CN101815068A - Device and method for isolating network terminal - Google Patents
Device and method for isolating network terminal Download PDFInfo
- Publication number
- CN101815068A CN101815068A CN201010127409A CN201010127409A CN101815068A CN 101815068 A CN101815068 A CN 101815068A CN 201010127409 A CN201010127409 A CN 201010127409A CN 201010127409 A CN201010127409 A CN 201010127409A CN 101815068 A CN101815068 A CN 101815068A
- Authority
- CN
- China
- Prior art keywords
- network terminal
- network
- external equipment
- conversion
- sequence number
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention provides a device and a method for isolating a network terminal and mainly solves the problem of isolation and conversion of the network terminal. A control conversion device comprises a device for receiving a conversion command, a control device converted to any one network terminal according to the command, and a device which is used for controlling the use of an external device according to a value stored by a designated network terminal sequence number storage device. Different network terminals access different networks, and no information interaction exists between the network terminals. During use, the user sends the conversion command out through the external device or software, a conversion control device is converted to the corresponding network terminal, and the external device is converted to the network terminal for use by the conversion control device.
Description
Technical field:
What the present invention relates to is the apparatus and method that realize that terminal network is isolated, easily a kind of specifically, secure network spacer assembly and the method changed between a plurality of network terminals.
Background technology
In computer security, carry out in-house network (office or secret net) for security consideration and carry out physical isolation at present with extranets (as the internet).Address this problem, single hard disk physical isolation and two hard disc physical isolation scheme are arranged, but these two scheme switching networks need restart computer in view of history, conversion speed is slow.Thereafter the scheme that has standby to switch has solved the slow problem of conversion speed, and conversion speed can reach about 5 seconds.But, the problem that all exists computer not work simultaneously in the above scheme, promptly when using extranets, the system of in-house network is in off position.
Above technology can be with reference to Chinese patent application 01115545.0 (a kind of device and method of realizing network terminal state exchange) and 01117401.3 (realizing the apparatus and method of network terminal safety operation of state converter), 02113032.9 (a kind of device and method of realizing that hard disk secure is isolated), 200310106120.1 (realizing the device and method of network terminal state safety conversion).Here we above-mentioned patent all as the background and the part of present patent application.
In the Network Isolation technology, be conceived to solve the problem of isolation and conversion speed usually.But in traditional technology, all exist the network terminal can't the duplex problem.Therefore the applicant has proposed a kind of device of solution network terminal isolation that can be new, the network terminal that comprises a plurality of independent runnings, receive the device of conversion request, preserve the memory device of last network terminal sequence number and current network terminal serial number, the device of the control transformation network terminal.
Wherein, also to have comprised the switching external equipment be that the current network terminal is used to the device of the control transformation network terminal.These external equipments comprise display, USB flash disk, keyboard, mouse etc.The switching command that the user sends can send by software, also can send by hardware.
Be compared to traditional technology, in the process of conversion, except conversion speed was fast, the maximum characteristics of this device were duplex.Promptly after the switching network terminal, except that the current network terminal can be used, other network terminals were still in running order.This just provides extraordinary user experience to the user.
Summary of the invention
The present invention proposes the device that terminal network is isolated, by accepting user's order, switching network terminal and external equipment constitute device duplexing, Network Isolation, and it comprises:
Complete a plurality of network terminals Network Isolation, that can independently operate;
Be used to preserve the storage device that refers to network terminal sequence number;
The device of the control transformation network terminal is coupled to the device of arbitrary network terminal.
Above-mentioned a plurality of network terminals must be the equipment that can fully independently operate, and can carry out the network data reception separately, and more definite says, can be the computer that does not comprise external equipment;
The storage device of preserving equipment serial number can be any memory device, also can operate with forming an equipment with the control transformation NTU.
The device that the device of the control transformation network terminal comprises the device of accepting conversion instruction, uses to the control device of arbitrary network terminal, according to the value control external equipment that refers to network terminal sequence number memory device stores according to instruction transformation.
External equipment is the electronic equipment that the network terminal uses, and typically comprises display, keyboard, mouse and movable memory equipment, and the device of the control transformation network terminal can freely be selected one of them or a plurality of external equipment as the network terminal.On reality and development trend, display also can be a touching-type monitor.
Instruction can be the electronic signal or the binary sequence code of arbitrary appointment.Comprise hardware switch, comprise the combination of assignment key on the keyboard.Further, instruction comprises the change event that mouse triggers, and further, instruction comprises the change event that touch screen triggers.
According to a further aspect in the invention, proposed the method for switching network isolation network terminal, it comprises:
Receive conversion request;
After the request of receiving, preserve the network terminal sequence number of current use;
The conversion external equipment uses to the network terminal of the sequence number correspondence of preserving.
Further, also has the step that the request instruction mode is set.
