CN101227507A - Method and system for obtaining service resource address in same root multi-layer NAT network - Google Patents

Method and system for obtaining service resource address in same root multi-layer NAT network Download PDF

Info

Publication number
CN101227507A
CN101227507A CNA2008100569642A CN200810056964A CN101227507A CN 101227507 A CN101227507 A CN 101227507A CN A2008100569642 A CNA2008100569642 A CN A2008100569642A CN 200810056964 A CN200810056964 A CN 200810056964A CN 101227507 A CN101227507 A CN 101227507A
Authority
CN
China
Prior art keywords
index service
network
service
index
service unit
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CNA2008100569642A
Other languages
Chinese (zh)
Other versions
CN101227507B (en
Inventor
傅川
秦卓琼
张国清
王迪
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Institute of Computing Technology of CAS
Original Assignee
Institute of Computing Technology of CAS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Institute of Computing Technology of CAS filed Critical Institute of Computing Technology of CAS
Priority to CN2008100569642A priority Critical patent/CN101227507B/en
Publication of CN101227507A publication Critical patent/CN101227507A/en
Application granted granted Critical
Publication of CN101227507B publication Critical patent/CN101227507B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)

Abstract

The invention discloses a service resource address acquisition system in a multilayer NAT network with same root and the process. The mapping of the service resource in the privacy network in the multilayer network is established through deploying an index service device in the multilayer NAT network with same root, the service resource is registered on the index service device, and the client conducts the inquiry for the service resource based on the index service device, and can use the service resource in a private network. A server is not only deployed in a public network, but also is deployed in a multilevel private network through applying the invention in the network application of server-client model, simultaneously, the service quality (Qos) of the transmission is increased, and the demand pressure for the public network address and the data transmission capacity is reduced.

