CN101247396B - Method, device and system for distributing IP address - Google Patents
Method, device and system for distributing IP address Download PDFInfo
- Publication number
- CN101247396B CN101247396B CN2008100579127A CN200810057912A CN101247396B CN 101247396 B CN101247396 B CN 101247396B CN 2008100579127 A CN2008100579127 A CN 2008100579127A CN 200810057912 A CN200810057912 A CN 200810057912A CN 101247396 B CN101247396 B CN 101247396B
- Authority
- CN
- China
- Prior art keywords
- terminal
- address
- network
- information
- mac address
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims abstract description 28
- 230000003068 static effect Effects 0.000 claims description 14
- 230000005540 biological transmission Effects 0.000 claims description 4
- 238000004321 preservation Methods 0.000 claims 1
- 238000012795 verification Methods 0.000 claims 1
- 230000008859 change Effects 0.000 description 5
- 230000004044 response Effects 0.000 description 5
- 238000010586 diagram Methods 0.000 description 4
- 230000008901 benefit Effects 0.000 description 3
- 230000000875 corresponding effect Effects 0.000 description 3
- 238000001514 detection method Methods 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 238000013475 authorization Methods 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- 238000004891 communication Methods 0.000 description 1
- 230000002596 correlated effect Effects 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
Images
Abstract
The present invention discloses method, device and system for distributing IP address to terminal, after the server receives IP address solicited message from terminal send, executing the following steps: judging terminal whether or not access network according to saving terminal recording, if terminal accesses network, then the IP address used by terminal is distributed to terminal, otherwise, IP address is distributed by dynamic modus to terminal. Using method of the invention embodiment can distribute IP address to terminal neatly, and is easy to locating terminal and ensuring network safe.
Description
Technical field
The present invention relates to field of computer technology, relate to method, the Apparatus and system of a kind of distributing IP address especially.
Background technology
At present for the network based on TCP/IP (Transmite Control Protocol, transmission control protocol/Internet Protocol, Internet protocol), the method for salary distribution of IP address mainly contains two kinds of static allocation mode and dynamic assignment modes.
Static allocation IP address mode is to show each computer all to distribute a fixed IP addresses, dynamic assignment IP address mode is meant only when subscriber computer need be connected into network work, just but in the distributing IP address space of being grasped, IP address of random choose is to the method for salary distribution of user's use in system.For the more but limited network of operable IP number of addresses of casual user, could accesses network if do not require after the user is by authentication, the strategy that adopts dynamic assignment IP address so is a kind of way to manage very easily.The dynamic assignment of IP address is that the DHCP (Dynamic HostConfiguration Protocol, DHCP) by TCP/IP carries out, and the DHCP service allows work station to be connected to network and to obtain an IP address automatically.
Use static IP address assignment scheme, advantage is to be convenient to management, and particularly in the local area network (LAN) according to IP address limitation network traffics, the flow that produces with fixed IP addresses or IP address packets serves as according to management.The weakness of static allocation IP address is that the validated user addresses distributed may illegally be usurped, not only the normal use to network impacts, often have higher authority owing to stolen address simultaneously, thereby also cause damage and potential potential safety hazard to validated user easily.Some administrative staff is in order to use the IP address by limited subscriber, on switch with user's IP, MAC (Media Access Control, medium access control) address, switch ports themselves are bound, the advantage of this method is the use that can guarantee normal users, can do not disturbed by other malicious users, shortcoming also clearly, the performance to switch has exactly
High requirement, and binding work is comparatively loaded down with trivial details, if all need to revise simultaneously when network changes or personnel change or the position changes, flexibility is not enough.
Use the scheme of dynamic IP address assignment, advantage is not have too much allocation problem, just can carry out dynamic address assignment as long as start Dynamic Host Configuration Protocol server in double layer network, and configuration is simple; Shortcoming is because user's address assignment is at random, can't carry out the user location accurately by the IP address, if have in the network simultaneously is illegal DHCP service without permission, and the user can't obtain the correct network address, cause normally accesses network of user.
In sum, in the prior art, static IP address assignment solution security or configuration flexibility are not enough, and the scheme of dynamic IP address assignment is difficult for locating with the family and is difficult to take precautions against illegal DHCP service.
