CN101110774B - Flow media system NAT traversing device supporting authentication and implementing method thereof - Google Patents
Flow media system NAT traversing device supporting authentication and implementing method thereof Download PDFInfo
- Publication number
- CN101110774B CN101110774B CN200710120883XA CN200710120883A CN101110774B CN 101110774 B CN101110774 B CN 101110774B CN 200710120883X A CN200710120883X A CN 200710120883XA CN 200710120883 A CN200710120883 A CN 200710120883A CN 101110774 B CN101110774 B CN 101110774B
- Authority
- CN
- China
- Prior art keywords
- message
- stb terminal
- nat
- signaling
- send
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention provides a streaming media system NAT traversal device supporting the certification authoring, which comprises an STB terminal and a streaming media server, the streaming media server comprises a signaling flow forwarding module used to forward the signaling message received from the terminal to a signaling processing module, and to forward the signaling message being processed by the signaling processing module to the STB terminal; the signaling processing module used to indicate the STB terminal to send an NAT traversal message; and a media streaming forwarding module used to receive the NAT traversal message of the STB terminal, and to send the media streaming to the target IP and PORT. The device and the method provided by the present invention, the STB carries the authentication code of the terminal in an NAT traversal packet to provide the authentication for the server terminal, and after the server operates the authentication successfully, the remote IP packet and PORT carried by the NAT traversal packet substitute the IP and PORT on the STB of the signaling negotiation, thereby, enabling the streaming media server to send the media packet to the STB terminal behinds the NAT device.
Description
Technical field
The present invention relates to multi-media communication, relate in particular to a kind of flow media system NAT traversing device and its implementation of supporting authentication.
Background technology
Because public network IP address has become scarce resource, the private network of setting up oneself is adopted in existing enterprise-level application more, and the network equipment Hide All of enterprises is in the private network back.The privately owned addressing of the network using of enterprises is also controlled and the communicating by letter of public network by the NAT/ fire compartment wall.Network address translation (nat)/fire compartment wall can be finished the mutual conversion of privately owned addressing and public network addressing, and corresponding packet filtering rules is set, and allows the IP bag that does not satisfy condition can not penetrating NAT/fire compartment wall.The NAT/ fire compartment wall is to the fixing general application protocol of ports such as HTTP, only need conversion IP/TCP/UDP head, can realize well penetrating, but for H.323/SIP/H.248/MGCP/RTSP using, be in control information, dynamically to consult the Media Stream port, the IP address of signaling protocol the inside also is privately owned, and private IP address can not route on public network, and the port of dynamic assignment has brought difficulty for the fixing packet filtering strategy of configuration on the NAT/ fire compartment wall.
Streaming media server and STB (Set Top Box, set-top box) terminal is carried out Signalling exchange by the RTSP agreement, carries out the negotiation of resource, and as shown in Figure 1, flow process is as follows:
Step S110, the STB terminal sends the Option order of carrying authentication code to streaming media server, registers to streaming media server;
Step S120, streaming media server sends the response message that succeeds in registration to the STB terminal;
Step S130, the STB terminal sends the Decrible order to streaming media server, the inquiry programme information;
Step S140, streaming media server returns inquiry request response message to the STB terminal;
Step S150, the STB terminal sends the Setup order to streaming media server, carries local IP and PORT that the STB terminal is wished the Media Stream set up, and the Media Stream passage is set up in request;
Step S160, streaming media server is set up message to STB terminal responds Media Stream passage;
Step S170, the STB terminal sends the PLAY order to streaming media server, the request broadcast program;
Step S180, streaming media server is play message to the STB terminal responds;
Step S190, streaming media server is to STB terminal plays Media Stream.
Adopt traditional interactive mode, receive the PLAY message of STB at streaming media server, and after correctly replying,, send the Streaming Media message to far-end then according to the STB far-end IP and the port that obtain in the SETUP interacting message.But exist under the situation of NAT device, STB may be hidden in the back of private network, and the private network IP of the STB that Streaming Media sends can't correct route on public network, causes the medium bag not to be dealt on the STB.As shown in Figure 2, in multi-media network 200, STB terminal 210 is linked into public network 230 by NAT device 220, and the private network IP that streaming media server 240 sends can not correct route on public network 230, therefore can not send the medium bag on STB terminal 210.