Description

System for obtaining service resource address and method in the same root multi-layer NAT network
Technical field
The present invention relates to the computer network communication technology field, more specifically, the present invention relates to system for obtaining service resource address and method in a kind of same root multi-layer NAT network.
Background technology
At present, based on the internet address insufficient space of IPv4, can't satisfy the demand of numerous users to network insertion, particularly for such as the country that the such network demand of China is big, address assignment is not enough, it is more outstanding that the insufficient space problem seems.From the application and the deployment of reality, (Network Address Translation, NAT) technology is a kind of effective ways that the netizen inserts the Internet under solution internet ip (Internet Protocol) the address shortage situation to network address translation.
NAT is Internet engineering duty group (Internet Engineering Task Force, IETF) a standard, allow a whole mechanism to appear on the Internet, inner private network address (IP address) is converted to legitimate network public IP address with a public IP address.Network address port conversion (Network Address Port Translation, NAPT) be that the notion of " NAT " is further extended, in the switching network address, conversion transport layer sign (for example inquiry ID of the port numbers of TCP/UDP, ICMP), thus be the transport layer label multiplex of a plurality of internal hosts an only external address.NAPT makes one group of main frame can share an only external address.Usually the NAT that mentions is meant NAPT.
Along with popularizing and development of internet technology of the increasing of personal computer device, network access equipment, increasing company, group and family wish the mode of these information equipments with network organized together, and access the Internet, and for the purpose of safety, node how to hide high safety grade on network is the problem that a lot of companies face.Urgent at this IP address famine, equipment network demand for interconnection, and exist under the situation of a large amount of potential safety hazards, by single-stage or multistage private network structure that the NAT technology forms, it is more and more general to insert the Internet in actual deployment.
The control range of NAT device is to extend downwardly into network range between the outer net interface of next NAT by the network that the Intranet interface of this NAT device connects along this interface, does not comprise other NAT device in the network range.The network that relative NAT device Intranet interface connects, the network that this NAT device outer net interface connects is the direct upper layer network of current network, is called for short direct upper strata; The network that relative NAT device outer net interface connects, the network that this NAT device Intranet interface connects is the direct lower floor network of current network, is called for short direct lower floor.The NAT device that directly is connected on the Internet is called root NAT.Do a directed edge from each direct upper strata NAT to direct lower floor, in formed topological diagram, if the paths of existence from NAT A to NAT B claims that then NAT A is the same upper strata NAT of NAT B.If also have the paths of NAT A simultaneously, claim that then NAT B and NAT C are with root NAT to NAT C.
Various services on the Internet at present generally all have public network IP address, and the server of disposing in the private network in the NAT network (for example Web server, ftp server etc.), usually only be a certain company or the mechanism's service in this private network, only to being in the main frame of same NAT under controlling with it as seen.For being positioned at main frame that NAT has jurisdiction over,,, also just can not obtain the resource on these servers because protocols limit can not have access to these services though physical link is arranged with these servers with root lower floor with these servers.
Summary of the invention
For overcoming the defective that Service Source can not obtain in the existing same root multi-layer NAT network environment, the present invention proposes service unit address acquisition system and method in a kind of same root multi-layer NAT network.
According to an aspect of the present invention, provide the index service device of Service Source in a kind of same root multi-layer NAT network, comprising:
Top index service unit, top service bus device by the outside is connected with global network, the network address and the port of the Service Source in the network that record global network and the NAT device that directly is connected with global network are controlled, and the network address and the port of described Service Source are provided for subscriber equipment;
At least one base index service unit, service bus device by the outside is connected with different private networks, write down the network address and the port of the Service Source in other private networks that described private network and described private network extend downwards by NAT device, and the subscriber terminal equipment in other private networks that extend by NAT device for described private network and described private network provides the network address and the port of described Service Source downwards;
Wherein, the base index service unit layer index service unit that makes progress sends the register requirement application and adds described index service device, the packet of described register requirement is determined to carry through NAT device in index service unit, described upper strata, extract the hierarchical information in the described register requirement, if described base index service unit is the subindex service unit of index service unit, described upper strata, the registration of described base index service unit is finished in index service unit, described upper strata, if described base index service unit is not the subindex service unit of index service unit, described upper strata, index service unit, described upper strata returns the network address of the index service unit that comprises described NAT device correspondence and the response message of port.
Wherein, if the level of described base index service unit is bigger by 1 than the level of index service unit, described upper strata, then described base index service unit is the subindex service unit of index service unit, described upper strata.
Wherein, whether index service unit, described upper strata is identical according to the described base index service unit network address of carrying in the source address of the packet of described application for registration and the described application for registration message, judges whether the packet of carrying described register requirement passes through NAT device.
Wherein, global network connects top index service unit, private network only connects a base index service unit, and described base index service unit can and insert a plurality of network service resources registrations in other private networks of described private network for the private network of its access.
Wherein, index service unit, described upper strata can be top index service unit, also can be the base index service unit.
Wherein, described base index service unit or described top index service unit further comprise:
The hierarchical information record sheet is used to write down the hierarchical information of described index service equipment;
Target index service device recording table is used to write down the network address and the port information of ancestors' index service equipment of described index service equipment;
Subindex service unit record sheet is used to write down the network address and the port information of the network address, sign, port and corresponding NAT device of the subindex service equipment of described index service equipment;
Network service resource device recording table is used to write down the network address and the port information of the network address, port, resource name and the corresponding NAT device of Service Source;
Communication unit connects with the service bus device, is responsible for transceive data;
The index service logic control element, described index service logic control element is connected with described communication unit with described target index service device recording table, described subindex service unit record sheet, described network service resource device recording table respectively, and described target index service device recording table, described subindex service unit record sheet, described network service resource device recording table and described communication unit are carried out read-write operation; Described index service logic control element is connected with the hierarchical information record sheet, reads hierarchical information.
Wherein, described base index service unit or described top index service unit further comprise: the basic configuration information record sheet, described basic configuration information record sheet links to each other with described index service logic control element, is used to write down described index service device identification, host address and port information.
Wherein, described base index service unit or described top index service unit further comprise: the message buffering district, be connected with described index service logic control element, be used for the information of the temporary packet that receives, described index service logic control element carries out read-write operation to described message buffering district.
According to a second aspect of the invention, provide the system for obtaining service resource address in a kind of same root multi-layer NAT network, comprising:
Described index service device;
Top service bus device is connected with described global network with the top index service unit of described index service device respectively, and the index service device is inserted global network;
The service bus device is connected with private network with the base index service unit of described index service device respectively, and described index service device is inserted described private network;
Wherein, after described index service device receives the network service resource registration/network service resource request message of index service device client by described top service bus device or the transmission of described service bus device, whether can carry out according to logic determines, if can carry out, return the request success message; For described network service resource registration message, if can not carry out, and can be redirected, then return redirect message, described client re-registers; For described network service resource request message, if can not carry out, if and the index service unit that accepts request in the described index service device is not top index service unit, then return the redirect message of the network address and port in the target index service device recording that comprises described index service unit, described client resends request.
Wherein, described index service device connects global network through top service bus device, uses the network address of global network to address, and becomes the part of described global network.
Wherein, described index service device connects private network through the service bus device, uses the network address of private network to address, and becomes the part of the private network of described access.
Wherein, described index service device client comprises subscriber computer and the service resource apparatus in global network and the private network.
According to a third aspect of the invention we, provide the method for index service device client query network service resource in a kind of same root multi-layer NAT network, comprising:
Step 10), described index service device client send the network service resource query messages to the index service device, and described message comprises Service Source title and sequence number at random;
Step 20), the index service unit of receiving the described index service device of described network service resource query messages determines that described query messages is not by the subindex service unit transmission of described index service unit, judges whether described query messages passes through NAT device;
Step 30) if described query messages process NAT device, and if the base index service unit of described NAT device correspondence were arranged in the subindex service unit record sheet of described index service unit, the network address that comprises described index service unit, the message of sequence number and port would at random be returned;