Summary of the invention
Not enough and be difficult for the location at fail safe in the prior art or configuration flexibility with family and the problem that is difficult to preventing malice DHCP service, the embodiment of the invention provides method and device and a kind of detection of a kind of network address distribution and stops illegal DHCP service method and device, the fail safe and the flexibility of IP address assignment can be taken into account, and the existence of illegal DHCP service can be taken precautions against.
The embodiment of the invention provides following technical scheme:
A kind of method of giving terminal distribution IP address, after server is received the IP address request information of terminal transmission, carry out following steps:
Judge whether once access network of terminal according to the terminal record of preserving, if, then terminal is given in the IP address assignment that terminal was once used during access network, if not, then give terminal distribution IP address according to the DHCP agreement with dynamical fashion, wherein, described terminal record comprises the IP address and the medium access control MAC Address of terminal, and chooses for according to the DHCP agreement IP address of terminal distribution in the IP address that excludes the terminal record with dynamical fashion;
After terminal entering network, the IP address and the MAC Address of terminal are carried out static binding, and after terminal exits network, remove the IP address of terminal and the binding of MAC Address.
A kind of system that gives terminal distribution IP address comprises client unit and network side apparatus, wherein,
Described client unit is used for being sent as to described network side apparatus the solicited message of terminal distribution IP address, comprises the terminal mac address information in the solicited message;
Whether once described network side apparatus is used for judging terminal access network according to described request information and terminal record that wherein, described terminal record comprises the IP address and the medium access control MAC Address of terminal;
Also be used in described terminal once during access network, terminal is given in the IP address assignment of using when terminal was once inserted network, when described terminal had not inserted network, give terminal distribution IP address with dynamical fashion according to the DHCP agreement, also be used for after terminal entering network, the IP address and the MAC Address of terminal are carried out static binding, and after terminal exits network, remove the IP address of terminal and the binding of MAC Address, wherein, in the IP address that excludes the terminal record, choose for the IP address of terminal distribution with dynamical fashion according to the DHCP agreement.
Method in the use embodiment of the invention can be given terminal distribution IP address neatly and is easy to locating terminal and guarantee network security.
Description of drawings
Fig. 1 is the schematic diagram that concerns between network management platform, gateway, the client;
Fig. 2 is an IP address assignment method schematic diagram;
Fig. 3 is the IP address assignment method flow diagram;
Fig. 4 is the IP address assignment system schematic;
Fig. 5 is for detecting and stop the flow chart of illegal DHCP service;
Fig. 6 is for detecting and stop the device schematic diagram of illegal DHCP service.
Embodiment
The scheme of IP address assignment exists the problem that fail safe or configuration flexibility are not enough and be difficult for locating terminal and be difficult to preventing malice DHCP service under prior art, so be necessary to realize a kind of take into account fail safe and flexibility, and scheme that service is taken precautions against to some extent to malice DHCP.To this, the embodiment of the invention provides a kind of method of IP address assignment, by the cooperation of network management platform, gateway, client three parts, finishes the address assignment of terminal.Relation between network management platform, gateway, the client as shown in Figure 1, several gateways 102 of network management platform 101 management, each gateway 102 is connected with some terminals 103, each terminal 103 is provided with client 104.
The embodiment of the invention provides a kind of method of IP address assignment, and the method for dynamic distributing IP address is combined with the method for static distributing IP address.As shown in Figure 2, after server is received the IP address request information of terminal transmission, judge whether once access network of terminal according to the terminal record of preserving, if, then terminal is given in the IP address assignment that terminal was once used during access network, if not, then gives terminal distribution IP address with dynamical fashion.
When the terminal access network first time, by the Dynamic Host Configuration Protocol server that is arranged on gateway obtained the IP address and use the client that is positioned at terminal by client user's name and password by after the authentication of network management platform, network management platform is recorded in this IP address of terminal and MAC Address in the terminal record.Along with the increase of the terminal quantity of new access network, the clauses and subclauses in this terminal record are also along with increasing, and listed terminal is connected sometimes with network in the clauses and subclauses, is in off-state sometimes.Whether once whether network management platform learn terminal access network by the MAC Address of searching terminal in the terminal record.
