the restart module, the device is immediately restarted to effect modifications to the device or to address an irregular problem.
4. The intelligent client terminal system according to claim 1, wherein: the interface module comprises a summary page and a configuration page of each interface, and at least comprises a WAN interface and a LAN interface; the wireless module provides a wireless interface configuration of the device; the switching module comprises a device, a switching network between each physical interface is established by the device, and VLAN can be divided into the switching network to realize the isolation of data packets of access devices on different interfaces on the device; in the DHCP/DNS module, a dynamic host configuration protocol and a dynamic domain name resolution function on a LAN port are configured; the static routing module provides static routing configuration; the firewall module provides simple firewall rules for configuring the access interface, and for the firewall rules, the system provides more detailed setting for each type of rules; the network diagnostic module provides ping, tracert and nslookup tools.
5. The intelligent client terminal system according to claim 4, wherein: the firewall module comprises basic settings, port forwarding, flow rules and custom rules, and is implemented as an iptables of a kernel, so that other functions provided by the iptables are attached to the firewall module.
CN201911314990.5A 2019-12-19 2019-12-19 Intelligent client terminal system Pending CN111200516A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201911314990.5A CN111200516A (en) 2019-12-19 2019-12-19 Intelligent client terminal system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201911314990.5A CN111200516A (en) 2019-12-19 2019-12-19 Intelligent client terminal system

Publications (1)

Publication Number Publication Date
CN111200516A true CN111200516A (en) 2020-05-26

Family

ID=70747592

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201911314990.5A Pending CN111200516A (en) 2019-12-19 2019-12-19 Intelligent client terminal system

Country Status (1)

Country Link
CN (1) CN111200516A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112671579A (en) * 2020-12-23 2021-04-16 安徽长泰信息安全服务有限公司 Remote gateway management system based on cloud management

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101902456A (en) * 2010-02-09 2010-12-01 北京启明星辰信息技术股份有限公司 Safety defense system of Website
CN103297275A (en) * 2013-06-08 2013-09-11 烽火通信科技股份有限公司 Dynamic discovery and loading system and method for Web network management client module
WO2015176519A1 (en) * 2014-05-21 2015-11-26 华南理工大学 Distributed collaborative method for improving application efficiency of web browser
CN105490861A (en) * 2015-12-30 2016-04-13 中国普天信息产业北京通信规划设计院 System and method of management of network management device
CN108366002A (en) * 2018-03-10 2018-08-03 潍坊学院 A kind of multi-action computer network guard system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101902456A (en) * 2010-02-09 2010-12-01 北京启明星辰信息技术股份有限公司 Safety defense system of Website
CN103297275A (en) * 2013-06-08 2013-09-11 烽火通信科技股份有限公司 Dynamic discovery and loading system and method for Web network management client module
WO2015176519A1 (en) * 2014-05-21 2015-11-26 华南理工大学 Distributed collaborative method for improving application efficiency of web browser
CN105490861A (en) * 2015-12-30 2016-04-13 中国普天信息产业北京通信规划设计院 System and method of management of network management device
CN108366002A (en) * 2018-03-10 2018-08-03 潍坊学院 A kind of multi-action computer network guard system

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112671579A (en) * 2020-12-23 2021-04-16 安徽长泰信息安全服务有限公司 Remote gateway management system based on cloud management

Similar Documents

Publication Publication Date Title
US20200252375A1 (en) Virtual private gateway for encrypted communication over dedicated physical link
CN110301104B (en) Optical line terminal OLT equipment virtualization method and related equipment
US11082258B1 (en) Isolation and segmentation in multi-cloud interconnects
WO2019128273A1 (en) Method, device and system for determining connection relation of network devices
US10693753B2 (en) Network device snapshots
CN112956158B (en) Structural data plane monitoring
JP5679343B2 (en) Cloud system, gateway device, communication control method, and communication control program
CN104468162A (en) Method and system for network management, virtual network entity, and network device
US10778467B2 (en) Method for providing virtual CPE service by using single internet line and network function virtualization cloud
EP3687117B1 (en) Systems and methods for isolating network traffic of multiple users across networks of computing platforms
CN110380966B (en) Method for discovering forwarding path and related equipment thereof
CN111200516A (en) Intelligent client terminal system
CN105871676B (en) The method for connecting network and system of distal end virtual machine in a kind of desktop cloud
US20230254244A1 (en) Path determining method and apparatus, and computer storage medium
US20180198708A1 (en) Data center linking system and method therefor
US20130151679A1 (en) Hybrid virtual computing environments
US20130282923A1 (en) Managing overlapping address domains
CN114189485A (en) Network port management method and system of switch and computer readable storage medium
Cisco Troubleshooting Internetworking Systems
Surantha Design and Evaluation of Enterprise Network with Converged Services
CN103546323A (en) Method for remotely managing WIFI interface in terminal of coaxial or power line Ethernet
CN104378245A (en) Method and device for implementing OAM (operation, administration and maintenance) on AC (attachment circuit) port of L2VPN (layer 2 virtual private network) architecture
US20220210049A1 (en) Packet processing method and related apparatus
US11831498B1 (en) Integrating an existing cloud network into a target environment
CN116546012A (en) Method and device for realizing edge cloud NAT gateway, electronic equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20200526