Step 40), determine that described query messages is the subindex service unit transmission by described index service unit if receive the index service unit of the described index service device of described network service resource query messages, the index service unit of perhaps receiving the described index service device of described network service resource query messages determine described query messages be not subindex service unit by described index service unit send and described query messages without described NAT device, in described index service unit, search described Service Source, if find described Service Source, return the network address of described Service Source, the successful respond message of sequence number and port at random, if do not find described Service Source, when described index service unit is not top index service unit, set up corresponding relation between sender of the message and described query messages according to the sequence number at random in the described query messages, and be kept in the transmitting of message buffering district, described index service unit is according to the network address and port in the target index service device recording, transmit request message to the index service device, add the sign of this index service unit in the message;
Step 50), described client extracts the network address and the port of the described index service device in the message return, and replaces the network address and the port of original index service device.
Wherein, in the step 10), described index service unit can be top index service unit, also can be the base index service unit.
Wherein, step 10) further comprises: described client is set the number of attempt and the overtime control of query requests of query requests, if surpass described number of attempt or the described overtime control of setting, returns the failure response message.
Wherein, step 30) further comprises: if there is not the base index service unit of described NAT device correspondence in the subindex service unit record sheet of described index service unit, and in described index service unit, find described Service Source, return the network address of described Service Source, the successful respond message of sequence number and port at random.
Wherein, step 40) further comprises: if do not have described Service Source in the network service resource record sheet of described index service unit, when described index service unit is top index service unit, return the answer failed message that comprises described query messages sequence number to the sender of the message.
By using the present invention, in the network application of client-server pattern, server not only can be deployed in global network, can also be deployed in the multistage private network; Improved the service quality (Qos) of transmission simultaneously, reduced demand pressure global network address and data transmission capabilities.
Description of drawings
Fig. 1 is the same root multi-layer NAT network schematic diagram;
Fig. 2 is a service end address acquisition system structural representation;
Fig. 3 is a NAT device connection matrix schematic diagram;
Fig. 4 is index service device and index service cellular construction schematic diagram;
Fig. 5 is that the index service device is set up schematic flow sheet;
Fig. 6 is that the index service device is set up schematic flow sheet;
Fig. 7 is that the index service device is set up schematic flow sheet;
Fig. 8 is the inquiry mode schematic diagram based on the known service entrance in the global network;
Fig. 9 is the inquiry mode schematic diagram based on the service entrance of this locality storage;
Figure 10 is service client comprises the broadcast acquisition service entrance of service entrance by monitoring a schematic flow sheet;
Figure 11 is a server agent broadcast mode schematic diagram;
Figure 12 is the process flow figure that the index service device is received the Service Source network address request message of Service Source registration message and client;
Figure 13 is a server process network service resource registration message reciprocal process flow chart;
Figure 14 is that the network service resource inquiry handles " network service resource address lookup message " reciprocal process flow chart.
Embodiment
Below in conjunction with the drawings and specific embodiments, index service device, system for obtaining service resource address and method in the same root multi-layer NAT network provided by the invention are described further.
In traditional internet, Service Source generally only is deployed in the global network.And in same root multi-layer NAT network, Service Source can be deployed in along the annexation of private network in each layers such as ground floor, the second layer and the 3rd layer.The access quantity that same root multi-layer NAT network not only can extend one's service can also enlarge the deployment scope of Service Source.Concern according to physical connection, the user is when using the network service, should directly visit the Service Source in the network that is deployed in the control of each layer NAT device, and not only can visit the Service Source that is deployed in the global network, like this, can effectively reduce the pressure of the network of root NAT device and control thereof, also improve the service quality of network service simultaneously.Yet, because the restriction of existing network protocol, the network address of NAT device can not be on network route.Therefore, in the same root multi-layer NAT network, the Service Source requestor can't obtain the network address and the port of network service resource in this network environment.The network address of NAT device refers to the network address with the outer net interface binding of NAT device.For larger private network, NAT router outer net interface can be bound with a plurality of network addresss.In network management, can a plurality of network addresss be mapped as a NAT device by the mode of enumerating the address or enumerating the network segment.Domestic consumer can pass through low side NAT router access network voluntarily, and generally only bind with a network address at this NAT router outer net interface.In the description to the NAT router, only bind with a network address at a NAT router outer net interface below.Therefore, a NAT device can be expressed with the network address with the outer net interface binding of this NAT device.Those skilled in the art are not difficult to find, following description also is applicable to the NAT router of outer net interface with the binding of a plurality of network addresss.
Figure 1 shows that the same root multi-layer NAT network structural representation, a private network 4-1 inserts 3, one private network 4-2 of global network by NAT device 1001 and inserts private network 4-1 by another NAT device 1002.Insert the network of the private network of global network 3 by NAT device 1001, insert the network of the private network 4-2 of private network 4-1 by NAT device 1002 for this NAT device control for this NAT device control.Directly the NAT device that links to each other with global network 3 is the root NAT device.Each private network is the number of plies of this private network to the number of the minimum NAT device of global network 3 processes, and this path is the shortest path of private network to global network 3.Private network is few more to the number of plies of global network 3, and the expression level is high more.If two private networks have at least a NAT device identical in the shortest path of global network, then these two private networks have common root NAT device.The multi-layer NAT network can be counted as the combination of a plurality of same root multi-layer NAT networks.
In order to make the Service Source requestor can obtain the network address and the port of the network service resource in the same root multi-layer NAT network, in an embodiment according to the present invention, a kind of system for obtaining service resource address is provided, be used at same root multi-layer NAT network, the helping service resource requestor is obtained the network address and the port of network service resource in this network environment.
Figure 2 shows that the system for obtaining service resource address structural representation.System for obtaining service resource address 10 comprises: index service device 2001, be used for writing down the network address and the port of the server 3001 of global network 3 and each private network, and the network address and the port of server 3001 are provided for the subscriber terminal equipment 6001 in global network 3 and each private network; Top service bus device 1 is connected with global network with index service device 2001 respectively, is used for the index service device is inserted global network 3; Service bus device 2 is connected with private network with index service device 2001 respectively, is used for index service device 2001 is inserted private network.Index service device 2001 links to each other with global network 3 by top service bus device 1, inserts existing network, uses the network address of global network to address, and is the part of global network; Index service device 2001 links to each other with private network by service bus device 2, inserts existing network, uses the network address of the private network that links to each other to address, and is the part of the private network of access.
Global network 3 and private network can link together by each NAT device independently, also can link together by the NAT device connection matrix 1001 that the NAT device group forms.Each subscriber terminal equipment 6001 links to each other with private network with global network 3 respectively with each server 3001.
Fig. 3 illustrates the connected mode of NAT device connection matrix 1001.In NAT device connection matrix 1001, the relation between NAT device is by private network that is connected with NAT device connection matrix 1001 and global network decision.Private network and global network with the concatenate rule of NAT device are: NAT device connection matrix 1001 has a circuit 5 that inserts global network at least; Each private network has a circuit 6 that inserts NAT device connection matrix 1001 at least; Each private network can not have, can have yet many circuits 7 that inserted to this private network by NAT device connection matrix 1001.With three grades of NAT network configurations shown in Fig. 3 a is example, and Fig. 3 b is depicted as NAT device connection matrix 1001 connection diagrams of Fig. 3 a, comprising global network 3, private network.NAT device connection matrix 1001 inserts global network by circuit 5, and private network inserts NAT device connection matrix 1001 by circuit 6, and NAT device connection matrix 1001 inserts private network by circuit 7.
Figure 4 shows that the structural representation of index service device 2001.Shown in Fig. 4 a, index service device 2001 is made up of top index service unit 2011 and at least one base index service unit 2021.Top index service unit 2011 is connected with global network 3 by top service bus device 1; At least one base index service unit 2021 is connected with private network 4 by service bus device 2.The index service unit is the general designation of top index service unit 2011 and base index service unit 2021, also can be called index service equipment, the composition 26S Proteasome Structure and Function of top index service unit 2011 and base index service unit 2021 is that index service unit 2801 is identical with index service equipment.
Shown in Fig. 4 b, index service unit 2801 comprises: index service logic control element 2100, basic configuration information record sheet 2101, hierarchical information record sheet 2102, target index service device recording table 2103, subindex service unit record sheet 2104, network service resource device list 2105, message buffering district 2109, communication unit 2110.
Index service logic control element 2100 is used to control the execution of index service, be connected with communication unit 2110 with basic configuration information record sheet 2101, target index service device recording table 2103, subindex service unit record sheet 2104, network service resource device list 2105, message buffering district 2109 respectively, the data double-way transmission, index service logic control element 2100 is connected with hierarchical information record sheet 2102, the hierarchical information of reception hint service equipment; Basic configuration information record sheet 2101 is used for minute book index service unit marks, this index service unit host address and this index service unit serve port; Hierarchical information record sheet 2102 is used for the hierarchical information of minute book index service unit; Target index server record sheet 2103 is used to write down the network address, the port of ancestors' index service unit; Child index server record sheet 2104 is used to write down the network address, port, sign of subindex service unit and the network address of corresponding NAT device, sees Table 1.