Summary of the invention
The present invention is intended to solve in the prior art STB terminal when the NAT device back, the medium that the media port of consulting by signaling sends can't arrive the problem of STB terminal, a kind of flow media system NAT traversing device and its implementation of supporting authentication is provided, made streaming media server the medium bag can be sent to the STB terminal of NAT device back.
To achieve these goals, the invention provides a kind of flow media system NAT traversing device of supporting authentication, comprise STB terminal and streaming media server, described streaming media server comprises:
The signaling flow forwarding module, be used for and be forwarded to signaling processing module from the signaling message that described STB terminal receives, and described signaling message sends to described STB terminal after described signaling processing module is handled, and indicates described STB terminal to send the message that NAT passes through message described signaling processing module to send to described STB terminal;
Signaling processing module, be used to handle the described signaling message that receives from described STB terminal, to finish described STB terminal authentication, program inquiry, channel foundation and playing programs, replying of related news sent to described STB terminal, and indicate described STB terminal to send described NAT and pass through message;
Media streaming forwarding module, the NAT that is used to receive described STB terminal passes through message, determines Target IP and port according to IP and port information that described NAT passes through after the NAT conversion that message carries, and sends Media Stream to described Target IP and port.
Above-mentioned device, its characteristics be, described signaling message comprises that authentication message, program inquiry message, channel set up message and playing programs message.
Above-mentioned device, its characteristics are that described signaling processing module also is used for sending to described media streaming forwarding module the authentication code of described STB terminal.
Above-mentioned device, its characteristics are that described media streaming forwarding module also is used for according to described authentication code described NAT being passed through message and authenticating after the NAT that receives described STB terminal passes through message.
Above-mentioned device, its characteristics are that the NAT that described signaling processing module also is used to indicate described media streaming forwarding module to wait for that within a certain period of time described STB terminal sends passes through message.
In order to realize above-mentioned purpose better, the present invention provides a kind of flow media system NAT of authentication of supporting to pass through implementation method again, is used to comprise the traversing device of STB terminal and streaming media server, and this method comprises:
A, described STB terminal is to the step of described streaming media server authentication registration;
B, described STB terminal is to the step of described streaming media server inquiry program;
C sets up the step of channel between described STB terminal and the described streaming media server;
D, described STB terminal is to the step of described streaming media server request media stream;
E, described streaming media server is to the step of described STB terminal media stream;
Its characteristics are that described method also comprises after step D:
D1, the signaling process step sends to described STB terminal with relevant replying of signaling message, and indicates described STB terminal to send NAT and pass through message;
D2, signaling flow is transmitted step, and the message of indicating described STB terminal transmission NAT to pass through message described streaming media server sends to described STB terminal;
D3, Media Stream transmit step, and the NAT that receives described STB terminal passes through message, determine Target IP and port according to IP and port information that described NAT passes through after the NAT conversion that message carries, and send Media Stream to described Target IP and port.
Above-mentioned implementation method, its characteristics be, described signaling message comprises that authentication message, program inquiry message, channel set up message and playing programs message.
Above-mentioned implementation method, its characteristics are that described D1 also comprises the step of the authentication code that sends described STB terminal.
Above-mentioned implementation method, its characteristics be, described D3 also is included in after the NAT that receives described STB terminal passes through message, according to described authentication code described NAT is passed through the step that message authenticates.
In order to realize above-mentioned purpose better, the present invention also provides a kind of multi-media network that is used to realize above-mentioned implementation method, comprise a kind of flow media system NAT traversing device of supporting authentication, described device comprises STB terminal and streaming media server, and described streaming media server comprises:
The signaling flow forwarding module, be used for and be forwarded to described signaling processing module from the signaling message that described STB terminal receives, and described signaling message sends to described STB terminal after described signaling processing module is handled, and indicates described STB terminal to send the message that NAT passes through message described signaling processing module to send to described STB terminal;
Signaling processing module, being used to handle the described signaling message that receives from described STB terminal sets up and playing programs to finish described STB terminal authentication, program inquiry, channel, send replying of related news, and indicate described STB terminal to send described NAT and pass through message to described STB terminal;
Media streaming forwarding module, the NAT that is used to receive described STB terminal passes through message, determines Target IP and port according to IP and port information that described NAT passes through after the NAT conversion that message carries, and sends Media Stream to described Target IP and port.
Apparatus and method provided by the invention, NAT is passed through IP and the PORT that the bag far-end IP of carrying and PORT substitute the STB terminal that signaling consults, thereby make streaming media server the medium bag can be sent to the STB terminal of NAT device back, and, can prevent that the disabled user from obtaining media information by in passing through message, carrying authentication code.
