CN101621802A - Method, system and device for authenticating portal in wireless network - Google Patents
Method, system and device for authenticating portal in wireless network Download PDFInfo
- Publication number
- CN101621802A CN101621802A CN200910091230A CN200910091230A CN101621802A CN 101621802 A CN101621802 A CN 101621802A CN 200910091230 A CN200910091230 A CN 200910091230A CN 200910091230 A CN200910091230 A CN 200910091230A CN 101621802 A CN101621802 A CN 101621802A
- Authority
- CN
- China
- Prior art keywords
- sta
- address
- authentication
- forwarding capability
- local forwarding
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a method, a system and a device for authenticating a portal in a wireless network. The method comprises the following steps: after receiving an authenticating request of a mobile terminal (STA) by a wireless access point (AP), transmitting the authenticating request to an accessing controller (AC) through the control of the wireless accessing point and a supply protocol (CAPWAP) tunnel, and forwarding the authenticating request to a portal server by the AC; after the AC successfully authenticates the STA by the Portal server, transmitting configuration information to indicate the AP to start a local forwarding function to the STA through the CAPWAP tunnel by the AC; and after learning a condition that the STA quits the authentication, transmitting configuration information to indicate the AP to close the local retransmission function to the STA through the CAPWAP tunnel. The invention is capable of using a prior network authentication framework to perform a Portal authentication under the condition of an AP local retransmission without extra increasing authenticating apparatuses, thereby saving the networking cost.
Description
Technical field
The present invention relates to the wireless lan (wlan) technical field, portal authentication method, system and device in particularly a kind of wireless network.
Background technology
In present wireless network, Centralized Wireless LAN is because its managerial advantage strong and that be applicable to large scale deployment obtains application more and more widely.In Centralized Wireless LAN, can be connected by proprietary protocol tunnel between AC and the AP, that commonly used is wireless access point control and supply (CAPWAP, Controlling and Provisioning of Wireless Access Point) agreement can be carried out the transmission and the configuration management of data between AP and the AC by CAPWAP tunnel.
In traditional Centralized Wireless LAN, inlet (Portal) authentication is sent to Portal server by AC and carries out, after user's Portal authentication is passed through, carry out the forwarding of data of this user's portable terminal (STA) by AC, the existing authentication architecture of Centralized Wireless LAN as shown in Figure 1.
But continuous development along with wireless communication technology, the user data that the performance of AC can't satisfy under each AP is gradually transmitted, therefore, local retransmission technique arises at the historic moment, be that AP and STA are still managed by AC by CAPWAP tunnel, but the data of STA are then transmitted by connected AP, no longer concentrate by CAPWAP tunnel and are transmitted by AC.Because data no longer by AC, therefore, can't realize user's Portal authentication by existing authentication architecture, and need additionally set up Portal server with two layers of place that can reach of AP, as shown in Figure 2.Like this, adopting under the local situation about transmitting of AP, just can't directly utilize the existing network architecture, and have to increase the number of devices of networking, and then increase cost.
Summary of the invention
In view of this, the invention provides Portal authentication method, system and device in a kind of wireless network, facilitate the use existing network authentication framework and realize that the Portal under the local forwarding situation of AP authenticates, additionally do not increase authenticating device, save networking cost.
Portal authentication method in a kind of wireless network, this method comprises:
After A, AP receive the authentication request of STA, this authentication request is sent to AC by CAPWAP tunnel;
B, described AC send to Portal server with described authentication request, after knowing the authentication success of described Portal server at described STA, send configuration messages by described CAPWAP tunnel and indicate the local forwarding capability of described AP activation pin to described STA;
After C, described AC know that described STA withdraws from authentication, send configuration messages by described CAPWAP tunnel and indicate described AP to close local forwarding capability at described STA.
A kind of AP, this AP comprises: packet sending and receiving unit and functional configuration unit;
Described packet sending and receiving unit after being used to receive the authentication request of STA, sends to AC by CAPWAP tunnel with this authentication request; Receive the configuration messages that AC sends by CAPWAP tunnel; After local forwarding capability at described STA has been opened in described functional configuration unit, adopt the local mode of transmitting that described STA is carried out message and transmit;
Described functional configuration unit, when being used for receiving in described packet sending and receiving unit the indication activation pin to the configuration messages of the local forwarding capability of described STA, activation pin is to the local forwarding capability of described STA; Receive indication in described packet sending and receiving unit when closing configuration messages at the local forwarding capability of described STA, close local forwarding capability at described STA.
A kind of AC, this AC comprises: packet sending and receiving unit, authentication determining unit and administration configuration unit;
Described packet sending and receiving unit after being used for receiving the authentication request of the STA that AP sends by CAPWAP tunnel, sends to Portal server with this authentication request;
Described authentication determining unit is used for sending first configuration notification to described administration configuration unit after knowing the authentication success of described Portal server at described STA; After knowing that described STA withdraws from authentication, send second configuration notification to described administration configuration unit;
Described administration configuration unit, be used to receive described first configuration notification after, send configuration messages by described CAPWAP tunnel and indicate the local forwarding capability of described AP activation pin described STA; After receiving described second configuration notification, send configuration messages by described CAPWAP tunnel and indicate described AP to close local forwarding capability at described STA.
Inlet Portal Verification System in a kind of wireless network, this system comprises: AP, AC and Portal server;
Described AP after being used to receive the authentication request of STA, sends to described AC by CAPWAP tunnel with this authentication request; After receiving first configuration messages, activation pin is to the local forwarding capability of described STA; After receiving second configuration messages, close local forwarding capability at described STA;
Described AC, the described authentication request that is used for receiving sends to described Portal server, after knowing the authentication success of described Portal server at described STA, sends first configuration messages by described CAPWAP tunnel to described AP; After knowing that described STA withdraws from authentication, send second configuration messages to described AP by described CAPWAP tunnel;
Described Portal server, be used to receive described authentication request after, described STA is authenticated.
As can be seen from the above technical solutions, in the mthods, systems and devices provided by the invention, AP sends to AC with the authentication request of STA by CAPWAP tunnel, be transmitted to Portal server by AC, and AC sends the local forwarding capability of configuration messages indication AP activation pin to this STA by CAPWAP tunnel after knowing that Portal server is at this STA authentication success; After knowing that STA withdraws from authentication, send configuration messages indication AP by CAPWAP tunnel and close local forwarding capability at this STA.That is to say that before authentication was passed through, authentication request was concentrated and is sent to AC, after authentication is passed through, open the local forwarding capability of the STA that passes through authentication by AC configuration AP.Can utilize existing network authentication framework to realize that the Portal under the local forwarding situation of AP authenticates by the present invention, need not additionally to increase authenticating device, save networking cost.