Table 1 subindex clothes are equipped with the unit record table
Sign The network address Port The NAT device network address
Config103 10.23.0.22 11223 192.168.1.23
Network service resource device list 2105 is used to write down the network address of the corresponding NAT device of network service resource the sign network address, port and this resource identification corresponding with this resource identification, sees Table 2;
Table 2 network service resource record sheet
Sign The network address Port The NAT device network address
Server128 10.23.0.128 80 192.168.1.23
Message buffering district 2109 is used for the information of the temporary packet that receives;
Communication unit 2110 connects with top service bus device or service bus device, is responsible for transmitting-receiving basic configuration information, hierarchical information, target index service device information, subindex service unit information and network service resource device information;
The index service logic control element reads this index service unit marks from basic configuration information record sheet 2101, this index service unit host address, this index service unit serve port, write down 2102 reading and recording hierarchical information from hierarchical information, write down the network address of 2103 reading and recording ancestors index servers from the target index server, port, the network address from child index server record sheet 2104 reading and recording subindex service units, port, the network address of the NAT device of sign and correspondence, the network address from network service resource device list 2105 reading and recording service units, port, the network address of the NAT device of sign and correspondence, read the information the packet that temporary transient preservation receives from message buffering district 2109, read the data of receiving from communication unit 2110; Simultaneously, the index service logic control element writes this unit marks according to carrying out needs to basic configuration information record sheet 2101, this unit host address, this unit serve port, write the record hierarchical information to hierarchical information record 2102, write the network address of record ancestors index server to target index server record 2103, port, write the network address of record subindex service unit to child index server record sheet 2104, port, the network address of the NAT device of sign and correspondence, write the network address of record service unit to network service resource device list 2105, port, the network address of the NAT device of sign and correspondence, write information in the packet that temporary transient preservation receives to message buffering district 2109, write the data that to send to communication unit 2110.
In the multi-level NAT network environment of embodiments of the invention, the index service device provides registration service for various Service Sources in the network, is the client of request network service resource the provide services on the Internet network address and the interface querying service of resource correspondence simultaneously.
When the Internet resources with the private network under the root NAT device being provided registration and inquiry, need an index service unit to add the index service device, in the index service device, provide index service for described Internet resources.The process that the index service unit adds the index service device comprises: by top index service unit starting, finish index service device knowledge just, insert private network by the service bus device, can carry out network service resource registration and network service resource inquiry; Secondly, the base index service unit in the network of root NAT device control adds system to the index service device registration; Once more, second layer NAT base index service unit adds system to the index service device registration; Once more, the 3rd layer of NAT base index service unit adds system to the index service device registration.In a manner described, as required, the base index service unit adds the index service device in proper order, for service unit end address acquisition system 10 provides index service.Has only a top index service unit in the global network; Has only a base index service unit in each private network.The index service unit can be the registration of the multiple servers in the same private network.
Receive that the index service unit of the registration message of lower floor index service unit carries out as follows, the index service unit is according to the index service unit networks address of carrying in the source address of the packet of application for registration and this application for registration message, judges that the index service unit that carries is whether in the network with the control of root NAT device; If in the network of NAT device control, do not illustrate that this configuration server not in root NAT network, returns registration failure message; If in the network of NAT device control, extract the hierarchical information in this register requirement, if level is bigger by 1 than current index service unit, then the message that succeeds in registration is returned to the index service unit that proposes registration in the network address of the NAT device of the network address of this index service unit of record, port, sign and correspondence in subindex service unit record sheet.If level is big by 1 unlike current index service unit, then search the index service unit of same NAT device correspondence at subindex service unit record sheet, if this index service unit exists, return the network address of the index service unit that comprises the NAT device correspondence and the response message of port to the index service unit that proposes register requirement, the index service unit that proposes register requirement then sends register requirement to the index service unit of described correspondence, and as above flow process re-executes; If the record of the index service unit of this NAT device correspondence not in the subindex service unit record sheet returns registration failure message to the index service unit that proposes register requirement.
Fig. 5 illustrates the index service device and sets up flow process, be used to illustrate how the base index service unit under the root NAT device adds the index service device, as shown in the figure, index service device 2001 is connected with global network by top index service unit 2011 and carries out knowledgeization just.This top index service unit 2011 is furnished with global unique ip address, and this address and the port that service is provided are known service entrance in system.NAT device 1010 directly inserts global network, is the root NAT device.Base index service unit 2021 is connected with the network of root NAT device control.NAT device is made amendment to the source or the destination address of the packet of process, ignores the description of NAT device to the data packet modification among this figure.
● the base index service unit 2021 in the network of root NAT device control sends application for registration message to top index service unit 2011; The network address, port, sign, the default hierarchical information that comprise index service unit 2021 in this message are 1, show that this index service unit 2021 is positioned at the beeline of the network of root NAT device control to global network.
● top index service unit 2011 is according to the index service unit networks address of carrying in the network address of the packet of carrying this application for registration and this application for registration message, judges that this configuration server is whether in the network of NAT device control; If in the network of NAT device control, extract the hierarchical information in this register requirement, if level is bigger by 1 than current index service unit, then the message that succeeds in registration is returned to index service unit 2021 in the network address of the NAT device 1010 of the network address of this index service unit 2021 of record, port, sign and correspondence in subindex service unit record sheet.If level is big by 1 unlike current index service unit, simultaneously the record of the index service unit of this NAT device correspondence not in the subindex service unit record sheet returns registration failure message; If in the network of NAT device control, do not return registration failure message.
Fig. 6 illustrates the index service device and sets up flow process, is used to illustrate that the base index service unit under the second layer NAT device adds the flow process of index service device.This top index service unit 2011 is furnished with global unique ip address, and this address and the port that service is provided are known service entrance in system, maybe can obtain by the method for system definition.First NAT device 1010 directly inserts global network, is the root NAT device.The first index service unit 2021 is deployed in the network of root NAT device 1010 controls.Second NAT device 1020 directly inserts the network of root NAT device 1010 controls, and the second index service unit 2031 is deployed in the network of second NAT device, 1020 controls.NAT device is made amendment to the source or the destination address of the packet of process, ignores the description of NAT device to the data packet modification among this figure.
● application for registration message is initiated to top index service unit 2011 in the second index service unit 2031 in the network of second NAT device, 1020 controls, the network address, port, sign, the prefabricated hierarchical information that comprise the second index service unit 2031 in this message are 2, show that this index service unit 2031 is positioned at the beeline of the network of second NAT device, 1020 controls to global network.
● top index service unit 2011 is according to the index server network address of carrying in the network address of the packet of carrying this application for registration and this application for registration message, judges that this configuration server is whether in the network of NAT device control; If in the network of NAT device control, extract the hierarchical information in this register requirement, if level is big by 1 unlike current index service unit, then search index service unit with NAT device 1010 correspondences at subindex service unit record sheet, if this index service unit exists, return the network address of the index service unit 2021 that comprises NAT device 1010 correspondences and the response message of port to the second index service unit 2031.
● after the response message of top index service unit 2011 is received in the second index service unit 2031,, initiate application for registration message to the index service device according to the network address, the port information of the index service unit 2021 that comprises in the message; The network address, port, the prefabricated hierarchical information that comprise the second index service unit 2031 in this application message are 2, show that this index service unit 2031 is positioned at the beeline of the network of second NAT device, 1020 controls to global network.
● the first index service unit 2021 is according to the index service unit networks address of carrying in the network address of the packet of carrying this application for registration and this application for registration message, judges that this index service unit is whether in the network of NAT device control; If in the network of NAT device control, extract the hierarchical information in this register requirement, if level is bigger by 1 than current index service unit, then the message that succeeds in registration is returned to the second index service unit 2031 in the network address of the NAT device 1020 of the network address of this index service unit 2031 of record, port and correspondence in subindex service unit record sheet.If level is big by 1 unlike current index service unit, simultaneously the record of the index service unit corresponding with this NAT device 1020 not in the subindex service unit record sheet returns registration failure message; If in the network of NAT device control, do not return registration failure message.