Description of drawings
Fig. 1 is streaming media server and STB terminal signaling interaction diagrams in the prior art;
Fig. 2 is a multimedia network architecture block diagram in the prior art;
Fig. 3 is a multimedia network architecture block diagram among the present invention;
Fig. 4 is an apparatus structure block diagram among the present invention;
Fig. 5 is streaming media server and STB terminal signaling interaction diagrams among the present invention.
Embodiment
Figure 3 shows that multimedia network architecture block diagram among the present invention, wherein multi-media network 300 comprises STB terminal 310, NAT device 320, public network 330 and streaming media server 340, streaming media server comprise that again being used to indicate described STB terminal to send NAT passes through the signaling processing module 343 of message (perhaps passing through bag), be used for the message that described signaling processing module indicates described STB terminal transmission NAT to pass through message is sent to the signaling flow forwarding module 341 of described STB terminal, the NAT that is used to receive described STB terminal passes through message and passes through media streaming forwarding module 342 and the timer module 344 that IP after the NAT conversion that message carries and PORT information send Media Stream according to described NAT.Device 400 wherein of the present invention comprises STB terminal 310 and streaming media server 340, as shown in Figure 4, streaming media server 340 comprises again and is used to indicate described STB terminal to send the signaling processing module 343 that NAT passes through message, be used for the message that described signaling processing module indicates described STB terminal transmission NAT to pass through message is sent to the signaling flow forwarding module 341 of described STB terminal, the NAT that is used to receive described STB terminal passes through message and passes through media streaming forwarding module 342 and the timer module 344 that IP after the NAT conversion that message carries and PORT information send Media Stream according to described NAT.
As shown in Figure 5, streaming media server and STB terminal signaling interaction flow are as follows among the present invention:
Step S501, the STB terminal sends the Option message of carrying authentication code to streaming media server, registers to streaming media server;
Step S502, signaling flow forwarding module receive and after STB carries the registration message of authentication code it are transmitted to signaling processing module;
Step S503, signaling processing module send the response message that succeeds in registration by the signaling flow forwarding module to the STB terminal behind authentication success;
Step S504, signaling processing module sends to the medium forwarding module with the registration code of authentication success, for follow-up NAT authentication is prepared;
Step S505, the STB terminal sends the Describle order to streaming media server, the inquiry programme information;
Step S506, signaling flow forwarding module are transmitted to signaling processing module with it after receiving the program inquiry message of STB terminal;
Step S507, signaling processing module return inquiry request response message by the signaling flow forwarding module to the STB terminal after successful inquiring;
Step S508, the STB terminal sends the Setup order to streaming media server, carries IP and PORT that the STB terminal is wished the Media Stream set up, and the Media Stream passage is set up in request;
After the Media Stream passage that step S509, signaling flow forwarding module receive the STB terminal is set up message it is transmitted to signaling processing module;
Step S510, signaling processing module set up success message by the signaling flow forwarding module to STB terminal responds Media Stream passage after the internal media passage is prepared successfully;
Step S511, the STB terminal sends the PLAY order to streaming media server, the request broadcast program;
Step S512, signaling flow forwarding module are transmitted to signaling processing module with it after receiving the program information of STB terminal;
Step S513, signaling processing module is play message by the signaling flow forwarding module to the STB terminal responds, indication STB terminal sends the NAT that carries authentication code and passes through message in message, this moment, streaming media server directly sent Media Stream according to port of consulting in the signaling protocol and IP no longer immediately, but timer is set, wait for that the NAT of STB terminal passes through message;
Step S514, the STB terminal receive require to send NAT and pass through replying of message after, send the NAT that carries authentication information and pass through message to streaming media server;
Step S515 after the NAT that media streaming forwarding module receives the STB terminal passes through message, carries out authentication according to the authentication message of carrying;
Step S516, media streaming forwarding module is after authentication is passed through, determine Target IP and PORT according to the IP and the PORT information of passing through after the NAT that carries in the message changes, just pass through the source IP and the PORT that carry in the message and redefine IP and the PORT of STB terminal after NAT passes through according to NAT, and by this Target IP and PORT to STB terminal plays Media Stream.
Certainly; the present invention also can have other various embodiments; under the situation that does not deviate from spirit of the present invention and essence thereof; being familiar with those of ordinary skill in the art ought can make various corresponding changes and distortion according to the present invention, but these corresponding changes and distortion all should belong to the protection range of the appended claim of the present invention.