Description of drawings
Fig. 1 is the existing authentication architecture figure of centralized wireless networking;
Fig. 2 is the authentication architecture figure under the local forwarding situation of AP in the prior art;
The main method flow chart that Fig. 3 provides for the embodiment of the invention;
The detailed method flow chart that Fig. 4 provides for the embodiment of the invention;
Fig. 5 is that DHCP message flow in the embodiment of the invention one is to schematic diagram;
Fig. 6 flows to schematic diagram for the message identifying in the embodiment of the invention one;
The detailed method flow chart that Fig. 7 provides for the embodiment of the invention two;
The AP structural representation that Fig. 8 provides for the embodiment of the invention;
The AC structural representation that Fig. 9 provides for the embodiment of the invention.
Embodiment
In order to make the purpose, technical solutions and advantages of the present invention clearer, describe the present invention below in conjunction with the drawings and specific embodiments.
Method provided by the present invention can mainly may further comprise the steps as shown in Figure 3:
After step 301:AP receives the authentication request of STA, this authentication request is sent to AC by CAPWAP tunnel.
Step 302:AC is transmitted to Portal server with this authentication request, after knowing the authentication success of Portal server at this STA, sends the local forwarding capability of configuration messages indication AP activation pin to this STA by CAPWAP tunnel.
After step 303:AC knows that this STA withdraws from authentication, send configuration messages indication AP by CAPWAP tunnel and close local forwarding capability at this STA.
Below in conjunction with specific embodiment said method provided by the invention is described in detail.
Embodiment one:
The detailed method flow chart that Fig. 4 provides for the embodiment of the invention one, in this flow process, still use as shown in Figure 1 existing authentication architecture to realize authentication under the local forwarding situation of AP, in the method, configuration STA authentication is by preceding closing local forwarding capability on AP, and acquiescence is opened descending local forwarding capability.As shown in Figure 4, this method can may further comprise the steps:
After step 401:STA is connected to AP, send DHCP (DHCP) request message.
After STA is initially connected to AP, can find that this STA is without any the IP address setting, will send a DHCP request message that carries the MAC Address of this STA, the source address of this DHCP request message can be 0.0.0.0, and destination address then is 255.255.255.255.
Step 402:AP by and AC between CAPWAP tunnel the DHCP request message is sent to AC, be transmitted to Dynamic Host Configuration Protocol server by AC.
Because AP does not open local forwarding capability at authentification of user by preceding, therefore, all messages that AP can send STA all send to AC by CAPWAP tunnel.After AC receives the DHCP request message, this DHCP request message is carried out DHCP relay (DHCP Relay) operation, be forwarded to connected Dynamic Host Configuration Protocol server.
Step 403:DHCP server is this STA distributing IP address, and determines the user gateway IP address that this STA uses when the local forwarding of follow-up AP, and these IP address informations are sent to AC.
Step 404:AC sends to AP with this IP address information by CAPWAP tunnel, sends to STA by AP again.
In this step, still the IP address information of Dynamic Host Configuration Protocol server being replied by the DHCP Relay function of AC sends to AP by CAPWAP tunnel, further sends to STA by AP again.
Through after the above-mentioned steps, STA just gets access to IP address allocated, and AC is last can to preserve the ARP list item of corresponding relation between the IP address of STA and the MAC Address.AP is last can to store corresponding relation between the user gateway IP address of IP address, MAC Address and this STA correspondence of this STA, behind the local forwarding capability of activation pin to this STA, uses this corresponding relation to carry out using when transmit this locality.
The message flow of above-mentioned DHCP request process is to can be as shown in Figure 5.
It is the HTTP request message of user gateway IP address that step 405:STA sends purpose IP address, and AP is sent to AC by CAPWAP tunnel after receiving this HTTP request message.
After the user opens the HTTP(Hypertext Transport Protocol) page on the Internet, because this user is still by authentication, beginning that can the triggering authentication process.The HTTP request message that at first can send purpose IP address and be user gateway IP address obtains the MAC Address of user gateway, so that carry out two layers of follow-up forwarding.After AP receives this HTTP request message, still this HTTP request message can be sent to AC by CAPWAP tunnel.
After step 406:AC receives this HTTP request message, utilize pre-configured ARP list item to replace user gateway to carry out arp reply to STA by CAPWAP tunnel.
Because still there is not the mac address information of user gateway in AC, therefore, need the ARP list item of each user gateway of configuration on this AC in advance, i.e. corresponding relation between IP address and the MAC Address, and on AC ARP generation of configure user gateway answer function.After AC receives the HTTP request message, the MAC Address of user gateway is sent to AP by CAPWAP tunnel, send to STA by AP again.AP and STA can store the ARP list item of this user gateway.
Step 407:STA sends authentication request, and AP sends to AC by CAPWAP tunnel with authentication request, and AC is redirected to Portal server with this authentication request after receiving this authentication request.
Usually, the destination address in this authentication request is the address of user gateway, and AC can reply the IP address that Portal server is informed in HTTP redirection to STA after receiving authentication request.STA resends authentication request according to this HTTP redirection, by AC this authentication request is forwarded to Portal server.
Need to prove, if the user directly uses login page, also execution in step 405 and 406 not, directly execution in step 407 sends authentication request, and carries out arp reply in step 407.
After step 408:Portal server receives authentication request, this user is authenticated, after authentication is passed through, inform the AC authentication success, and send the authentication success response to STA.
Wherein, inform that the AC authentication success can realize that this mode is a Portal authentication existing standard mode by the mode that sends authentication success message to AC.
The purpose IP address of this authentication success response is the IP address of STA.The authentication success response that sends to STA at first is sent to central router, because the IP address of STA is place, the IP address network segment IP address down of user gateway, therefore, central router can respond this authentication success be sent to user gateway.
After user gateway receives this authentication success response, can comprise the ARP request of the IP address of this STA to all AP broadcasting that it connected, because the AP acquiescence has been opened descending local forwarding capability, therefore, the AP that is connected with this STA can replace STA to carry out arp reply after receiving this ARP request, informs the MAC Address of this STA of this user gateway, user gateway is stored the IP address of this STA and the ARP list item of MAC Address, and utilizes this list item to carry out follow-up message and transmit.User gateway utilizes this ARP list item that the authentication success response is sent to AP, is transmitted to STA by AP.
Need to prove that central router is the router between AC and the Portal server or the general designation of router network.
After step 409:AC is known authentication success, send the configuration messages of activation pin to the up local forwarding capability of this STA to AP, after AP received this configuration messages, activation pin was to the up local forwarding capability of this STA.
