CN100413269C - System and method for mobile terminal accessing network host - Google Patents
System and method for mobile terminal accessing network host Download PDFInfo
- Publication number
- CN100413269C CN100413269C CNB2004100862531A CN200410086253A CN100413269C CN 100413269 C CN100413269 C CN 100413269C CN B2004100862531 A CNB2004100862531 A CN B2004100862531A CN 200410086253 A CN200410086253 A CN 200410086253A CN 100413269 C CN100413269 C CN 100413269C
- Authority
- CN
- China
- Prior art keywords
- portable terminal
- network host
- online
- transit gateway
- mobile terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Abstract
The present invention discloses a system and a method for a mobile terminal accessing a network host. When the mobile terminal wants to be online to a specified network host through a switching gateway, the problem of identity identification occurs, the switching gateway must correctly identify the identities of the mobile terminal and the network host, and then, the mobile terminal and the network host are permitted to be paired and establish data transmission channels. The method of the present invention comprises the following steps: the network host carries out online to the switching gateway; the switching gateway identifies the identity of the netwok host; the mobile terminal obtains the online address of the switching gateway; the mobile terminal carries out the online to the switching gateway of the online address through wireless networks; the switching gateway identifies the identity of the mobile terminal; the switching gateway establishes the data transmission channels for the online of the mobile terminal and the network host; the mobile terminal and the network host carry out two-way data transmission through the switching gateway. The main application of the present invention is to solve the problem of the identity identification that a plurality of mobile terminals want to be online to the specified network host through the switching gateway.
Description
Affiliated technical field
The present invention relates to a kind of System and method for of mobile terminal accessing network host, when portable terminal is desired to connect to the network host of appointment through transit gateway, exist the customer identification problem and also have portable terminal should connect to the problem of which platform switching gateway, the status that transit gateway must correctly be discerned portable terminal and network host just allows both pairings and sets up data transmission channel.
Background technology
The enterprise customer is in order to protect local area network (LAN); usually the network host in the local area network (LAN) can use the isolated external world of fire compartment wall directly to carry out online to server in the local area network (LAN); but general enterprise can allow local area network (LAN) to the Internet from inside to outside HTTP/HTTPS port online; under such network environment; portable terminal can't directly be set up online to network host in the local area network (LAN), therefore needs to use transit gateway that portable terminal and network host are set up data transmission channel ability two-way transfer of data.Yet when the intranet number has a lot of the time, which portable terminal is transit gateway must have the ability to discern belongs to for which enterprise, therefore exists the customer identification problem of transit gateway to portable terminal and network host.
When transit gateway number not only the time, portable terminal must know connect to which platform switching gateway, can be correct set up data transmission channel with the belonging network main frame, just exist the online address problem how portable terminal obtains correct transit gateway.
Summary of the invention
In order to overcome the customer identification problem of prior art transit gateway to portable terminal and network host, the technical solution adopted for the present invention to solve the technical problems is: transit gateway recognition network host identity is the combination according to one of them person at least who sets up online source IP addresses, source port number, purpose IP address, destination slogan, source domain name, purpose domain name, or the data that identifying information arranged according to the network host conveyer belt are reached the purpose of customer identification to transit gateway.
Transit gateway identification portable terminal status is according to the combination of one of them at least of setting up online source IP addresses, source port number, purpose IP address, destination slogan, source domain name, purpose domain name, phone number, or the data that identifying information arranged according to the portable terminal conveyer belt are reached the customer identification purpose to transit gateway.
When transit gateway number not only the time, the online address that portable terminal obtains transit gateway be by be stored in online address setting in the portable terminal, by the user manually the online address of input, by SMS online address is sent to portable terminal, by IP network online address is sent to portable terminal, online address is sent to the combination of one of them at least of portable terminal by WAP Push.
The invention has the beneficial effects as follows, allow portable terminal can see through the customer identification function of transit gateway, the correct network host with owned enterprise is set up the bidirectional data transfers channel, and can use many platform switchings gateway to reach load balancing, and portable terminal also can obtain the online address of correct transit gateway and carry out online under the framework that many platform switchings gateway is arranged with redundant.
Description of drawings
Fig. 1 is a system architecture diagram of the present invention.
Fig. 2 is operation workflow figure of the present invention.