Fig. 7 illustrates the index service device and sets up flow process, is used to illustrate that the base index service unit agency under the second layer NAT device uses broadcast mode to add the flow process of index service device.Top index service unit 2011 is furnished with global unique ip address, and this address and the port that service is provided are known service entrance in system, maybe can obtain by the method for system definition.First NAT device 1010 directly inserts global network, is the root NAT device.The first index service unit 2021 is deployed in the network of root NAT device 1010 controls; Second NAT device 1020 directly inserts the network of root NAT device 1010 controls, and the agency 2032 and second index service unit 2031, the first index service unit is deployed in the network of second NAT device, 1020 controls.NAT device is made amendment to the packet source, ground or the destination address of process, ignores the description of NAT device to the data packet modification among this figure.
● first index service unit agency 2032 broadcasting in the network of second NAT device, 1020 controls comprises the message of index service plant network address and port, comprise the hierarchical information of being acted on behalf of the index service unit in the message, just the hierarchical information of the first index service unit.
● the message of broadcasting in the network of second NAT device, 1020 controls that comprises index service plant network address and port is monitored in the second index service unit 2031.
● the message that comprises index service plant network address and port is received in the second index service unit 2031, according to the level that provides in the message, after increasing one-level local hierarchical information is set, and initiate the application for registration message to the first index service unit 2021 according to the network address of the index service device that provides in the message and port, the network address, port, the default hierarchical information that comprise the second index service unit 2031 in this message show that promptly this index service unit 2031 is positioned at the beeline of the network of second NAT device, 1020 controls to global network.
● the first index service unit 2021 is according to the index service unit networks address of carrying in the conversion IP address of the packet of carrying this application for registration and this application for registration message, judges that this index service unit is whether in the network of NAT device control; If in the network of NAT device control, extract the hierarchical information in this register requirement, if level is bigger by 1 than current index service unit, then the message that succeeds in registration is returned to the second index service unit 2031 in the network address of the NAT device 1020 of the network address of this index service unit 2031 of record, port and correspondence in subindex service unit record sheet.If level is big by 1 unlike current index service unit, simultaneously the record of the index service unit of these NAT device 1020 correspondences not in the subindex service unit record sheet returns registration failure message; If in the network of NAT device control, do not return registration failure message.
The forwarding capability that do not give information is acted on behalf of in the first index service unit shown in Figure 7.If necessary, the developer is not difficult to develop the index server agency of forwards function.
In addition, this broadcast mode can use wired, wireless or wired and wireless etc. according to various service brokers network environment of living in.
In addition, with reference to figure 5, Fig. 6 and Fig. 7, according to the explanation of described specific embodiment, those of ordinary skills can realize the deployment of index service device in multi-level NAT network.
In addition, consider safety issue, can all encrypt or local cypher registration message.This safety issue all will consider in the various service units that constitute service end address acquisition system 10, its basic skills be in each service unit and the communication information between service unit all encrypt or local cypher.
Under root multi-level NAT network environment, server is basic identical to the reciprocal process of the network address of index service device 2001 requester network Service Sources and port to index service device 2001 registered network Service Sources and client.Fig. 8-Figure 11 has described this reciprocal process.The server of index of reference service unit client 9004 expression registered network Service Sources and the client of requester network Service Source among the figure, the service unit registration message or the service unit address request that simultaneously the server and client side are sent to index service device 2001 are referred to as service request information.
Fig. 8 is based on the known network address of index service device and port in the global network, and the index service client is used to illustrate that to the flow process of request of index service device or submission data index service device client obtains the service of index service device.Top index service unit 2011 is furnished with global unique ip address, and this address and the port that service is provided are known service entrance in system, maybe can obtain by the method for system definition.First NAT device 1010 directly inserts global network, is the root NAT device.The second base index service unit 2021 is deployed in the network of root NAT device 1010 controls; Second NAT device 1020 directly inserts the network of root NAT device 1010 controls, the 3rd base index service unit 2022 is deployed in the network of second NAT device, 1020 controls, and index service device client 9004 is deployed in the network of second NAT device, 1020 controls; NAT device is made amendment to the packet source, ground or the destination address of process, ignores the description of NAT device to the data packet modification among this figure.
● the top index service unit 2011 of index service device client 9004 in being deployed in global network sends service request information;
● after service request information is received in top index service unit 2011, whether can carry out according to logic determines, if can carry out, return success message, if can not carry out, judge whether to be redirected to the subindex service unit, if can, return redirect message, otherwise return failed message; In this example, the redirect message that returns comprises the second base index service unit, 2021 network addresss and port message.
● index service device client 9004 is according to the network address and the port of the index service device that comprises in the redirect message, to the second base index service unit, the 2021 transmission service request information of index service device;
● after the second base index service unit 2021 is received service request information, whether can carry out according to logic determines, if can carry out, return success message,, judge whether to be redirected to the subindex service unit if can not carry out, if can, return redirect message, otherwise return failed message, the redirect message that returns in this example comprises the 3rd base index service unit 2022 network addresss and port message
● index service device client 9004 is sent out service request information according to the network address and the port of the index service device that comprises in the response message to the index service device;
● after the second base index service unit 2021 is received service request information, whether can carry out according to logic determines, if can carry out, return success message, if can not carry out, judge whether to be redirected to the subindex service unit, if can, return redirect message, otherwise return failed message.
Request message among Fig. 8 can be by wired or/and wireless receiving and dispatching.
Fig. 9 is index service plant network address and port based on this locality storage, and the index service client is to the flow process of request of index service device or submission data.This flow chart is the example that index service device client obtains the service of index service device.Top index service unit 2011 is furnished with global unique ip address, and this address and the port that service is provided are known service entrance in system, maybe can obtain by the method for system definition.First NAT device 1010 directly inserts global network, is the root NAT device.The second base index service unit 2021 is deployed in the network of root NAT device 1010 controls; Second NAT device 1020 directly inserts the network of root NAT device 1010 controls, the 3rd base index service unit 2022 is deployed in the network of second NAT device, 1020 controls, and index service device client 9004 is deployed in the network of second NAT device, 1020 controls; NAT device is made amendment to the source or the destination address of the packet of process, ignores the description of NAT device to the data packet modification among this figure.
● index service device client 9,004 2022 service request information of the 3rd base index service unit in the network that is deployed in 1020 controls of second NAT device;
● after the 3rd base index service unit 2022 is received service request information, whether can carry out according to logic determines, if can carry out, return success message, if can not carry out, judge whether to be top index service unit, if, return failed message, if not, return the network address and port in the target index service device recording, return the redirect message that comprises the second base index service unit, 2021 network addresss and port in this example.
● index service device client 9004 is according to the network address and the port of the index service device that comprises in the response message, to 2021 service request information of the second base index service unit of index service device;
● after the second base index service unit 2021 is received service request information, whether can carry out according to logic determines, if can carry out, return success message, if can not carry out, judge whether to be top index service unit, if, return failed message, if not, return the network address and port in the target index service device recording, return the redirect message that comprises 2011 network addresss, top index service unit and port in this example.
● index service device client 9004 is sent out service request information according to the network address and the port of the index service device that comprises in the response message to the index service device;
● after service request information is received in top index service unit 2011, whether can carry out according to logic determines, if can carry out, return success message,, judge whether to be top index service unit if can not carry out, if, return failed message, if not, the network address and port in the target index service device recording returned.
Request message among Fig. 9 can be by wired or/and wireless receiving and dispatching.
Figure 10 is the basis for comprise index service plant network address and port by monitoring, and the index service client is to the flow process of request of index service device or submission data.This flow chart is the example that index service device client obtains the service of index service device.Top index service unit 2011 is furnished with global unique ip address, and this address and the port that service is provided are known service entrance in system, maybe can obtain by the method for system definition.First NAT device 1010 directly inserts global network, is the root NAT device.The second base index service unit 2021 is deployed in the network of root NAT device 1010 controls; Second NAT device 1020 directly inserts the network of root NAT device 1010 controls, the 3rd base index service unit 2022 is deployed in the network of second NAT device, 1020 controls, and index service device client 9004 is deployed in the network of second NAT device, 1020 controls; NAT device is made amendment to the source or the destination address of the packet of process, ignores the description of NAT device to the data packet modification among this figure.
● the broadcasting in the network of affiliated NAT control of the 3rd base index service unit 2022 comprises the message of index service plant network address and port;
● index service device client 9004 is monitored the broadcast of the message that comprises index service plant network address and port in the network of affiliated NAT control;
● index service device client 9004 is sent out service request information to the index service device receive the message that comprises index service plant network address and port that the 3rd base index service unit 2022 broadcasts in the network of affiliated NAT control after;
● after the 3rd base index service unit 2022 is received above-mentioned service request information, whether can carry out according to logic determines, if can carry out, return success message,, judge whether to return redirected response message if can not carry out, if can, then return redirected response message, if cannot, the echo reply failed message.Return the success message that comprises the service unit network address and port to index service device client 9004 in this example.