AC can comprise the mac address information of this STA in the configuration messages that AP sends, after AP receives this configuration messages, enable up local the forwarding at the MAC Address of this STA.
AP can at first judge whether to have opened up local forwarding capability at this STA behind the message that receives the STA transmission, if, then this message is carried out this locality and transmit, otherwise, by CAPWAP tunnel this message is sent to AC.
That is to say, behind the STA authentication success, AP just can activation pin to the up local forwarding capability of this STA, and this AP has had descending local forwarding capability, therefore, follow-up message at this STA just can be transmitted by the local forwarding capability of AP, is sent to AC and transmits and needn't concentrate.
If authentification failure, then the Protal server can be informed the AC authentification failure, and sends authentication failure response to STA, and the forward-path of this authentication failure response is identical with the authentication success response.After AC is known authentification failure, just can not send the configuration messages of activation pin, then then can not realize this locality forwarding of upstream data, thereby reach the purpose of Portal authentication at this STA to AP to the up local forwarding capability of this STA.
The Portal verification process, promptly the message flow of step 407 to 409 is to can be as shown in Figure 6.
If the user withdraws from authentication, then can continue to carry out following steps:
Step 410: when the user withdraws from authentication, withdraw from identifying procedure according to existing Portal and carry out, promptly Portal server informs that to AC this user's STA logs off.AC sends the configuration messages of closing at the up local forwarding capability of this STA by CAPWAP tunnel to AP.
The user withdraws from authentication may exist two kinds of situations: the first, user offline, STA can send authentication to Portal server withdraw from request message, and Portal server receives after this withdraws from request message, this STA of notice AC withdraws from authentication, the relevant ARP list item of this STA of AC deletion storage; They are two years old, the STA shutdown, can periodically send heartbeat message between Portal server and the STA, if Portal server is not received the heartbeat message of STA in setting-up time, then think the STA fault, this STA of Portal server notice AC withdraws from authentication, the relevant ARP list item of this STA of AC deletion storage.
After the user withdrawed from authentication, AC can correspondingly notify AP to close up local forwarding capability at this STA.Like this, this STA still opens AP according to the complete identifying procedure of flow performing shown in Figure 4 and transmits at this locality of this STA when reaching the standard grade next time.
What embodiment one adopted in the reciprocal process of message identifying is asymmetry path, and this is by acquiescence activation pin on AP the descending local forwarding capability of STA to be realized.In addition, can also in the reciprocal process of message identifying, adopt symmetric path all the time, need not to give tacit consent to the descending local forwarding capability of activation pin like this to this STA, and behind authentication success at the same time activation pin the local forwarding capability of the uplink and downlink of this STA is described in detail this situation in embodiment two below.
Embodiment two:
The detailed method flow chart that Fig. 7 provides for the embodiment of the invention two, same, in this flow process, still use as shown in Figure 1 existing authentication architecture to realize authentication under the local forwarding situation of AP, as shown in Figure 7, this method can may further comprise the steps:
Step 701-707 is identical with step 401-407, repeats no more.
In this embodiment, AP acquiescence when initial is closed the local forwarding capability of uplink and downlink of STA.
After step 708:Portal server receives authentication request, this user is authenticated, after authentication is passed through, send the authentication success response to STA.
The purpose IP address of this authentication success response is the IP address of this STA.
In this embodiment, because AP closes the descending local forwarding capability of STA when initial, therefore, the authentication success response still needs to be transmitted to STA by AC, and can not carry out the descending transmission of authentication success response by user gateway.At this moment, can on AC, start dynamic routing protocol such as ospf (OSPF), the detailed route of the main frame of this STA that AC will collect is sent to central router, make this central router after the authentication success response that receives the Protal server, this authentication success response is sent to AC according to the detailed route of the main frame of this STA of main frame.
Suppose that the STA and the user gateway place network segment are 10.0.0.0, the concrete IP address of STA is 10.0.0.10, the IP address of user gateway is 10.0.0.1, if AC is not sent to central router with the detailed route of main frame, then central router is only known STA in the network segment of user gateway place, therefore, the authentication success response can be sent to user gateway; If the route that AC is the 10.0.0.10 correspondence with the detailed route of main frame is sent to central router, then central router can be selected this authentication success response is sent according to the detailed route of main frame, promptly sends to AC.
After step 709:AC receives the authentication success response, this authentication success response is sent to AP by CAPWAP tunnel, and send the configuration messages of activation pin to AP the local forwarding capability of uplink and downlink of this STA by CAPWAP tunnel.
Step 710:AP sends to STA with the authentication success response that receives, and according to the uplink and downlink this locality forwarding capability of the configuration messages activation pin that receives to this STA.
Step 711: when the user withdraws from authentication, withdrawing from identifying procedure according to existing Portal carries out, AC is known when this user's STA logs off, AC sends the configuration messages of closing at the local forwarding capability of uplink and downlink of this STA by CAPWAP tunnel to AP, and the notice central router is deleted the detailed route of main frame of this STA.
In this embodiment two, need central router to upgrade in time from the main frame route of the STA of AC, the router in a pair of networking of this embodiment that compares has certain performance requirement.
More than be the detailed description that method provided by the present invention is carried out, below system provided by the present invention and device be described in detail.
Portal Verification System provided by the present invention can be as shown in Figure 1 framework, just change has taken place in the function of some equipment, this system can comprise: AP, AC and Portal server.
AP after being used to receive the authentication request of STA, sends to AC by CAPWAP tunnel with this authentication request; After receiving first configuration messages, activation pin is to the local forwarding capability of STA; After receiving second configuration messages, close local forwarding capability at STA.
AC, the authentication request that is used for receiving sends to Portal server, after knowing the authentication success of Portal server at STA, sends first configuration messages by CAPWAP tunnel to AP; After knowing that STA withdraws from authentication, send second configuration messages to AP by CAPWAP tunnel.
Portal server after being used to receive authentication request, authenticates STA.
Because connect afterwards and before authenticating, need carry out dhcp process at STA and AP usually, therefore, this system can also comprise: Dynamic Host Configuration Protocol server.
AP also is used to receive STA and is being connected to the DHCP request message that sends behind this AP, and this DHCP request message is sent to AC by CAPWAP tunnel; The IP address of the STA that receives and the user gateway IP address of STA are transmitted to STA, and IP address, the MAC Address of STA and the corresponding relation between the user gateway IP address of storage STA.