As shown in Figure 3, the method concrete steps that provide of present embodiment are as follows:
Step 301: terminal sends the IP address request information to gateway;
Step 302: network management platform searching terminal record, judge whether once access network of terminal, if not, carry out step 303, if carry out step 304;
Step 303: gateway is given IP address of terminal Random assignment according to the DHCP agreement;
Step 304: network management platform is searched the IP address of this terminal and is given this terminal with this address assignment according to the terminal MAC Address in the terminal record;
Step 305: terminal is submitted to gateway with MAC Address, IP address, client user's name, password, is delivered to network management platform by gateway;
Step 306: network management platform judges whether terminal is legal, if not, then carry out step 307, if then carry out step 308;
Step 307: network management platform is regained to the IP address of this terminal distribution, provides information;
Step 308: the network management platform authorization terminal can access network, and the IP address and the MAC Address of record terminal;
Step 309: carry out the static binding of ARP.
In step 301, terminal contains the MAC Address of terminal in the packet that gateway sends; In step 302 network management platform from gateway obtain packet that terminal sends and in whether in the terminal record, judge whether for the first time access network of terminal according to the MAC Address of this terminal.If there is the MAC Address of this terminal in the terminal record, illustrate that this terminal once got access to an IP address, and also there is this IP address information in the terminal record, so network management platform sends to gateway to the MAC Address of this terminal and IP address, this IP address assignment is given terminal with this MAC Address by gateway.If there is not the MAC Address of this terminal in the terminal record, illustrate that then this terminal is the accesses network first time, give terminal distribution IP address with dynamical fashion this moment, promptly carries out according to the DHCP agreement.Terminal is handed to network management platform with IP address, self MAC address, client user's name, password by gateway after getting access to the IP address, network management platform receives that the back authenticates to judge whether this terminal is legal terminal, enter network as if legal then authorization terminal, and the mac address information of terminal and IP address information are left in the terminal record.
After terminal entering network, carry out the static binding of ARP, promptly gateway carries out static binding with the IP address and the MAC Address of terminal, and terminal is carried out static binding with the IP address and the MAC Address of gateway; After terminal exitted network, gateway was removed the binding of IP address of terminal and MAC Address, and terminal is removed the binding of gateway ip address and MAC Address.
Pass through h.323-configured gateway equipment and terminal equipment suitably in embodiments of the present invention, the IP number of addresses that makes gateway to provide is no less than the quantity of terminal.In step 303, during according to DHCP agreement distributing IP address, in the IP address that excludes network management platform terminal record, choose.
If terminal equipment changes, cause its MAC Address to change, then earlier the record of the terminal in the network management platform is upgraded, remove the binding relationship of this terminal MAC Address and IP address, and send to gateway in this terminal next time and to obtain IP when request, give this terminal by the DHCP service with IP address assignment at random, if it is further by the authentication access network, then write down its MAC Address and IP address, rebulid the binding relationship of the two.
The method that the embodiment of the invention provides has used the username and password of client to improve the fail safe of terminal, the MAC Address of record terminal and IP address make can locate easily to terminal, the MAC Address of terminal both can have been bound also can unbind, and this makes the distribution of IP address that certain flexibility be arranged again.
The embodiment of the invention provides a kind of system that gives terminal distribution IP address, as shown in Figure 4.Administrative unit 401 and allocation units 402 are network side apparatus, and client unit 403 is arranged on end side, are used to the packet that terminal distribution IP address is given in the request of sending.The content of packet comprises the terminal mac address information according to the form of DHCP agreement.Allocation units 402 can be arranged in the Dynamic Host Configuration Protocol server of gateway, receive the packet that client unit 403 is sent, and are passed to administrative unit 401 then, and whether once first judging unit 4011 in the administrative unit 401 judges terminal access network from packet.This moment, first judging unit 4011 was to draw by the record cell in the searching, managing unit 401 4012, preserved the terminal record in the record cell 4012, and the content of terminal record comprises the once mac address information and the IP address information of the terminal of access network.If record cell 4012 has retrieved the MAC Address of terminal in the packet in the terminal record, this terminal access network once then is described, and in record, can retrieve simultaneously the IP address that this terminal once obtained during access network, promptly the IP address of using when the terminal MAC Address is with access network once this moment is a corresponding relation.So first judging unit 4011 is sent to allocation units 402 with first kind of information, terminal is given in the IP address assignment of after allocation units 402 are received terminal once being used during access network.If first judging unit 4011 fails to retrieve the MAC Address of terminal in the packet in the terminal record, the terminal not access network of explanation with this MAC Address then, this moment, first judging unit 4011 was sent to allocation units 402 with first kind of information, allocation units 402 receive that the back dynamical fashion to terminal distribution IP address, promptly carries out according to the DHCP agreement.