Claims (6)
1. a flow media system NAT traversing device of supporting authentication comprises STB terminal and streaming media server, it is characterized in that, described streaming media server comprises:
The signaling flow forwarding module, be used for and be forwarded to signaling processing module from the signaling message that described STB terminal receives, and described signaling message sends to described STB terminal after described signaling processing module is handled, and indicates described STB terminal to send the message that NAT passes through message described signaling processing module to send to described STB terminal;
Signaling processing module, be used to handle the described signaling message that receives from described STB terminal, to finish described STB terminal authentication, program inquiry, channel foundation and playing programs, replying of related news sent to described STB terminal, send the authentication code of described STB terminal to media streaming forwarding module, and indicate described STB terminal to send described NAT and pass through message;
Media streaming forwarding module, the NAT that is used to receive described STB terminal passes through message, according to described authentication code described NAT being passed through message authenticates, and determine Target IP and port according to IP and port information that described NAT passes through after the NAT conversion that message carries, send Media Stream to described Target IP and port.
2. device according to claim 1 is characterized in that, described signaling message comprises that authentication message, program inquiry message, channel set up message and playing programs message.
3. device according to claim 1 is characterized in that, the NAT that described signaling processing module also is used to indicate described media streaming forwarding module to wait for that within a certain period of time described STB terminal sends passes through message.
4. support the flow media system NAT of authentication to pass through implementation method for one kind, be used to comprise the traversing device of STB terminal and streaming media server, this method comprises:
A, described STB terminal is to the step of described streaming media server authentication registration;
B, described STB terminal is to the step of described streaming media server inquiry program;
C sets up the step of channel between described STB terminal and the described streaming media server;
D, described STB terminal is to the step of described streaming media server request broadcast program;
E, described streaming media server is to the step of described STB terminal media stream;
It is characterized in that described method also comprises after step D:
D1, the signaling process step is used for relevant replying of signaling message sent to described STB terminal, sends the authentication code of described STB terminal to media streaming forwarding module, and indicates described STB terminal to send NAT and pass through message;
D2, signaling flow is transmitted step, is used for the message that described streaming media server indicates described STB terminal transmission NAT to pass through message is sent to described STB terminal;
D3, Media Stream is transmitted step, the NAT that is used to receive described STB terminal passes through message, according to described authentication code described NAT being passed through message authenticates, and determine Target IP and port according to IP and port information that described NAT passes through after the NAT conversion that message carries, send Media Stream to described Target IP and port.
5. implementation method according to claim 4 is characterized in that, described signaling message comprises that authentication message, program inquiry message, channel set up message and playing programs message.
6. multi-media network that is used to realize claim 4 or 5 described implementation methods, comprise a kind of flow media system NAT traversing device of supporting authentication, described device comprises STB terminal and streaming media server, it is characterized in that, described streaming media server comprises:
The signaling flow forwarding module, be used for and be forwarded to described signaling processing module from the signaling message that described STB terminal receives, and described signaling message sends to described STB terminal after described signaling processing module is handled, and indicates described STB terminal to send the message that NAT passes through message described signaling processing module to send to described STB terminal;
Signaling processing module, being used to handle the described signaling message that receives from described STB terminal sets up and playing programs to finish described STB terminal authentication, program inquiry, channel, send replying of related news to described STB terminal, send the authentication code of described STB terminal to media streaming forwarding module, and indicate described STB terminal to send described NAT and pass through message;