AC, the DHCP message that also is used for receiving sends to Dynamic Host Configuration Protocol server; The IP address of the STA that Dynamic Host Configuration Protocol server is returned and the user gateway IP address of STA send to AP by CAPWAP tunnel.
Dynamic Host Configuration Protocol server, be used to receive the DHCP message after, be STA distributing IP address, and the IP address of the STA that distributes and the user gateway IP address of STA returned to AC.
In addition, AC can also be used to utilize the pre-configured IP address that comprises user gateway and the ARP list item of MAC Address, carries out the arp reply at user gateway.
This system can also comprise: user gateway and the central router between Portal server and AC.Authentication success response Recovery Process for concrete, can adopt following dual mode:
First kind of mode:
AP initial default activation pin is closed the up local forwarding capability at STA to the descending local forwarding capability of STA; After receiving first configuration messages, activation pin is to the up local forwarding capability of STA, receive second configuration messages after, close up local forwarding capability at STA.
Portal server can also be used for after at the STA authentication success, sends authentication success message to AC, and sends the authentication success response that purpose IP address is the IP address of STA.
After AC receives authentication success message, know the authentication success of Portal server at STA.
Central router, be used to receive authentication success response after, the authentication success response is sent to user gateway.
User gateway, the authentication success response that is used for receiving sends to STA via AP.
The second way:
AC utilizes the dynamic routing protocol that starts in advance, and the detailed route of main frame of the STA that collects is sent to central router.
Portal server can also be used for after at the STA authentication success, and sending purpose IP address is the authentication success response of the IP address of STA.
Central router is used for according to the detailed route of the main frame of STA, and the authentication success response that Portal server is sent sends to AC.
AC is known the authentication success of Portal server at STA after receiving the authentication success response, and by CAPWAP tunnel the authentication success response is sent to AP; After knowing that STA withdraws from authentication, the detailed route of main frame of notice central router deletion STA.
AP, the authentication success response that also is used for receiving sends to STA; After receiving first configuration messages, activation pin is to the local forwarding capability of the uplink and downlink of STA; After receiving second configuration messages, close at the local forwarding capability of the uplink and downlink of STA.
The AP structural representation that Fig. 8 provides for the embodiment of the invention, as shown in Figure 8, this AP can comprise: packet sending and receiving unit 801 and functional configuration unit 802.
Packet sending and receiving unit 801 after being used to receive the authentication request of STA, sends to AC by CAPWAP tunnel with this authentication request; Receive the configuration messages that AC sends by CAPWAP tunnel; After local forwarding capability at STA has been opened in functional configuration unit 802, adopt the local mode of transmitting that STA is carried out message and transmit.
In addition, packet sending and receiving unit 801, the DHCP request message that can also be used for receiving sends to AC by CAPWAP tunnel; Receive the IP address of the STA that AC sends and the user gateway IP address of STA by CAPWAP tunnel, IP address and the user gateway IP address of this STA are transmitted to STA, and IP address, the MAC Address of STA and the corresponding relation between the user gateway IP address of storage STA.
At the mode of two kinds of above-mentioned authentications, AP also can adopt following two kinds of structures:
One, functional configuration unit 802 initial default activation pins are closed the up local forwarding capability at STA to the descending local forwarding capability of STA; When receiving the indication activation pin to the configuration messages of the local forwarding capability of STA in packet sending and receiving unit 801, activation pin is to the up local forwarding capability of STA; Receive indication in packet sending and receiving unit 801 when closing configuration messages at the local forwarding capability of STA, close up local forwarding capability at STA.
At this moment, this AP can also comprise: ARP is for answering unit 803.
Packet sending and receiving unit 801 after also being used to receive the ARP request of user gateway, sends to ARP for answering unit 803 with this ARP request; The arp response that ARP generation is answered unit 803 and provides sends to user gateway.
In ARP generation, answered unit 803, is used for judging whether the IP address that the ARP request comprises is the IP address that self connects STA, if then the MAC Address of the STA of this IP address correspondence is included in and offers packet sending and receiving unit 801 in the arp response.
When two, functional configuration unit 802 received the indication activation pin to the configuration messages of the local forwarding capability of STA in packet sending and receiving unit 801, activation pin was to the local forwarding capability of the uplink and downlink of STA; Receive indication in packet sending and receiving unit 801 when closing configuration messages at the local forwarding capability of STA, close at the local forwarding capability of the uplink and downlink of STA.
The AC structural representation that Fig. 9 provides for the embodiment of the invention, as shown in Figure 9, this AC can comprise: packet sending and receiving unit 901, authentication determining unit 902 and administration configuration unit 903.
Packet sending and receiving unit 901 after being used for receiving the authentication request of the STA that AP sends by CAPWAP tunnel, sends to Portal server with this authentication request.
In addition, this AC can also comprise: in ARP generation, answered unit 904, is used for carrying out the arp reply at user gateway according to being pre-configured in the IP address that comprises user gateway on this AC and the ARP list item of MAC Address.
Reply mode at two kinds of above-mentioned authentication responses equally, also can there be following two kinds of structures in AC:
One, when the descending local forwarding capability of AP initial default activation pin to STA, when closing the up local forwarding capability at STA, authentication determining unit 902 is known the authentication success of Portal server at STA after receiving the authentication success message of Portal server transmission in packet sending and receiving unit 901.
Two, this AC can also comprise: route transmitting element 905, be used to utilize the dynamic routing protocol that on this AC, starts in advance, and the detailed route of the main frame of the STA that collects is sent to central router; After authentication determining unit 902 knows that STA withdraws from authentication, the detailed route of main frame of notice central router deletion STA; Wherein, central router is router or the router network between Portal server and the AC.
Packet sending and receiving unit 901, also be used to receive authentication success response after, the authentication success response is sent to AP by CAPWAP tunnel.
By above description as can be seen, in the mthods, systems and devices provided by the invention, AP sends to AC with the authentication request of STA by CAPWAP tunnel, be transmitted to Portal server by AC, and AC sends the local forwarding capability of configuration messages indication AP activation pin to this STA by CAPWAP tunnel after knowing that Portal server is at this STA authentication success; After knowing that STA withdraws from authentication, send configuration messages indication AP by CAPWAP tunnel and close local forwarding capability at this STA.That is to say that before authentication was passed through, authentication request was concentrated and is sent to AC, after authentication is passed through, open the local forwarding capability of the STA that passes through authentication by AC configuration AP.Can utilize existing network authentication framework to realize that the Portal under the local forwarding situation of AP authenticates by the present invention, need not additionally to increase authenticating device, save networking cost.