The terminal MAC Address in the terminal record and the corresponding relation of IP address change, for example change when causing its MAC Address to change when terminal equipment, notification unit 4031 in the client unit 403 sends announcement information to administrative unit 401, first judging unit 4011 is according to announcement information, send second kind of information to allocation units 402, promptly requiring allocation units is terminal distribution IP address according to the DHCP agreement.
After terminal obtains the IP address, need judge also whether terminal is legal.Commit unit 4032 in the client unit 403 is submitted terminal mac address informations, IP address of terminal information, user name, password to administrative unit 401 at this moment, according to these data, second judging unit 4013 in the administrative unit 401 is judged the legitimacy of terminal according to user name of self storing and password database, if terminal is legal, to generate terminal recording information according to terminal mac address information and IP address information, and be sent to record cell 4012; If terminal is illegal, then disconnect and being connected of terminal, can transmit the descriptive information of being correlated with to client unit 403 in case of necessity.The system that uses the embodiment of the invention to provide has taken into account the fail safe and the flexibility of IP address assignment, and can position terminal.
The embodiment of the invention provides a kind of method that illegal DHCP server influences the network operation of taking precautions against under the mode that dynamic IP addressing is distributed.Be arranged on of the mandate of the Dynamic Host Configuration Protocol server of gateway through network management platform, can be terminal distribution IP address, Dynamic Host Configuration Protocol server without the network management platform mandate is called illegal DHCP server, and its existence can cause the conflict of IP address in the network, and communication can't normally be carried out.So must detect and stop the existence of illegal DHCP server.
Embodiment of the invention employing following steps detect and stop the existence of illegal DHCP server, as shown in Figure 5.
Step 501: in gateway broadcasts DHCP request data package, and the Dynamic Host Configuration Protocol server that is positioned at gateway does not respond the request from the gateway MAC Address;
Step 502: judge whether gateway receives that DHCP responds, and if not, then returns step 501, if then carry out step 503 and step 505;
Step 503: there is illegal DHCP server in the informing network management platform;
Step 504: network management platform is to illegal DHCP server location and further processing;
Step 505: in gateway broadcasts DHCP request data package, contain some different MAC Address in the packet of each broadcasting, and the Dynamic Host Configuration Protocol server that is positioned at gateway does not respond the DHCP request of sending from gateway;
Step 506: send the DHCP request data package that comprises the gateway MAC Address;
Step 507: judge whether gateway receives that DHCP responds, if, then return step 505, if not, process ends then.
In the packet of each broadcasting, contain different MAC Address in the step 505, it is a kind of virtual MAC address, can only apply for the regulation of an IP address to satisfy each MAC Address, and to use a plurality of MAC Address be all to take for the IP address that illegal DHCP can be provided.At this moment the MAC Address quantity of Shi Yonging can set or preestablish default value by the network manager when detecting.In testing process, gateway can send descriptive information to Dynamic Host Configuration Protocol server, make Dynamic Host Configuration Protocol server not respond the DHCP request of these virtual mac address that comprise gateway broadcasts, and after illegally Dynamic Host Configuration Protocol server is received this packet that comprises a plurality of different MAC Address of gateway broadcasts, can distribute an IP address to each MAC Address, because these MAC Address are virtual, so response that this moment, gateway can not be received illegal DHCP server, so gateway need send a DHCP request data package that comprises the self MAC address again, then can whether receive whether respond the IP address that detects illegal DHCP service is all taken according to gateway.Under the situation about all being taken in the IP address of illegal DHCP service, gateway can not receive that DHCP responds, and has so just stoped the existence of illegal DHCP server in network after sending the DHCP request data package.