Embodiment
The present invention is further described below in conjunction with drawings and Examples.
In system architecture diagram of the present invention shown in Figure 1, comprise three network host H1, H2, H3, two platform switching gateway G1, G2, one wireless network, with four portable terminal M1, M2, M3, M4, these equipment all are to interconnect with network, in the middle of this system, network host H1, it is online that H2 carries out TCP to transit gateway G1, it is online that network host H3 carries out TCP to transit gateway G2, and transit gateway to need the reason of many compositions be to reach load balancing and redundant effect, portable terminal M1 wherein, M2 is under the jurisdiction of network host H1, portable terminal M3 is under the jurisdiction of network host H2, portable terminal M4 is under the jurisdiction of network host H3, its membership has determined that portable terminal allows which platform network host to set up the bi-directional data channel with, sets up the purpose that data transmission channel can be reached portable terminal and network host bi-directional transfer of data afterwards.
F1 in the middle of Fig. 1, F2 fire compartment wall, respectively two network hosts of H1, H2 and the Internet are separated, become H1, the H2 framework in local area network (LAN), this moment, portable terminal was initiatively to initiate online to H1 or H2, but must allow two network hosts of H1, H2 connect to transit gateway earlier by the HTTP/HTTPS port, send in the local area network (LAN) by the request of transit gateway again portable terminal.Such framework is not restricted to use the network host in local area network (LAN), so H3 can not use identical framework and portable terminal to link up in local area network (LAN) yet.
In operation workflow figure of the present invention shown in Figure 2, network host carries out online (step 1) to transit gateway, transit gateway recognition network host identity (step 2), portable terminal obtains the online address (step 3) of transit gateway, portable terminal carries out online (step 4) by wireless network to the transit gateway of this online address, transit gateway identification portable terminal status (step 5), transit gateway is with portable terminal and network host both sides' the online data transmission channel (step 6) of setting up, after data transmission channel foundation was finished, portable terminal and network host saw through transit gateway and carry out bidirectional data transfers.
One embodiment is described further operation workflow figure shown in Figure 2 in this measure, if portable terminal M2 will set up data transmission channel with the H1 under him, then at first network host H1 must carry out the online (step 1) of TCP to transit gateway G1, in the middle of this step, why H1 connects to G1 rather than connect to G2 can be the prior configuration of network management personnel, also can allow H1 select transit gateway at random so that carry out load balancing, if H1 is to use the mode of selecting at random to connect to transit gateway, then must notify the online address of all portable terminals modification transit gateway that are under the jurisdiction of H1 with modes such as SMS or WAP Push, perhaps portable terminal also can arrive the online correspondence table of fixing URL position or server extracting transit gateway and network host.
Transit gateway G1 recognition network main frame H1 status (step 2) is according to the combination of one of them at least of setting up the online source IP addresses of TCP, source port number, purpose IP address, destination slogan, source domain name, purpose domain name, or the data that identifying information arranged according to the network host conveyer belt are reached the purpose of customer identification to transit gateway.When G1 confirm this TCP online be come from H1 after, G1 just is associated together with H1 this TCP is online, and waits for the online request from portable terminal.
Portable terminal obtains the flow process of online address of transit gateway, and (step 3) further comprises, the online address that portable terminal M2 obtains transit gateway H1 is the online address setting that just has been stored in the portable terminal by original, or by the online address of the manual input of user, or online address is sent to portable terminal by SMS, or online address is sent to portable terminal by IP network, or online address is sent to the combination of one of them at least of portable terminal by WAP Push, if portable terminal M2 this moment has obtained wrong online address and has connected to transit gateway G2, just can't be correct set up data transmission channel with H1, therefore obtaining correct transit gateway address is important step, after M2 had obtained correct online address, portable terminal carried out the online (step 4) of TCP by wireless network to the transit gateway G1 of this online address.
(step 5) is according to the combination of one of them at least of setting up online source IP addresses, source port number, purpose IP address, destination slogan, source domain name, purpose domain name, phone number to transit gateway G1 identification portable terminal status, or the data of identifying information are arranged to transit gateway according to the portable terminal conveyer belt, reach the customer identification purpose, in case G1 identifies the status of portable terminal, just the TCP that portable terminal can be set up is online associates with its status M2.