In addition, among the present invention, AP only need be before authentication and in the verification process, all messages that receive all are forwarded to AC to focus on, after authentication success is finished, just opened local forwarding capability, finished message forwarding in AP this locality, thereby alleviated the performance burden of AC by the STA of authentication.
The above only is preferred embodiment of the present invention, and is in order to restriction the present invention, within the spirit and principles in the present invention not all, any modification of being made, is equal to replacement, improvement etc., all should be included within the scope of protection of the invention.
Claims (22)
1, the inlet Portal authentication method in a kind of wireless network is characterized in that this method comprises:
After A, wireless access point AP receive the authentication request of portable terminal STA, this authentication request is sent to access controller AC by wireless access point control and supply agreement CAPWAP tunnel;
B, described AC send to Portal server with described authentication request, after knowing the authentication success of described Portal server at described STA, send configuration messages by described CAPWAP tunnel and indicate the local forwarding capability of described AP activation pin to described STA;
After C, described AC know that described STA withdraws from authentication, send configuration messages by described CAPWAP tunnel and indicate described AP to close local forwarding capability at described STA.
2, method according to claim 1 is characterized in that, also comprises before described steps A:
After D1, described STA are connected to described AP, send the dynamic host configuration protocol DHCP request message;
D2, described AP send to described AC with described DHCP request message by CAPWAP tunnel, and are sent to Dynamic Host Configuration Protocol server by described AC;
The IP address of the described STA that D3, described AC return described Dynamic Host Configuration Protocol server and the user gateway IP address of described STA send to described AP by CAPWAP tunnel;
D4, described AP are transmitted to described STA with IP address and the described user gateway IP address of described STA, and store the IP address of described STA, the MAC Address of STA and the corresponding relation between the user gateway IP address.
3, method according to claim 2 is characterized in that, this method also comprises: configuration comprises the IP address of user gateway and the ARP list item of MAC Address on described AC in advance, utilizes this ARP list item to carry out arp reply at described user gateway.
According to claim 1 or the described method of 3 arbitrary claims, it is characterized in that 4, AP initial default activation pin is closed the up local forwarding capability at described STA to the descending local forwarding capability of described STA;
Know among the step B that described Portal server comprises at the authentication success of described STA: described Portal server is after at described STA authentication success, send authentication success message to described AC, and send the authentication success response that purpose IP address is the IP address of STA; Central router sends to user gateway with described authentication success response, by described user gateway this authentication success response is sent to described STA via described AP; Wherein, described central router is router or the router network between described Portal server and the described AC.
5, method according to claim 4 is characterized in that, by described user gateway this authentication success response is sent to described STA via described AP and comprises:
After described user gateway receives described authentication success response, comprise the ARP request of the IP address of described STA to the AP broadcasting that is connected with this user gateway;
After the AP that is connected with described STA receives described ARP request, reply the arp response of the MAC Address that comprises described STA to described user gateway;
After described user gateway received described arp response, storage comprised the IP address of described STA and the ARP list item of MAC Address, and utilized this ARP list item to send described authentication success response.
6, method according to claim 4 is characterized in that, activation pin described in the step B to the local forwarding capability of described STA is: activation pin is to the up local forwarding capability of described STA;
The local forwarding capability of closing described in the step C at described STA is: close the up local forwarding capability at described STA.
7, according to the described method of the arbitrary claim of claim 1 to 3, it is characterized in that this method also comprises: start dynamic routing protocol in advance on described AC, the detailed route of the main frame of the described STA that AC will collect is sent to central router;
Know among the step B that described Portal server comprises at the authentication success of described STA: described Portal server is after at described STA authentication success, and sending purpose IP address is the authentication success response of the IP address of STA; Central router sends to described AC according to the detailed route of the main frame of described STA with described authentication success response; Wherein, described central router is router or the router network between described Portal server and the described AC; Described AC sends to described AP by described CAPWAP tunnel with described authentication success response, sends to described STA by described AP.
8, method according to claim 7 is characterized in that, activation pin described in the step B to the local forwarding capability of described STA is: activation pin is to the local forwarding capability of the uplink and downlink of described STA;
The local forwarding capability of closing described in the step C at described STA is: close at the local forwarding capability of the uplink and downlink of described STA;
Described step C also comprises: the detailed route of the main frame that described AC notifies described central router to delete described STA.
9, a kind of AP is characterized in that, this AP comprises: packet sending and receiving unit and functional configuration unit;
Described packet sending and receiving unit after being used to receive the authentication request of STA, sends to AC by CAPWAP tunnel with this authentication request; Receive the configuration messages that AC sends by CAPWAP tunnel; After local forwarding capability at described STA has been opened in described functional configuration unit, adopt the local mode of transmitting that described STA is carried out message and transmit;
Described functional configuration unit, when being used for receiving in described packet sending and receiving unit the indication activation pin to the configuration messages of the local forwarding capability of described STA, activation pin is to the local forwarding capability of described STA; Receive indication in described packet sending and receiving unit when closing configuration messages at the local forwarding capability of described STA, close local forwarding capability at described STA.
10, AP according to claim 9 is characterized in that, described packet sending and receiving unit, and the DHCP request message that also is used for receiving sends to described AC by CAPWAP tunnel; Receive the IP address of the described STA that AC sends and the user gateway IP address of STA by CAPWAP tunnel, IP address and the described user gateway IP address of this described STA are transmitted to described STA, and store the IP address of described STA, the MAC Address of STA and the corresponding relation between the user gateway IP address.
According to claim 9 or 10 described AP, it is characterized in that 11, described functional configuration unit initial default activation pin is closed the up local forwarding capability at described STA to the descending local forwarding capability of described STA; When receiving the indication activation pin to the configuration messages of the local forwarding capability of described STA in described packet sending and receiving unit, activation pin is to the up local forwarding capability of described STA; Receive indication in described packet sending and receiving unit when closing configuration messages at the local forwarding capability of described STA, close up local forwarding capability at described STA.
Described message retransmission unit, also be used to receive the authentication success response that Portal server sends via central router and user gateway after, this authentication success response is sent to described STA.
12, AP according to claim 11 is characterized in that, this AP also comprises: ARP is for answering the unit;
Described packet sending and receiving unit after also being used to receive the ARP request of described user gateway, sends to ARP for answering the unit with this ARP request; The arp response that described ARP generation is answered the unit and provides sends to described user gateway;
In described ARP generation, answered the unit, is used for judging whether the IP address that described ARP request comprises is the IP address that self connects STA, if then the MAC Address of the STA of this IP address correspondence is included in and offers described packet sending and receiving unit in the arp response.