In step 501 and step 505, also can come the broadcast data request package by other network elements.Need add customizing messages this moment in packet, making the Dynamic Host Configuration Protocol server that is positioned at gateway discern this data request packet is to carry out measuring ability, thereby is not the pairing network element distributing IP of the MAC Address address in the packet.In step 506, need to send in esse MAC Address in the network, and the IP that the Dynamic Host Configuration Protocol server that is positioned at gateway is not responded from this MAC Address asks, so that make this MAC Address corresponding net element can receive the response of illegal DHCP server, whether all taken with the IP address that detects illegal DHCP service.
The method of using the embodiment of the invention to provide, can be in network the mode of distributing IP address be to detect the existence of illegal DHCP server and eliminate its influence under the situation of dynamic assignment, and network management platform is to the illegal DHCP server location and further handle.
As shown in Figure 6, the embodiment of the invention provides a kind of device that detects the device of illegal DHCP service and stop illegal DHCP service.Illegal DHCP service detection means 610 comprises transmitting element 611 and detecting unit 612 among the figure, illegal DHCP service holdout device 620 comprises transmitting element 621 and detecting unit 622, these two devices are used for detecting and stoping the existence of the illegal DHCP server 640 in the network, thereby guarantee to authorize the operate as normal of Dynamic Host Configuration Protocol server 630 and the normal operation of network.
The device that the embodiment of the invention provides can be positioned at gateway, also can be arranged at other network elements in the network.When the device that provides in the embodiment of the invention brings into operation, detect the existence of illegal DHCP server 640 earlier by illegal DHCP service detection means 610.Transmitting element 611 is broadcasted the DHCP request data package at this moment, contains the MAC Address of gateway in the packet, and this packet can be authorized to Dynamic Host Configuration Protocol server 630 and illegal DHCP server 640 is received.Meanwhile transmitting element 611 also needs to send descriptive information to the Dynamic Host Configuration Protocol server 630 of authorizing, so that authorize Dynamic Host Configuration Protocol server 630 not remove to respond this packet.The content of descriptive information can be the DHCP request data package that the Dynamic Host Configuration Protocol server 630 of order mandate does not respond the MAC Address that contains transmitting element place network element.Detecting unit 612 begins to detect then, then judges it is from illegal DHCP server 640 if receive the DHCP response, and this has just confirmed the existence of illegal DHCP server 640.Confirming under the situation that illegal DHCP server 640 exists that detecting unit 612 can also send relevant information by the relevant management devices in network, with the illegal DHCP server that exists in the further processing network.
Next, illegal service by 620 pairs of illegal DHCP server 640 of illegal DHCP service holdout device stops, this moment, transmitting element 621 elder generations broadcasted the DHCP request data package, contain some different MAC Address in the packet of each broadcasting, also need simultaneously to send descriptive information, so that authorize Dynamic Host Configuration Protocol server 630 not remove to respond this packet to the Dynamic Host Configuration Protocol server 630 of at this moment authorizing.And illegal Dynamic Host Configuration Protocol server 640 still can be to these MAC Address distributing IP addresses.Because the MAC Address in the packet of this moment broadcasting is actual network element in the map network not, also have no way of receiving the response of illegal DHCP server 640 to these MAC Address, so next whether taken for the IP address that detects 640 of illegal DHCP server and can provide, need send a DHCP request data package that has real mac address in the network again, it can be the MAC Address of detecting unit 622 place network elements, respond if detecting unit 622 is received DHCP this moment, illustrate that then illegal DHCP service also is not prevented from, its reason is that the IP address that 640 of illegal Dynamic Host Configuration Protocol server can provide is not also taken, so repeat the step of front, be transmitting element 621 broadcasting DHCP request data package and the DHCP request data package that has real mac address in the network, till detecting unit 622 receives that no longer DHCP responds, can judge that illegal DHCP service is prevented from this moment.