In addition, can use publicity, inform that mode such as user replaces, and is configured service client 9004 by artificial mode by the user in advance by the mode of forms of broadcasting issuing service inlet described in Figure 10.
Figure 11 is the basis for comprise index service plant network address and port by monitoring, and the index service client is to the flow process of request of index service device or submission data.This flow chart is the example that index service device client obtains the service of index service device.Top index service unit 2011 is furnished with global unique ip address, and this address and the port that service is provided are known service entrance in system, maybe can obtain by the method for system definition.First NAT device 1010 directly inserts global network, is the root NAT device.The second base index service unit 2021 is deployed in the network of root NAT device 1010 controls; Second NAT device 1020 directly inserts the network of root NAT device 1010 controls, second base index service unit agency 2023 is deployed in the network of second NAT device, 1020 controls, and index service device client 9004 is deployed in the network of second NAT device, 1020 controls; NAT device is made amendment to the packet source, ground or the destination address of process, ignores the description of NAT device to the data packet modification among this figure.Service function entity agency and between the agency service object privately owned communication interface can be arranged is used for the service function entity agency and by the information interaction between the agency service object.Ignore of the conversion of NAT routing device among this figure to the data grouping.
● second base index service unit agency 2023 is deployed in the message that broadcasting in the network of second NAT device, 1020 controls comprises index service plant network address and port;
● index service device client 9004 is monitored the broadcast of the message that comprises index service plant network address and port in the network of affiliated NAT control;
● after index service device client 9004 receives that the second base index service unit is acted on behalf of 2023 message of broadcasting that comprise index service plant network address and port in the network of affiliated NAT control, 2022 service request information of index service device;
● after the second base index service unit 2021 is received above-mentioned service request information, whether can carry out according to logic determines, if can carry out, return success message,, judge whether to return redirected response message if can not carry out, if can, then return redirected response message, if cannot, the echo reply failed message.Return the success message that comprises the service unit network address and port to index service device client 9004 in this example.
The forwarding capability that do not give information is acted on behalf of in the second index service unit shown in Figure 11.If necessary, the developer is not difficult to develop the index server agency of forwards function.
In addition, in multi-level NAT network, the developer is not difficult to propose related procedure according to this flow process.The implementation of flow process can be wired or/and wireless.
In addition, can use publicity, inform that mode such as user replaces in advance by the mode of forms of broadcasting issuing service inlet described in Figure 11, service client is configured by artificial mode by the user, message in the index service device and related content see the following form 3.
Table 3 index service device allocation list
Message name Purpose The message substance Supplemental instruction
The network service resource registration message Server is to index service device registration network service resource The type of message sign, Internet resources title, the network address, port and hierarchical information The Internet resources title is represented with URI or URL
Network service money The client obeys to index The type of message sign, network money The Internet resources title is with URI or URL
The source address query messages The address of affair device requester network Service Source Source name, sender of the message's sign. Expression.
Successful respond message The person of sending returns success information to message, The type of message sign, For replying of " network service resource address lookup message ", comprise the network address and the port of network service resource.Successful respond message is a kind of of response message.
The failure response message The person of sending returns failure information to message The type of message sign, For replying of " network service resource address lookup message ", comprise the network address and the port numbers of network service resource.The failure response message is a kind of of response message.
Redirect message Return the network address and the port that also comprises the index service device to the message person of sending The type of message sign, the network address of index service device and port For replying of " network service resource address lookup message ", comprise the network address and the port of network service resource.Redirect message is a kind of of response message.
Figure 12 receives the processing method of the Service Source network address request message that Service Source registration message, client are sent out for the index service device.
S101 begins;
S102 waits for and receives data;
S103 judges whether to receive data, if do not receive data, changes S102; If the data of receiving are changeed S104;
S104 judges type of message, if be that " network service resource address lookup message " changes S110, if be that " network service resource registration message " changes S130, if be that " response message " changes S160, if non-above-mentioned message is changeed S150;
S130 extracts " network service resource registration message " content;
S131 judges whether the packet of carrying message passes through NAT device, and promptly whether Fen Zu source address is identical with the message person of the sending network address in the message, if identical commentaries on classics S133, if the different S134 that changes;
Whether the hierarchical information that S133 differentiates in the registration message is bigger by 1 than the level of current index service unit, if, change S134, if not, S135 changeed;
The content and the relevant information of S134 record Service Source registration message as the address of NAT device, and return success response message.
S135 differentiates in the network of this NAT device control whether the index service unit is arranged, if do not have, changes S136, if having, changes S137;
S136 returns the failure response message to sending out the request message person.
S137 is to sending out the network address and the port that the request message person returns the index service unit.
S110 extracts " network service resource address lookup message " content;
S111 checks what whether " network service resource address lookup message " sent for the subindex service unit, if change S114, if not special S112;
S112 judges whether the packet carry message passes through NAT device, i.e. whether the network address of the message person of sending in the source address of packet and the message is identical, if identical, changes S113; If different, change S114;
S113 seeks in subindex service unit list whether the base index service unit corresponding with this NAT device is arranged, if having, changes S115, if do not have, changes S114;
S115 returns the network address of index service unit and the redirect message of port to sending out the request message person, comprises the sequence number of request message in the message;
Whether S114 seeks requested service unit and exists in this index service unit networks Service Source device list, change S116 if exist, and if there is no changes S117;
S116 returns the network address that comprises requested service unit and the successful respond message of port to sending out the request message person, also comprises the sequence number of request message in the message;
Whether S117 differentiates this index service unit is top index service unit, if change S120, if not changeing S118;
S120 returns the failure response message to sending out the request message person, also comprises the sequence number of request message in the message;
S118 sets up corresponding relation between sender of the message and this message according to the sequence number in the message, and is kept in the transmitting of message buffering district;
S119 transmits request message according to the network address and port in the record of target index service device to the index service device, adds the sign of this index service unit in the message;
S160 finds sender of the message's the network address and port according to the sequence number in the response message in the message buffering district transmits;
S161 transmits response message to the sender of the message;
S150 handles;
Figure 13 is the flow chart of server process " network service resource registration message " reciprocal process.
S200 begins;
S201 is made as 0 with the number of attempt of transmitting apparatus registration message, and maximum attempts is set, and sets overtime control;
S202 sends out " network service resource registration message " to the index service device behind the network address that obtains the index service device and port, comprise the information such as resource name of the network address, port and the registration of service unit in the message at least, and number of attempt adds 1;
S203 wait acknowledge message;
S204 judges whether to receive data, if the data of receiving are changeed S208, if do not receive data, changes S205;
S205 judges whether overtime, if do not have overtimely, changes S203, if overtime, changes S206;
S206 judges whether number of attempt surpasses restriction; If do not surpass the number of attempt restriction, change S202, if surpass the number of attempt restriction, change S207;
S208 judges the type of receiving message, if " being redirected response message " changes S221, if " successful respond message " or " failure response message " changes S207;
S221 extracts the network address and the port of index service device in the response message, uses the network address of new index service device and the network address and the port that port is replaced original index service device.
The S207 end process.
The network service resource inquiry needs network service resource and index service plant network address correspondence table, sees Table 4;
Table 4 network service resource and index service plant network address correspondence table
The network service resource network address The network service resource port Index service plant network address The index service device port
10.23.0.128 11223 192.168.1.23 80
Figure 14 handles the flow chart of " network service resource address lookup message " reciprocal process for the network service resource inquiry.
S300 begins;
The number of attempt that S301 will send out resource registering message is made as 0, and maximum attempts is set, and sets overtime control;
S302 sends out " network service resource address lookup message " to the index service device behind the network address that obtains the index service device and port, comprise requested service resource name, information such as sequence number at random in the message at least, and number of attempt adds 1;
S303 wait acknowledge message;
S304 judges whether to receive data, if the data of receiving are changeed S308, if do not receive data, changes S305;
S305 judges whether overtime, if do not have overtimely, changes S303, if overtime, changes S306;
S306 judges whether number of attempt surpasses restriction; If do not surpass the number of attempt restriction, change S302, if surpass the number of attempt restriction, change S307;
S308 judges the type of receiving message, if " being redirected response message " changes S312, if " successful respond message " changes S310, if " failure response message " changes S307;
S310 extracts the network address and the port of service unit in the response message, finishes.
S312 extracts the network address and the port of index service device in the response message, uses the network address of new index service device and the network address and the port that port is replaced original index service device;
The S307 end process.
It should be noted that at last, above embodiment is only in order to illustrate that technical scheme of the present invention is not intended to limit, and on using, can extend to other modification, variation, application and embodiment, think that simultaneously all such modifications, variation, application, embodiment are within the spirit and scope of the present invention.