Practical, on the network terminal, all move a program with the control transformation device talk, network terminal use USB or Serial Port Line are connected with control transformation equipment, and the function that instruction mode is set is provided.
Description of drawings
Fig. 1 is explanation embodiment 1 corresponding accompanying drawing
Fig. 2 is explanation embodiment 2 corresponding accompanying drawings
Embodiment
[embodiment 1]
According to first kind of execution mode of the present invention, a kind ofly realize that device that terminal network isolates as shown in Figure 1.1 is the network terminal, comprises Network Termination #1 1 and Network Termination #1 2.Link to each other with extranets 42 with in-house network 41 respectively.2 is control transformation equipment 21 and sequence number memory device 22.The 3rd, external equipment comprises display 31, keyboard 32 and mouse 33.
Network Termination #1 1 is connected with in-house network 41, and Network Termination #1 2 is connected with extranets 42, does not have network interconnection between two network terminals, is Network Isolation therefore.
Control transformation equipment 21 is connected with Network Termination #1 2 with Network Termination #1 1 respectively by two groups of lines, uses the variable connector of external equipment as the network terminal.Control transformation equipment 21 is connected with sequence number memory device 22, and comes control transformation according to the network terminal sequence number of pointing in the sequence number memory device 22.
Display 31 in the external equipment, keyboard 32 and mouse 33 are connected with control transformation equipment 21.
Use the key of keyboard appointment to be combined as conversion instruction in the present embodiment.Obviously, can on the network terminal, run application, be provided with by USB line or Serial Port Line and adopt which kind of conversion to change instruction.
Obviously in embodiment 1, can send the software sequence number as conversion instruction, also can use touching-type monitor, send the software sequence number as conversion instruction by the application software control of the network terminal by the application program of the mouse control network terminal.Above implementation method is all as optional execution mode among the embodiment 1.
Switch process is as follows:
Start the network terminal, because the network terminal can work independently, so can start simultaneously.The binary value of Network Termination #1 1 is pointed in the initialization storage in the sequence number memory device 22, and by control transformation equipment, external equipment will be connected with Network Termination #1 1.
Knock key combination, trigger conversion instruction as conversion instruction.After control transformation equipment 21 is received instruction, according to circumstances upgrade the content in the sequence number memory device 22, current is Network Termination #1 1, then replaces with the network terminal 22.Control transformation equipment 21 disconnects the current continuous network terminal according to the value in the memory device 22, and points to the network terminal of appointment.At this moment, external equipment also has been transformed into the corresponding network terminal.
It is similar to be transformed into Network Termination #1 1 process from Network Termination #1 2.
[embodiment 2]
According to first kind of execution mode of the present invention, a kind ofly realize that device that terminal network isolates as shown in Figure 2.1 is the network terminal, comprises Network Termination #1 1 and Network Termination #1 2.Link to each other with extranets 42 with in-house network 41 respectively.2 is control transformation equipment 21 and sequence number memory device 22.The 3rd, external equipment comprises keyboard 31 and mouse 32.Other external equipments can be connected respectively on separately the network terminal.
Network Termination #1 1 is connected with in-house network 41, and Network Termination #1 2 is connected with extranets 42, does not have network interconnection between two network terminals, is Network Isolation therefore.
Control transformation equipment 21 is connected with Network Termination #1 2 with Network Termination #1 1 respectively by two groups of lines, uses the variable connector of external equipment as the network terminal.Control transformation equipment 21 is connected with sequence number memory device 22, and comes control transformation according to the network terminal sequence number of pointing in the sequence number memory device 22.
Keyboard 31 in the external equipment is connected with control transformation equipment 21 with mouse 33.
Move conversion program simultaneously on Network Termination #1 1 and Network Termination #1 2, Network Termination #1 1 is connected by USB line or Serial Port Line respectively with Network Termination #1 2, and conversion program can send conversion instruction.
Switch process is as follows:
Start the network terminal, because the network terminal can work independently, so can start simultaneously.The binary value of Network Termination #1 1 is pointed in the initialization storage in the sequence number memory device 22, and by control transformation equipment, external equipment will be connected with Network Termination #1 1.
Use switching software, trigger conversion instruction.After control transformation equipment 21 is received instruction, according to circumstances upgrade the content in the sequence number memory device 22, current is Network Termination #1 1, then replaces with the network terminal 22.Control transformation equipment 21 disconnects the current continuous network terminal according to the value in the memory device 22, and points to the network terminal of appointment.At this moment, external equipment also has been transformed into the corresponding network terminal.
It is similar to be transformed into Network Termination #1 1 process from Network Termination #1 2.
Claims (10)
1. realize the device that terminal network is isolated, it comprises:
Complete a plurality of network terminals Network Isolation, that can independently operate;
Be used to preserve the storage device that refers to network terminal sequence number;
The device of the control transformation network terminal is coupled to the device of arbitrary network terminal; Wherein, the device of the control transformation network terminal comprise the device of accepting conversion instruction, according to instruction transformation to the control device of arbitrary network terminal, use the external equipment device according to the value control that refers to network terminal sequence number memory device stores.The device of the control transformation network terminal is according to instruction, by control transformation, switches to the corresponding network terminal, and the control of external equipment is handed to the network terminal after the conversion.