The device that uses the embodiment of the invention to provide, can be in network the mode of distributing IP address be to detect the existence of illegal DHCP server and stop its service under the situation of dynamic assignment.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these are revised and modification belongs within the scope of claim of the present invention and equivalent technologies thereof, then the present invention also is intended to comprise these changes and modification interior.
Claims (8)
1. a method of giving terminal distribution IP address is characterized in that, after server is received the IP address request information of terminal transmission, carries out following steps:
Judge whether once access network of terminal according to the terminal record of preserving, if, then terminal is given in the IP address assignment that terminal was once used during access network, if not, then give terminal distribution IP address according to the DHCP agreement with dynamical fashion, wherein, described terminal record comprises the IP address and the medium access control MAC Address of terminal, and chooses for according to the DHCP agreement IP address of terminal distribution in the IP address that excludes the terminal record with dynamical fashion;
After terminal entering network, the IP address and the MAC Address of terminal are carried out static binding, and after terminal exits network, remove the IP address of terminal and the binding of MAC Address.
2. the method for claim 1 is characterized in that, described terminal record is preserved in the following way: judge whether described terminal is legal, if then described terminal medium access control mac address information and IP address information are write described terminal record.
3. method as claimed in claim 2 is characterized in that, described judge described terminal whether legal be whether correctly to finish by terminal mac address information, IP address of terminal information, user name, password that verification terminal is submitted to.
4. method as claimed in claim 2 is characterized in that, if the terminal mac address information in the described terminal record changes, does not then carry out described judgement but directly gives described terminal distribution IP address with described dynamical fashion.
5. a system that gives terminal distribution IP address is characterized in that, comprises client unit and network side apparatus, wherein,
Described client unit is used for being sent as to described network side apparatus the solicited message of terminal distribution IP address, comprises the terminal mac address information in the solicited message;
Whether once described network side apparatus is used for judging terminal access network according to described request information and terminal record that wherein, described terminal record comprises the IP address and the medium access control MAC Address of terminal; Also be used in described terminal once during access network, terminal is given in the IP address assignment of using when terminal was once inserted network, when described terminal had not inserted network, give terminal distribution IP address with dynamical fashion according to the DHCP agreement, also be used for after terminal entering network, the IP address and the MAC Address of terminal are carried out static binding, and after terminal exits network, remove the IP address of terminal and the binding of MAC Address, wherein, in the IP address that excludes the terminal record, choose for the IP address of terminal distribution with dynamical fashion according to the DHCP agreement.
6. system according to claim 5 is characterized in that, described network side apparatus comprises: administrative unit and allocation units, wherein,
Described administrative unit comprises the record cell and first judging unit, wherein,
Described record cell is used to preserve the terminal record;
Whether once described first judging unit is used for judging terminal access network according to described request information and terminal record, if, then send first kind of information to described allocation units, if not, then send second kind of information to described allocation units;
Described allocation units, terminal is given in the IP address assignment of when being used to receive first kind of information terminal once being used during access network, gives terminal distribution IP address with dynamical fashion when receiving second kind of information.
7. system as claimed in claim 6 is characterized in that, described administrative unit also comprises:
Second judging unit is used to judge whether described terminal is legal, when definite terminal is legal, generates terminal recording information according to described terminal mac address information and IP address information, and described terminal recording information is sent to described record cell preservation.