Claims (17)

1. the index service device of Service Source in the same root multi-layer NAT network comprises:
Top index service unit, top service bus device by the outside is connected with global network, the network address and the port of the Service Source in the network that record global network and the NAT device that directly is connected with global network are controlled, and the network address and the port of described Service Source are provided for subscriber equipment;
At least one base index service unit, service bus device by the outside is connected with different private networks, write down the network address and the port of the Service Source in other private networks that described private network and described private network extend downwards by NAT device, and the subscriber terminal equipment in other private networks that extend by NAT device for described private network and described private network provides the network address and the port of described Service Source downwards;
Wherein, the base index service unit layer index service unit that makes progress sends the register requirement application and adds described index service device, the packet of described register requirement is determined to carry through NAT device in index service unit, described upper strata, extract the hierarchical information in the described register requirement, if described base index service unit is the subindex service unit of index service unit, described upper strata, the registration of described base index service unit is finished in index service unit, described upper strata, if described base index service unit is not the subindex service unit of index service unit, described upper strata, index service unit, described upper strata returns the network address of the index service unit that comprises described NAT device correspondence and the response message of port.
2. the index service device of claim 1, wherein, if the level of described base index service unit is bigger by 1 than the level of index service unit, described upper strata, then described base index service unit is the subindex service unit of index service unit, described upper strata.
3. the index service device of claim 1, wherein, whether index service unit, described upper strata is identical according to the described base index service unit network address of carrying in the source address of the packet of described application for registration and the described application for registration message, judges whether the packet of carrying described register requirement passes through NAT device.
4. the index service device of claim 1, wherein, global network connects top index service unit, private network only connects a base index service unit, and described base index service unit can and insert a plurality of network service resources registrations in other private networks of described private network for the private network of its access.
5. the index service device of claim 1, wherein, index service unit, described upper strata can be top index service unit, also can be the base index service unit.
6. the index service device of claim 1, wherein, described base index service unit or described top index service unit further comprise:
The hierarchical information record sheet is used to write down the hierarchical information of described index service equipment;
Target index service device recording table is used to write down the network address and the port information of ancestors' index service equipment of described index service equipment;
Subindex service unit record sheet is used to write down the network address and the port information of the network address, sign, port and corresponding NAT device of the subindex service equipment of described index service equipment;
Network service resource device recording table is used to write down the network address and the port information of the network address, port, resource name and the corresponding NAT device of Service Source;
Communication unit connects with the service bus device, is responsible for transceive data;
The index service logic control element, described index service logic control element is connected with described communication unit with described target index service device recording table, described subindex service unit record sheet, described network service resource device recording table respectively, and described target index service device recording table, described subindex service unit record sheet, described network service resource device recording table and described communication unit are carried out read-write operation; Described index service logic control element is connected with the hierarchical information record sheet, reads hierarchical information.
7. the index service device of claim 6, wherein, described base index service unit or described top index service unit further comprise: the basic configuration information record sheet, described basic configuration information record sheet links to each other with described index service logic control element, is used to write down described index service device identification, host address and port information.
8. the index service device of claim 6, wherein, described base index service unit or described top index service unit further comprise: the message buffering district, be connected with described index service logic control element, be used for the information of the temporary packet that receives, described index service logic control element carries out read-write operation to described message buffering district.
9. the system for obtaining service resource address in the same root multi-layer NAT network comprises:
The described index service device of claim 1;
Top service bus device is connected with described global network with the top index service unit of described index service device respectively, and the index service device is inserted global network;
The service bus device is connected with private network with the base index service unit of described index service device respectively, and described index service device is inserted described private network;
Wherein, after described index service device receives the network service resource registration/network service resource request message of index service device client by described top service bus device or the transmission of described service bus device, whether can carry out according to logic determines, if can carry out, return the request success message; For described network service resource registration message, if can not carry out, and can be redirected, then return redirect message, described client re-registers; For described network service resource request message, if can not carry out, if and the index service unit that accepts request in the described index service device is not top index service unit, then return the redirect message of the network address and port in the target index service device recording that comprises described index service unit, described client resends request.
10. the system of claim 9, wherein, described index service device connects global network through top service bus device, uses the network address of global network to address, and becomes the part of described global network.
11. the system of claim 9, wherein, described index service device connects private network through the service bus device, uses the network address of private network to address, and becomes the part of the private network of described access.
12. the system of claim 9, wherein, described index service device client comprises subscriber computer and the service resource apparatus in global network and the private network.
13. the method for index service device client query network service resource in the same root multi-layer NAT network comprises:
Step 10), described index service device client send the network service resource query messages to the index service device, and described message comprises Service Source title and sequence number at random;
Step 20), the index service unit of receiving the described index service device of described network service resource query messages determines that described query messages is not by the subindex service unit transmission of described index service unit, judges whether described query messages passes through NAT device;
Step 30) if described query messages process NAT device, and if the base index service unit of described NAT device correspondence were arranged in the subindex service unit record sheet of described index service unit, the network address that comprises described index service unit, the message of sequence number and port would at random be returned;
Step 40), determine that described query messages is the subindex service unit transmission by described index service unit if receive the index service unit of the described index service device of described network service resource query messages, the index service unit of perhaps receiving the described index service device of described network service resource query messages determine described query messages be not subindex service unit by described index service unit send and described query messages without described NAT device, in described index service unit, search described Service Source, if find described Service Source, return the network address of described Service Source, the successful respond message of sequence number and port at random, if do not find described Service Source, when described index service unit is not top index service unit, set up corresponding relation between sender of the message and described query messages according to the sequence number at random in the described query messages, and be kept in the transmitting of message buffering district, described index service unit is according to the network address and port in the target index service device recording, transmit request message to the index service device, add the sign of this index service unit in the message;
Step 50), described client extracts the network address and the port of the described index service device in the message return, and replaces the network address and the port of original index service device.
14. the method for claim 13, wherein, in the step 10), described index service unit can be top index service unit, also can be the base index service unit.
15. the method for claim 13, wherein, step 10) further comprises: described client is set the number of attempt and the overtime control of query requests of query requests, if surpass described number of attempt or the described overtime control of setting, returns the failure response message.
16. the method for claim 13, wherein, step 30) further comprises: if there is not the base index service unit of described NAT device correspondence in the subindex service unit record sheet of described index service unit, and in described index service unit, find described Service Source, return the network address of described Service Source, the successful respond message of sequence number and port at random.
17. the method for claim 13, wherein, step 40) further comprises: if do not have described Service Source in the network service resource record sheet of described index service unit, when described index service unit is top index service unit, return the answer failed message that comprises described query messages sequence number to the sender of the message.
CN2008100569642A 2008-01-28 2008-01-28 Method and system for obtaining service resource address in same root multi-layer NAT network Expired - Fee Related CN101227507B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2008100569642A CN101227507B (en) 2008-01-28 2008-01-28 Method and system for obtaining service resource address in same root multi-layer NAT network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2008100569642A CN101227507B (en) 2008-01-28 2008-01-28 Method and system for obtaining service resource address in same root multi-layer NAT network