Transit gateway is set up the flow process of data transmission channel with portable terminal and network host both sides online, and (step 6) further comprises, transit gateway has been discerned after portable terminal M2 status and the network host H1 status, both sides online must be carried out correct pairing, portable terminal M2 passes the data of coming can only be forwarded to the correct purpose network host H1 of status, and network host H1 passes the data of coming can only be forwarded to the correct purpose portable terminal M2 of status.
Transit gateway can comprise data transmission channel with portable terminal and network host both sides' the online flow process of setting up data transmission channel and have the encrypted transmission function, and use symmetrical expression cryptographic algorithm, asymmetric cryptographic algorithm, proprietary encryption algorithm, SSL/TLS cryptographic algorithm one of them is encrypted the data of transmission at least.
Above-described embodiment only is explanation technological thought of the present invention and characteristics, its purpose makes the personage who has the knack of this skill can understand content of the present invention and is implementing according to this, when not limiting claim of the present invention with this, promptly the equalization of doing according to disclosed spirit generally changes or modifies, and must be encompassed in the claim of the present invention.
Claims (7)
1. the method for a mobile terminal accessing network host, be used to make at least one portable terminal and at least one network host that is positioned at fire compartment wall to set up data transmission channel, it is characterized in that: comprise the network host that is positioned at fire compartment wall and carry out online to transit gateway earlier, transit gateway recognition network host identity, portable terminal obtains the online address of transit gateway, portable terminal carries out online by wireless network to the transit gateway of this online address, transit gateway identification portable terminal status, transit gateway is with portable terminal and network host both sides' the online data transmission channel of setting up, make portable terminal and network host see through transit gateway and carry out bidirectional data transfers, the flow process of transit gateway recognition network host identity further comprises, and transit gateway recognition network host identity is the data of identifying information to be arranged to transit gateway according to the network host conveyer belt; Transit gateway further comprises portable terminal and network host both sides' the online flow process of setting up data transmission channel, transit gateway has been discerned after portable terminal status and the network host status, both sides online must be carried out correct pairing, portable terminal passes the data of coming can only be forwarded to the correct purpose network host of status, and network host passes the data of coming can only be forwarded to the correct purpose portable terminal of status.
2. the method for mobile terminal accessing network host according to claim 1, it is characterized in that: the flow process of transit gateway recognition network host identity further comprises, and transit gateway recognition network host identity is according to one of them person at least who sets up online source IP addresses, source port number, purpose IP address, destination slogan, source domain name, purpose domain name.
3. the method for mobile terminal accessing network host according to claim 1, it is characterized in that: the flow process that portable terminal obtains the online address of transit gateway further comprises, the online address that portable terminal obtains transit gateway be by be stored in online address setting in the portable terminal, by the user manually the online address of input, by SMS online address is sent to portable terminal, by IP network online address is sent to portable terminal, online address is sent to one of them person at least of portable terminal by WAP Push.
4. the method for mobile terminal accessing network host according to claim 1, it is characterized in that: the flow process that portable terminal obtains the online address of transit gateway further comprises, and this online address is one of them person at least of domain name, IP address, port numbers, URI, URL.
5. the method for mobile terminal accessing network host according to claim 1, it is characterized in that: the flow process of transit gateway identification portable terminal status further comprises, and transit gateway identification portable terminal status is according to one of them person at least who sets up online source IP addresses, source port number, purpose IP address, destination slogan, source domain name, purpose domain name, phone number.
6. the method for mobile terminal accessing network host according to claim 1, it is characterized in that: the flow process of transit gateway identification portable terminal status further comprises, and transit gateway identification portable terminal status is the data of identifying information to be arranged to transit gateway according to the portable terminal conveyer belt.