8. system as claimed in claim 7 is characterized in that, described client unit also comprises:
Notification unit is used for when the terminal MAC Address changes, and sends announcement information to described network side apparatus, points out first judging unit to send second kind of information to described allocation units.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008100579127A CN101247396B (en) | 2008-02-20 | 2008-02-20 | Method, device and system for distributing IP address |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008100579127A CN101247396B (en) | 2008-02-20 | 2008-02-20 | Method, device and system for distributing IP address |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101247396A CN101247396A (en) | 2008-08-20 |
| CN101247396B true CN101247396B (en) | 2011-06-15 |
Family
ID=39947595
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008100579127A Expired - Fee Related CN101247396B (en) | 2008-02-20 | 2008-02-20 | Method, device and system for distributing IP address |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101247396B (en) |
Families Citing this family (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102238239A (en) * | 2010-04-21 | 2011-11-09 | 电信科学技术研究院 | IP address allocation method and device |
| CN101888389B (en) * | 2010-07-19 | 2013-04-17 | 中国电信股份有限公司 | Method and system for realizing uniform authentication of ICP union |
| CN102571511A (en) * | 2010-12-29 | 2012-07-11 | 中国移动通信集团山东有限公司 | Local area network access control system and method, and server |
| US9313655B2 (en) * | 2011-10-31 | 2016-04-12 | Nokia Corporation | Location privacy in communication networks |
| CN102710810B (en) * | 2012-06-11 | 2015-08-05 | 浙江宇视科技有限公司 | A kind of method of automatic IP address allocation and a kind of trunking |
| JP5549710B2 (en) * | 2012-07-04 | 2014-07-16 | 横河電機株式会社 | Wireless communication system and information providing method |
| CN103731816B (en) * | 2012-10-16 | 2016-12-21 | 普天信息技术研究院有限公司 | A kind of user device address management method |
| CN105208137A (en) * | 2014-06-16 | 2015-12-30 | 中兴通讯股份有限公司 | Internet Protocol (IP) address allocation methods, device, server and terminal |
| CN105703931A (en) * | 2014-11-26 | 2016-06-22 | 中兴通讯股份有限公司 | Identification network redundancy backup method and device |
| CN107770296B (en) * | 2016-08-18 | 2022-05-13 | 中兴通讯股份有限公司 | Method and device for allocating addresses |
| CN107172103B (en) * | 2017-07-14 | 2019-09-17 | 迈普通信技术股份有限公司 | A kind of ARP authentication method, apparatus and system |
| CN107483480B (en) * | 2017-09-11 | 2020-05-12 | 杭州迪普科技股份有限公司 | Address processing method and device |
| CN107888449A (en) * | 2017-11-15 | 2018-04-06 | 中国联合网络通信集团有限公司 | The recognition methods of type of service and the network equipment |
| CN109802980A (en) * | 2017-11-17 | 2019-05-24 | 华为技术有限公司 | Method for message interaction, relevant apparatus and system |
| CN108259639B (en) * | 2017-12-25 | 2021-10-22 | 锐捷网络股份有限公司 | IP address allocation method and device |
| CN108377275B (en) * | 2018-02-11 | 2021-08-31 | 北京泰和利通科技有限公司 | Network security protection method based on neural network algorithm |
| CN110493366B (en) * | 2019-08-01 | 2022-03-25 | 新华三技术有限公司成都分公司 | Method and device for adding access point into network management |
| CN110855605B (en) * | 2019-09-26 | 2022-05-13 | 山东鲁能软件技术有限公司 | Safety protection method, system, equipment and readable storage medium for terminal equipment |
| CN110798546A (en) * | 2019-11-08 | 2020-02-14 | 杭州海兴电力科技股份有限公司 | DUID-based DHCP client access authentication method |
| CN113285929B (en) * | 2021-05-10 | 2023-03-24 | 新华三技术有限公司 | Terminal validity detection method and device |
| CN115051830B (en) * | 2022-04-29 | 2023-12-26 | 国网浙江省电力有限公司宁波供电公司 | Electric power target range hidden danger data safety monitoring system and method |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1612537A (en) * | 2003-10-29 | 2005-05-04 | 华为技术有限公司 | Method for preventing main computer from being counterfeited in IP ethernet |
| CN1713629A (en) * | 2004-06-25 | 2005-12-28 | 杭州华为三康技术有限公司 | Realization of user login name and IP address binding |
| CN1855926A (en) * | 2005-04-29 | 2006-11-01 | 华为技术有限公司 | Method and system for contributing DHCP addresses safely |
-
2008
- 2008-02-20 CN CN2008100579127A patent/CN101247396B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1612537A (en) * | 2003-10-29 | 2005-05-04 | 华为技术有限公司 | Method for preventing main computer from being counterfeited in IP ethernet |
| CN1713629A (en) * | 2004-06-25 | 2005-12-28 | 杭州华为三康技术有限公司 | Realization of user login name and IP address binding |