Publications (2)

Publication Number Publication Date
CN101227507A true CN101227507A (en) 2008-07-23
CN101227507B CN101227507B (en) 2010-06-23

Family

ID=39859253

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2008100569642A Expired - Fee Related CN101227507B (en) 2008-01-28 2008-01-28 Method and system for obtaining service resource address in same root multi-layer NAT network

Country Status (1)

Country Link
CN (1) CN101227507B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101465852B (en) * 2008-10-24 2012-10-31 广东威创视讯科技股份有限公司 Method for implementing network inner penetration in network videoconference system

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100583814C (en) * 2005-05-12 2010-01-20 中兴通讯股份有限公司 Method for implementing multimedia service NAT transition
CN101064712B (en) * 2006-04-24 2013-04-24 上海信息安全基础设施研究中心 System and method for realizing Linux inner core based dual-channel through multistage NAT and fireproof wall

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101465852B (en) * 2008-10-24 2012-10-31 广东威创视讯科技股份有限公司 Method for implementing network inner penetration in network videoconference system

Also Published As

Publication number Publication date
CN101227507B (en) 2010-06-23

Similar Documents

Publication Publication Date Title
CN101242413B (en) Service resource address acquisition system and method in multi-layer NAT network under one root
CN106060180B (en) A kind of addressing method based on geographical location and application message for IPv6
US8767737B2 (en) Data center network system and packet forwarding method thereof
CN102047245B (en) Configuring communications between computing nodes
CN101321128B (en) Communication equipment, communication network system and communication method
CN101098284A (en) Method for implementing network seamless interlinkage
CN106375492A (en) Content Delivery Network (CDN) service processing method and related device and communication system
JP6154457B2 (en) Apparatus and method for configuring personal area network using PN routing table
CN102484639A (en) A method and host node for multiple nat64 environments
JP2004208302A5 (en)
CN102098355B (en) Cloud service-based IPv6 (internet protocol version 6)/IPv4 (internet protocol version 4) translation method with communication initiated by IPv6 party
CN101741888A (en) Method, system and device for pushing certification page
CN102316416A (en) Access method for terminal and wireless communication network
CN102571999B (en) A kind of data transmission method, system and IAD
CN1595890B (en) Virtual connectivity with subscribe-notify service
CN102123182A (en) Method for separating host identifier (HID) mark from locator based on IPV6 (Internet Protocol Version 6) address
CN102098356A (en) Method for translating Internet protocol version 4 (IPv4)/Internet protocol version 6 (IPv6) initiating communication by using IPv4 based on cloud service
CN1199405C (en) Enterprise external virtual special network system and method using virtual router structure
CN104581977B (en) WLAN user management method, apparatus and system
CN101997931A (en) Position information acquiring method and equipment
CN102185935B (en) Resource-oriented hierarchical name resolution system
CN101594339A (en) Method, equipment and the communication system of management and querying mapping information
CN101227507B (en) Method and system for obtaining service resource address in same root multi-layer NAT network
CN102025604A (en) Carrying network and data transmission method
CN100479457C (en) Implementation method for transferring data in virtual private network

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20100623

Termination date: 20200128