13, according to claim 9 or 10 described AP, it is characterized in that, when described functional configuration unit received the indication activation pin to the configuration messages of the local forwarding capability of described STA in described packet sending and receiving unit, activation pin was to the local forwarding capability of the uplink and downlink of described STA; Receive indication in described packet sending and receiving unit when closing configuration messages at the local forwarding capability of described STA, close at the local forwarding capability of the uplink and downlink of described STA.
Described message retransmission unit, also be used to receive the authentication success response that Portal server sends via described AC after, this authentication success response is sent to described STA.
14, a kind of AC is characterized in that, this AC comprises: packet sending and receiving unit, authentication determining unit and administration configuration unit;
Described packet sending and receiving unit after being used for receiving the authentication request of the STA that AP sends by CAPWAP tunnel, sends to Portal server with this authentication request;
Described authentication determining unit is used for sending first configuration notification to described administration configuration unit after knowing the authentication success of described Portal server at described STA; After knowing that described STA withdraws from authentication, send second configuration notification to described administration configuration unit;
Described administration configuration unit, be used to receive described first configuration notification after, send configuration messages by described CAPWAP tunnel and indicate the local forwarding capability of described AP activation pin described STA; After receiving described second configuration notification, send configuration messages by described CAPWAP tunnel and indicate described AP to close local forwarding capability at described STA.
15, AC according to claim 14 is characterized in that, this AC also comprises: in ARP generation, answered the unit, is used for carrying out the arp reply at described user gateway according to being pre-configured in the IP address that comprises user gateway on this AC and the ARP list item of MAC Address.
16, according to claim 14 or 15 described AC, it is characterized in that, when the descending local forwarding capability of described AP initial default activation pin to described STA, when closing the up local forwarding capability at described STA, described authentication determining unit is known the authentication success of described Portal server at described STA after receiving the authentication success message of described Portal server transmission in described packet sending and receiving unit.
17, according to claim 14 or 15 described AC, it is characterized in that this AC also comprises: the route transmitting element, be used to utilize the dynamic routing protocol that on this AC, starts in advance, the detailed route of the main frame of the described STA that collects is sent to central router; After described authentication determining unit knows that described STA withdraws from authentication, the detailed route of the main frame of notifying described central router to delete described STA; Wherein, described central router is router or the router network between described Portal server and the described AC;
Described authentication determining unit is known the authentication success of described Portal server at described STA after receiving the authentication success response of described Portal server transmission in described packet sending and receiving unit;
Described packet sending and receiving unit, also be used to receive the response of described authentication success after, described authentication success response is sent to described AP by described CAPWAP tunnel.
18, the inlet Portal Verification System in a kind of wireless network is characterized in that this system comprises: AP, AC and Portal server;
Described AP after being used to receive the authentication request of STA, sends to described AC by CAPWAP tunnel with this authentication request; After receiving first configuration messages, activation pin is to the local forwarding capability of described STA; After receiving second configuration messages, close local forwarding capability at described STA;
Described AC, the described authentication request that is used for receiving sends to described Portal server, after knowing the authentication success of described Portal server at described STA, sends first configuration messages by described CAPWAP tunnel to described AP; After knowing that described STA withdraws from authentication, send second configuration messages to described AP by described CAPWAP tunnel;
Described Portal server, be used to receive described authentication request after, described STA is authenticated.
19, system according to claim 18 is characterized in that, this system also comprises: Dynamic Host Configuration Protocol server;
Described AP also is used to receive described STA and is being connected to the DHCP request message that sends behind this AP, and this DHCP request message is sent to described AC by CAPWAP tunnel; The IP address of the STA that receives and the user gateway IP address of STA are transmitted to described STA, and store the IP address of described STA, the MAC Address of STA and the corresponding relation between the user gateway IP address;
Described AC, the DHCP message that also is used for receiving sends to Dynamic Host Configuration Protocol server; The IP address of the STA that described Dynamic Host Configuration Protocol server is returned and the user gateway IP address of STA send to described AP by CAPWAP tunnel;
Described Dynamic Host Configuration Protocol server, be used to receive described DHCP message after, be described STA distributing IP address, and the IP address of the STA that distributes and the user gateway IP address of STA returned to described AC.
20, system according to claim 19 is characterized in that, described AC also is used to utilize the pre-configured IP address that comprises user gateway and the ARP list item of MAC Address, carries out the arp reply at described user gateway.
21, according to the described system of the arbitrary claim of claim 18 to 20, it is characterized in that this system also comprises: user gateway and the central router between described Portal server and described AC;
Described AP initial default activation pin is closed the up local forwarding capability at described STA to the descending local forwarding capability of described STA; After receiving described first configuration messages, activation pin is to the up local forwarding capability of described STA, receive described second configuration messages after, close up local forwarding capability at described STA;
Described Portal server also is used for after at described STA authentication success, sends authentication success message to described AC, and sends the authentication success response that purpose IP address is the IP address of STA;
After described AC receives described authentication success message, know the authentication success of described Portal server at described STA;
Central router, be used to receive the response of described authentication success after, described authentication success response is sent to user gateway;
Described user gateway, the described authentication success response that is used for receiving sends to described STA via described AP.