Media streaming forwarding module, the NAT that is used to receive described STB terminal passes through message, according to described authentication code described NAT being passed through message authenticates, and determine Target IP and port according to IP and port information that described NAT passes through after the NAT conversion that message carries, send Media Stream to described Target IP and port.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200710120883XA CN101110774B (en) | 2007-08-28 | 2007-08-28 | Flow media system NAT traversing device supporting authentication and implementing method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200710120883XA CN101110774B (en) | 2007-08-28 | 2007-08-28 | Flow media system NAT traversing device supporting authentication and implementing method thereof |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101110774A CN101110774A (en) | 2008-01-23 |
| CN101110774B true CN101110774B (en) | 2010-12-08 |
Family
ID=39042672
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200710120883XA Expired - Fee Related CN101110774B (en) | 2007-08-28 | 2007-08-28 | Flow media system NAT traversing device supporting authentication and implementing method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101110774B (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101296192B (en) * | 2008-06-20 | 2010-12-29 | 中兴通讯股份有限公司 | Method and device for establishing multi-homing dynamic signaling link |
| CN101729862B (en) * | 2008-10-21 | 2011-12-28 | 中兴通讯股份有限公司 | Method and system for passing media through NAT by using video monitoring system |
| CN102378064A (en) * | 2010-08-04 | 2012-03-14 | 中兴通讯股份有限公司 | Method and device for realizing traversal of network address translators (NAT) in internet protocol television (IPTV) network |
| CN101977178A (en) | 2010-08-09 | 2011-02-16 | 中兴通讯股份有限公司 | Relay-based media channel establishing method and system |
| CN104703049A (en) * | 2013-12-09 | 2015-06-10 | 中兴通讯股份有限公司 | Network address translation (NAT) traversal method for media stream message, media distribute unit (MDU) and internet protocol television (IPTV) system |
| WO2019071608A1 (en) * | 2017-10-13 | 2019-04-18 | 深圳中兴力维技术有限公司 | Request processing method and device, and computer-readable storage medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1798323A (en) * | 2004-12-29 | 2006-07-05 | 华为技术有限公司 | Video terminal and method of implementing services of stream media |
| CN1984029A (en) * | 2005-12-13 | 2007-06-20 | 中兴通讯股份有限公司 | Conversion of crossing medium-flow over network address |
| CN101018318A (en) * | 2007-02-25 | 2007-08-15 | 华为技术有限公司 | A stream media system, signaling forward device and stream media transmission method |
-
2007
- 2007-08-28 CN CN200710120883XA patent/CN101110774B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1798323A (en) * | 2004-12-29 | 2006-07-05 | 华为技术有限公司 | Video terminal and method of implementing services of stream media |
| CN1984029A (en) * | 2005-12-13 | 2007-06-20 | 中兴通讯股份有限公司 | Conversion of crossing medium-flow over network address |
| CN101018318A (en) * | 2007-02-25 | 2007-08-15 | 华为技术有限公司 | A stream media system, signaling forward device and stream media transmission method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101110774A (en) | 2008-01-23 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8689313B2 (en) | Real time streaming data communications through a security device | |
| EP2116006B1 (en) | Method for remotely controlling multimedia communication across local networks. | |
| CN101110774B (en) | Flow media system NAT traversing device supporting authentication and implementing method thereof | |
| CN101453477B (en) | Method and apparatus for media content uploading in real-time | |
| CN101472155B (en) | Household network system for implementing IPTV business and implementing method thereof | |
| CN103581712B (en) | Multi-protocol video playing method and system based on mobile terminal | |
| CN101414950B (en) | Method for address translation device traversal for sip signaling messages through temporary use of the TCP transport protocol | |
| DE602005012694D1 (en) | METHOD FOR IMPROVING DATA TRANSMISSION IN COMMUNICATION NETWORKS | |
| CN101317413A (en) | Control method, authentication method and stream media server for electronic equipments | |
| US20150067110A1 (en) | Media Playing Method, Apparatus, and System | |
| CA2835052A1 (en) | Anonymous signalling | |
| WO2011076041A1 (en) | Method, device and system for call establishment | |
| CN101350825B (en) | Method and system for crossing network address conversion, stream media server, set-top box | |
| WO2014063511A1 (en) | Monitoring method and internet protocol television set top box | |
| US8452878B2 (en) | Content sharing for social engagement | |
| JP2012015797A (en) | Telephone exchange device and control method used for telephone terminal and telephone system | |
| CN101072326B (en) | method, system and device for accessing service of non-attribution contracted IPIV service provider | |
| TWI478559B (en) | Method and system for handling security in an ip multimedia gateway | |
| JP2010081279A (en) | Receiving apparatus, transmitting and receiving system, and receiving method | |
| CN101977306A (en) | Two-way video monitoring method and system | |
| CN110719435B (en) | Method and system for carrying out terminal conference | |
| EP2958293B1 (en) | IMS-based IPTV Services with WebRTC | |
| US20090307758A1 (en) | Method and apparatus to facilitate using a multicast stream to provide on-demand streaming content | |
| KR101970200B1 (en) | Method and system for multiple social network service live broadcasting at the same time based on image record apparatus | |
| WO2014180415A1 (en) | Media stream packet nat traversal method, mdu and iptv system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20101208 Termination date: 20160828 |