| CN1855926A (en) * | 2005-04-29 | 2006-11-01 | 华为技术有限公司 | Method and system for contributing DHCP addresses safely |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101247396A (en) | 2008-08-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101247396B (en) | Method, device and system for distributing IP address | |
| CN100452715C (en) | Intelligent terminal managing method | |
| CN1714541B (en) | Information processing device, server client system, method, and computer program | |
| CN101345643B (en) | Method and device for early warning of network appliance | |
| CN102843682B (en) | Access point authorizing method, device and system | |
| CN101345743B (en) | Method and system for preventing network attack by utilizing address analysis protocol | |
| CN101453495B (en) | Method, system and equipment for preventing authentication address resolution protocol information loss | |
| CN100586106C (en) | Message processing method, system and equipment | |
| CN101309272B (en) | Authentication server and mobile communication terminal access controlling method of virtual private network | |
| US20090217353A1 (en) | Method, system and device for network access control supporting quarantine mode | |
| CN101277308A (en) | Method for insulating inside and outside networks, authentication server and access switch | |
| CN101455041A (en) | Detection of network environment | |
| CN102446106A (en) | Installation management method, server and terminal for application program | |
| CN101232372A (en) | Authentication method, authentication system and authentication device | |
| CN102571729A (en) | Internet protocol version (IPV)6 network access authentication method, device and system | |
| JP2005528851A5 (en) | ||
| US20150121527A1 (en) | Method and apparatus for detecting unauthorized access point | |
| CN107743154B (en) | Tracking and attendance system based on Wi-Fi intelligent terminal and method thereof | |
| CN101895587A (en) | Method, device and system for preventing users from modifying IP addresses privately | |
| CN101252587B (en) | User terminal access right identifying method and apparatus | |
| CN102685812A (en) | Access point (AP) associated terminal control method, device and system | |
| CN106686592B (en) | Network access method and system with authentication | |
| CN107528712A (en) | The determination of access rights, the access method of the page and device | |
| CN101621433B (en) | Method, device and system for configuring access equipment | |
| CN106559785A (en) | Authentication method, equipment and system and access device and terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| ASS | Succession or assignment of patent right |
Free format text: FORMER OWNER: BEIJING PKU FOUNDER BROADBAND NETWORK TECHNOLOGY CO., LTD. Owner name: BEIJING PKU FOUNDER BROADBAND NETWORK TECHNOLOGY C Free format text: FORMER OWNER: BEIDA FANGZHENG GROUP CO. LTD. Effective date: 20110817 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20110817 Address after: 100871 Beijing, Haidian District Road, building No. 298, founder of the building, Zhongguancun, layer 5 Patentee after: Beijing PKU Founder Broadband Network Technology Co., Ltd. Address before: 100871, Haidian District Fangzheng Road, Beijing, Zhongguancun Fangzheng building, 298, 513 Co-patentee before: Beijing PKU Founder Broadband Network Technology Co., Ltd. Patentee before: Peking Founder Group Co., Ltd. |
|
| C56 | Change in the name or address of the patentee |
Owner name: FOUNDER BROADBAND NETWORK SERVICE CO., LTD. Free format text: FORMER NAME: BEIJING PKU FOUNDER BROADBAND NETWORK TECHNOLOGY CO., LTD. |
|
| CP03 | Change of name, title or address |
Address after: North Building 100088 Beijing city Haidian District Institute of Road No. 15 5 floor Patentee after: Founder Broadband Network Service Co., Ltd. Address before: 100871 Beijing, Haidian District Road, building No. 298, founder of the building, Zhongguancun, layer 5 Patentee before: Beijing PKU Founder Broadband Network Technology Co., Ltd. |
|
| C56 | Change in the name or address of the patentee | ||
| CP01 | Change in the name or title of a patent holder |
Address after: North Building 100088 Beijing city Haidian District Institute of Road No. 15 5 floor Patentee after: FOUNDER BROADBAND NETWORK SERVICE CO., LTD. Address before: North Building 100088 Beijing city Haidian District Institute of Road No. 15 5 floor Patentee before: Founder Broadband Network Service Co., Ltd. |
|
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20110615 Termination date: 20200220 |