22, according to the described system of the arbitrary claim of claim 18 to 20, it is characterized in that this system also comprises: user gateway and the central router between described Portal server and described AC;
Described AC also is used to utilize in advance the dynamic routing protocol that starts, and the detailed route of main frame of the described STA that collects is sent to described central router;
Described Portal server also is used for after at described STA authentication success, and sending purpose IP address is the authentication success response of the IP address of STA;
Described central router is used for according to the detailed route of the main frame of described STA, and the authentication success response that described Portal server is sent sends to described AC;
Described AC is known the authentication success of described Portal server at described STA after receiving described authentication success response, and by described CAPWAP tunnel described authentication success response is sent to described AP; After knowing that described STA withdraws from authentication, the detailed route of the main frame of notifying described central router to delete described STA;
Described AP, the described authentication success response that also is used for receiving sends to described STA; After receiving described first configuration messages, activation pin is to the local forwarding capability of the uplink and downlink of described STA; After receiving described second configuration messages, close at the local forwarding capability of the uplink and downlink of described STA.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100912302A CN101621802B (en) | 2009-08-13 | 2009-08-13 | Method, system and device for authenticating portal in wireless network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100912302A CN101621802B (en) | 2009-08-13 | 2009-08-13 | Method, system and device for authenticating portal in wireless network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101621802A true CN101621802A (en) | 2010-01-06 |
| CN101621802B CN101621802B (en) | 2012-02-08 |
Family
ID=41514775
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009100912302A Active CN101621802B (en) | 2009-08-13 | 2009-08-13 | Method, system and device for authenticating portal in wireless network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101621802B (en) |
Cited By (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011137782A1 (en) * | 2010-09-19 | 2011-11-10 | 华为技术有限公司 | Method、device and system for transmitting key in wireless local area network |
| CN102281594A (en) * | 2011-09-06 | 2011-12-14 | 华为技术有限公司 | Message forwarding method, wireless access point (AP) and message forwarding system |
| CN102647715A (en) * | 2012-03-27 | 2012-08-22 | 华为技术有限公司 | Method for delivering authentication target MAC (Media Access Control) address of EAP (Extensible Authentication Protocol) authentication |
| CN102739684A (en) * | 2012-06-29 | 2012-10-17 | 杭州迪普科技有限公司 | Portal authentication method based on virtual IP address, and server thereof |
| CN102869065A (en) * | 2011-07-07 | 2013-01-09 | 上海中科高等研究院 | Rapid route updating method for rail traffic communication system based on WLAN (wireless local area network) |
| CN103118064A (en) * | 2012-11-22 | 2013-05-22 | 杭州华三通信技术有限公司 | Method and device of Portal centralized authentication |
| CN103220650A (en) * | 2012-01-18 | 2013-07-24 | 华为技术有限公司 | Method and device for WiFi terminal to visit different service domains |
| WO2013174098A1 (en) * | 2012-05-22 | 2013-11-28 | 华为技术有限公司 | Method, device and system for accessing network based on capwap protocol |
| WO2014048373A1 (en) * | 2012-09-27 | 2014-04-03 | 华为技术有限公司 | Method and device for wireless information transmission |
| CN104283858A (en) * | 2013-07-09 | 2015-01-14 | 华为技术有限公司 | Method, device and system for controlling user terminal access |
| CN105635327A (en) * | 2014-10-28 | 2016-06-01 | 杭州华三通信技术有限公司 | Method and device of address distribution |
| CN106488458A (en) * | 2016-12-21 | 2017-03-08 | 锐捷网络股份有限公司 | The method and device of detection gateway A RP deception |
| CN106570099A (en) * | 2016-10-24 | 2017-04-19 | 上海斐讯数据通信技术有限公司 | Method for storing and acquiring media file in Portal page, Portal server and terminal |
| CN106686635A (en) * | 2015-11-09 | 2017-05-17 | 大唐软件技术股份有限公司 | Data transmission method and device based on control and provisioning of wireless access points protocol specification |
| CN107211275A (en) * | 2015-02-04 | 2017-09-26 | 黑莓有限公司 | The link for referring to the content for presenting on the mobile apparatus is indicated |
| CN107431925A (en) * | 2015-03-23 | 2017-12-01 | 比葛露股份有限公司 | Communications management system, access point, communication management device, connection control method, communication management method and program |
| CN107529166A (en) * | 2017-10-16 | 2017-12-29 | 福建三元达网络技术有限公司 | A kind of portal authentication method and Radio Access Controller |
| CN107612741A (en) * | 2017-09-30 | 2018-01-19 | 迈普通信技术股份有限公司 | Information processing method, apparatus and system |
| CN108011742A (en) * | 2017-02-17 | 2018-05-08 | 湖北亘华工科有限公司 | A kind of WLAN data concentrates the device and method that forwarding switching locally forwards |
| CN109889389A (en) * | 2019-03-12 | 2019-06-14 | 苏州汉明科技有限公司 | The method for supporting cloud AC to carry out the system of centralized forwarding and its E-Packet |
| CN111225376A (en) * | 2018-11-26 | 2020-06-02 | 中国电信股份有限公司 | Authentication method, system, wireless access point AP and computer readable storage medium |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1186906C (en) * | 2003-05-14 | 2005-01-26 | 东南大学 | Wireless LAN safety connecting-in control method |
| CN101212297B (en) * | 2006-12-28 | 2012-01-25 | 中国移动通信集团公司 | WEB-based WLAN access authentication method and system |
-
2009
- 2009-08-13 CN CN2009100912302A patent/CN101621802B/en active Active
Cited By (39)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011137782A1 (en) * | 2010-09-19 | 2011-11-10 | 华为技术有限公司 | Method、device and system for transmitting key in wireless local area network |
| US8842830B2 (en) | 2010-09-19 | 2014-09-23 | Huawei Technologies Co., Ltd. | Method and apparatus for sending a key on a wireless local area network |
| CN102869065A (en) * | 2011-07-07 | 2013-01-09 | 上海中科高等研究院 | Rapid route updating method for rail traffic communication system based on WLAN (wireless local area network) |
| CN102869065B (en) * | 2011-07-07 | 2015-04-08 | 中国科学院上海高等研究院 | Rapid route updating method for rail traffic communication system based on WLAN (wireless local area network) |
| US8811394B2 (en) | 2011-09-06 | 2014-08-19 | Huawei Technologies Co., Ltd | Message forwarding method, access point, and system |
| CN102281594A (en) * | 2011-09-06 | 2011-12-14 | 华为技术有限公司 | Message forwarding method, wireless access point (AP) and message forwarding system |
| CN103220650A (en) * | 2012-01-18 | 2013-07-24 | 华为技术有限公司 | Method and device for WiFi terminal to visit different service domains |
| WO2013107138A1 (en) * | 2012-01-18 | 2013-07-25 | 华为技术有限公司 | Method and apparatus for wifi terminal to access different service domains |
| CN103220650B (en) * | 2012-01-18 | 2016-04-06 | 华为技术有限公司 | A kind of method and apparatus of WiFi terminal access different business territory |