7. the method for mobile terminal accessing network host according to claim 1, it is characterized in that: transit gateway further comprises portable terminal and network host both sides' the online flow process of setting up data transmission channel, this data transmission channel has the encrypted transmission function, and uses one of them person at least of symmetrical expression cryptographic algorithm, asymmetric cryptographic algorithm, proprietary encryption algorithm, SSL/TLS cryptographic algorithm.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100862531A CN100413269C (en) | 2004-10-29 | 2004-10-29 | System and method for mobile terminal accessing network host |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100862531A CN100413269C (en) | 2004-10-29 | 2004-10-29 | System and method for mobile terminal accessing network host |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1767483A CN1767483A (en) | 2006-05-03 |
| CN100413269C true CN100413269C (en) | 2008-08-20 |
Family
ID=36743102
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2004100862531A Expired - Fee Related CN100413269C (en) | 2004-10-29 | 2004-10-29 | System and method for mobile terminal accessing network host |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100413269C (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105577738B (en) * | 2014-11-10 | 2019-08-02 | 中国移动通信集团公司 | A kind of method, apparatus and system of processing terminal information |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030039234A1 (en) * | 2001-08-10 | 2003-02-27 | Mukesh Sharma | System and method for secure network roaming |
| CN1433200A (en) * | 2002-01-14 | 2003-07-30 | 华为技术有限公司 | Device and method for radio subscriber to access Internet |
| US20030156591A1 (en) * | 2000-05-08 | 2003-08-21 | Sorsa Mika T. | Shared application access for data services in wireless telecommunication systems |
| CN1529531A (en) * | 2003-10-17 | 2004-09-15 | ����ͨѶ�ɷ�����˾ | Method for accessing safety gate-link for mobile user |
-
2004
- 2004-10-29 CN CNB2004100862531A patent/CN100413269C/en not_active Expired - Fee Related
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030156591A1 (en) * | 2000-05-08 | 2003-08-21 | Sorsa Mika T. | Shared application access for data services in wireless telecommunication systems |
| US20030039234A1 (en) * | 2001-08-10 | 2003-02-27 | Mukesh Sharma | System and method for secure network roaming |
| CN1433200A (en) * | 2002-01-14 | 2003-07-30 | 华为技术有限公司 | Device and method for radio subscriber to access Internet |
| CN1529531A (en) * | 2003-10-17 | 2004-09-15 | ����ͨѶ�ɷ�����˾ | Method for accessing safety gate-link for mobile user |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1767483A (en) | 2006-05-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP2936881B1 (en) | Connecting to a wireless network using social network identifier | |
| CN1498489B (en) | Network communication | |
| CN102368764B (en) | A kind of method, system and client communicated by multi-point login | |
| US20060143692A1 (en) | Communication system and transfer device | |
| JP6488691B2 (en) | Wireless relay device, control system and computer program | |
| JPWO2006011464A1 (en) | Connection method, communication system, apparatus and program | |
| EP1665576B1 (en) | Method and system for wirelessly managing the operation of a network appliance over a limited distance | |
| CN101228771A (en) | System, terminal, method, and computer program product or establishing a transport-level connection with a server located behind a network address translator and/or firewall | |
| JPWO2014142299A1 (en) | COMMUNICATION TERMINAL, COMMUNICATION CONTROL DEVICE, COMMUNICATION SYSTEM, COMMUNICATION CONTROL METHOD, AND PROGRAM | |
| EP2315489A1 (en) | Communication control system, communication system and communication control method | |
| JP2017102627A (en) | IoT device network | |
| CN103716189B (en) | A kind of configuration management method for local area network terminal gateway equipment | |
| CN102612033B (en) | Mobile phone with thin wireless access point and communication method for mobile phone | |
| JP5292172B2 (en) | Connection management apparatus and connection management method | |
| CN105517654A (en) | A household system of a door entry system, the door entry system and an integrated indoor station | |
| CN107645570A (en) | Client loading method and device | |
| CN102959527A (en) | Home gateway | |
| CN103299599A (en) | Control of connection between devices | |
| CN100413269C (en) | System and method for mobile terminal accessing network host | |
| EP1664999B1 (en) | Wirelessly providing an update to a network appliance | |
| JP2014127866A (en) | Communication system, device, method, and program | |
| JP5146021B2 (en) | Call center device and call connection method in call center device | |
| KR100559043B1 (en) | Mobile home network system | |
| CN110336836A (en) | A kind of Web filtering service system and method | |
| JP5670680B2 (en) | COMMUNICATION METHOD, PRIVATE XMPP SERVER, XMPP CLIENT DEVICE, AND COMMUNICATION SYSTEM INCLUDING THEM |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20080820 Termination date: 20131029 |