| RU2572825C1 (en) * | 2012-01-18 | 2016-01-20 | Хуавей Текнолоджиз Ко., Лтд. | METHOD AND APPARATUS FOR Wi-Fi TERMINAL FOR ACCESSING DIFFERENT SERVICE DOMAINS |
| CN102647715A (en) * | 2012-03-27 | 2012-08-22 | 华为技术有限公司 | Method for delivering authentication target MAC (Media Access Control) address of EAP (Extensible Authentication Protocol) authentication |
| WO2013174098A1 (en) * | 2012-05-22 | 2013-11-28 | 华为技术有限公司 | Method, device and system for accessing network based on capwap protocol |
| CN103428697A (en) * | 2012-05-22 | 2013-12-04 | 华为技术有限公司 | Network access method, device and system based on CAPWAP protocol |
| CN103428697B (en) * | 2012-05-22 | 2016-12-07 | 华为技术有限公司 | Method for network access based on CAPWAP agreement, device and system |
| CN102739684A (en) * | 2012-06-29 | 2012-10-17 | 杭州迪普科技有限公司 | Portal authentication method based on virtual IP address, and server thereof |
| CN102739684B (en) * | 2012-06-29 | 2015-03-18 | 杭州迪普科技有限公司 | Portal authentication method based on virtual IP address, and server thereof |
| WO2014048373A1 (en) * | 2012-09-27 | 2014-04-03 | 华为技术有限公司 | Method and device for wireless information transmission |
| CN103118064A (en) * | 2012-11-22 | 2013-05-22 | 杭州华三通信技术有限公司 | Method and device of Portal centralized authentication |
| CN104283858A (en) * | 2013-07-09 | 2015-01-14 | 华为技术有限公司 | Method, device and system for controlling user terminal access |
| US9825950B2 (en) | 2013-07-09 | 2017-11-21 | Huawei Technologies Co., Ltd. | Method, apparatus, and system for controlling access of user terminal |
| CN104283858B (en) * | 2013-07-09 | 2018-02-13 | 华为技术有限公司 | Control the method, apparatus and system of user terminal access |
| CN105635327A (en) * | 2014-10-28 | 2016-06-01 | 杭州华三通信技术有限公司 | Method and device of address distribution |
| CN105635327B (en) * | 2014-10-28 | 2019-08-06 | 新华三技术有限公司 | A kind of method and apparatus of address distribution |
| US11303710B2 (en) | 2015-02-04 | 2022-04-12 | Blackberry Limited | Local access information for presenting at a mobile device |
| CN107211275A (en) * | 2015-02-04 | 2017-09-26 | 黑莓有限公司 | The link for referring to the content for presenting on the mobile apparatus is indicated |
| CN107431925A (en) * | 2015-03-23 | 2017-12-01 | 比葛露股份有限公司 | Communications management system, access point, communication management device, connection control method, communication management method and program |
| CN106686635B (en) * | 2015-11-09 | 2020-05-15 | 大唐软件技术股份有限公司 | Data transmission method and device based on control and configuration protocol of wireless access point |
| CN106686635A (en) * | 2015-11-09 | 2017-05-17 | 大唐软件技术股份有限公司 | Data transmission method and device based on control and provisioning of wireless access points protocol specification |
| CN106570099A (en) * | 2016-10-24 | 2017-04-19 | 上海斐讯数据通信技术有限公司 | Method for storing and acquiring media file in Portal page, Portal server and terminal |
| CN106488458A (en) * | 2016-12-21 | 2017-03-08 | 锐捷网络股份有限公司 | The method and device of detection gateway A RP deception |
| CN106488458B (en) * | 2016-12-21 | 2020-04-24 | 锐捷网络股份有限公司 | Method and device for detecting gateway ARP spoofing |
| CN108011742A (en) * | 2017-02-17 | 2018-05-08 | 湖北亘华工科有限公司 | A kind of WLAN data concentrates the device and method that forwarding switching locally forwards |
| CN107612741A (en) * | 2017-09-30 | 2018-01-19 | 迈普通信技术股份有限公司 | Information processing method, apparatus and system |
| CN107612741B (en) * | 2017-09-30 | 2021-04-16 | 迈普通信技术股份有限公司 | Information processing method, device and system |
| CN107529166A (en) * | 2017-10-16 | 2017-12-29 | 福建三元达网络技术有限公司 | A kind of portal authentication method and Radio Access Controller |
| CN107529166B (en) * | 2017-10-16 | 2020-12-01 | 安科讯(福建)科技有限公司 | Portal authentication method and wireless access controller |
| CN111225376A (en) * | 2018-11-26 | 2020-06-02 | 中国电信股份有限公司 | Authentication method, system, wireless access point AP and computer readable storage medium |
| CN109889389B (en) * | 2019-03-12 | 2022-02-11 | 苏州汉明科技有限公司 | System supporting cloud AC (access control Unit) to carry out centralized forwarding and message forwarding method thereof |
| CN109889389A (en) * | 2019-03-12 | 2019-06-14 | 苏州汉明科技有限公司 | The method for supporting cloud AC to carry out the system of centralized forwarding and its E-Packet |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101621802B (en) | 2012-02-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101621802B (en) | Method, system and device for authenticating portal in wireless network | |
| US10536211B2 (en) | Mobile device relay service for reliable internet of things | |
| US9578672B2 (en) | Mobile router with session proxy | |
| CN102084712B (en) | Mobile device and method for selectively communicating data over short-range unlicensed wireless networks and wide area wireless networks | |
| CN103118064A (en) | Method and device of Portal centralized authentication | |
| KR101670344B1 (en) | Access control method and system, and access point | |
| US9998962B2 (en) | Method for processing radio access, forwarding device, and network controller | |
| CN102812749A (en) | Redirecting Of Data Traffic Between WAN And LAN | |
| CN106899500B (en) | Message processing method and device for cross-virtual extensible local area network | |
| CN101815106B (en) | Method and equipment for establishing dynamic GRE (Generic Routing Encapsulation) tunnel | |
| JPWO2009096121A1 (en) | Wireless communication system, base station apparatus, gateway apparatus, and wireless communication method | |
| WO2014176964A1 (en) | Communication managing method and communication system | |
| WO2009094423A1 (en) | Method for retaining the network address while roaming within a wlan | |
| EP2432262B1 (en) | Method and system for switching station in centralized wlan when wpi is performed by access controller | |
| CN102215515B (en) | Data processing method, communication system and related equipment | |
| CN103384365A (en) | Method and system for network access, method for processing business and equipment | |
| JP5392493B2 (en) | Processing method of IP-based emergency service in WiMAX | |
| Ahn et al. | SDN‐Based Mobile Data Offloading Scheme Using a Femtocell and WiFi Networks | |
| CN102740290B (en) | Method for pre-authentication and pre-configuration, and system thereof | |
| CN102811153B (en) | VLAN state negotiating method and edge device | |
| EP2979436B1 (en) | Wlan resource management in an access network system | |
| US20150229513A1 (en) | Systems and methods for efficient remote security panel configuration and management | |
| JP3893389B2 (en) | Private wireless high-speed data system and data service method using the same | |
| CN101296113B (en) | Network element device, network management system and method for network element device registration access to network management system | |
| CN110138796A (en) | Multicast control method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CP03 | Change of name, title or address | ||
| CP03 | Change of name, title or address |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Patentee after: Xinhua three Technology Co., Ltd. Address before: 310053 Hangzhou hi tech Industrial Development Zone, Zhejiang province science and Technology Industrial Park, No. 310 and No. six road, HUAWEI, Hangzhou production base Patentee before: Huasan Communication Technology Co., Ltd. |