2. according to the device of claim 1, wherein, the network terminal can be by the shared external equipment of device of the control transformation network terminal.External equipment is meant the electronic equipment that the network terminal uses, and comprises display or mouse or keyboard or movable memory equipment.
3. according to the device of claim 1, wherein, but network terminal common power supply device.
4. according to the device of claim 1, wherein, when the network terminal was changed by the device of the control transformation network terminal, the sequence number of current network terminal was written into storage device.
5. according to the device of claim 1, the device of the control transformation network terminal is controlled external equipment according to the network terminal sequence number that refers in the storage device, makes the current network terminal can use external equipment.
6. according to the device of claim 1, wherein, instruction can be the electronic signal or the binary sequence code of arbitrary appointment.
7. according to claim 1, the network terminal can be computer or PDA or mobile phone.
8. one kind is used for the method that the network terminal is changed, and it comprises:
Receive conversion request;
After the request of receiving, preserve the network terminal sequence number of current use;
The conversion external equipment uses to the network terminal of the sequence number correspondence of preserving.
9. method according to Claim 8, switch process comprise current external equipment are disconnected, and switch on the switched network terminal.
10. method according to Claim 8 comprises the jockey that connects the network terminal and control transformation device, comprises that the USB line connects or Serial Port Line connects or optical fiber connects or blue teeth wireless connects or infrared radio connects.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010127409A CN101815068A (en) | 2010-03-19 | 2010-03-19 | Device and method for isolating network terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010127409A CN101815068A (en) | 2010-03-19 | 2010-03-19 | Device and method for isolating network terminal |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101815068A true CN101815068A (en) | 2010-08-25 |
Family
ID=42622185
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201010127409A Pending CN101815068A (en) | 2010-03-19 | 2010-03-19 | Device and method for isolating network terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101815068A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103455161A (en) * | 2012-06-01 | 2013-12-18 | 南京神易网络科技有限公司 | Secure KVM switcher |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN2337611Y (en) * | 1998-07-07 | 1999-09-08 | 深圳市宏网实业有限公司 | Safety network computer capable of simultaneously connecting internal network and external network |
| CN1504915A (en) * | 2002-11-08 | 2004-06-16 | 南京易思克网络安全技术有限责任公司 | Method and apparatus for multi machines switching |
| CN1602473A (en) * | 2001-11-09 | 2005-03-30 | 阿托恩科技有限公司 | Signal switch for console and peripheral devices |
-
2010
- 2010-03-19 CN CN201010127409A patent/CN101815068A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN2337611Y (en) * | 1998-07-07 | 1999-09-08 | 深圳市宏网实业有限公司 | Safety network computer capable of simultaneously connecting internal network and external network |
| CN1602473A (en) * | 2001-11-09 | 2005-03-30 | 阿托恩科技有限公司 | Signal switch for console and peripheral devices |
| CN1504915A (en) * | 2002-11-08 | 2004-06-16 | 南京易思克网络安全技术有限责任公司 | Method and apparatus for multi machines switching |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103455161A (en) * | 2012-06-01 | 2013-12-18 | 南京神易网络科技有限公司 | Secure KVM switcher |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8671235B2 (en) | KVM switch with embedded bluetooth module | |
| KR101198271B1 (en) | Display management method for computer controled mobile telephone | |
| EP3046393B1 (en) | Switching device and method for automatically connecting to nfc chip and switching security element | |
| CN104955022A (en) | Method and system for sharing virtual SIM (subscriber identity module) | |
| CN101237256B (en) | Electronic device and NFC-control method based on other electronic device | |
| CN102821150A (en) | Cloud server and application managing method based on same | |
| CN103595775B (en) | The sharing method and system of media file | |
| CN104426583A (en) | Data transmission method based on near field communication and device thereof and near field communication equipment | |
| CN104349304A (en) | Information processing method and electronic equipment | |
| CN102883355A (en) | Building base band unit, base band processing board and fault processing method for base band processing board | |
| CN103927015B (en) | A kind of wireless input-output system and its implementation towards multiple terminals | |
| CN101374360A (en) | Multiport multiplexing method, apparatus and system | |
| CN103546352A (en) | Remote control method and device based on wireless login | |
| CN107967098A (en) | A kind of button exchange method and device | |
| CN102437942A (en) | Intelligent household control system | |
| CN103023736B (en) | Show method and the mobile terminal of DLNA equipment | |
| CN103561087A (en) | Equipment interconnection method and device | |
| CN101815068A (en) | Device and method for isolating network terminal | |
| CN101972545A (en) | On-line game operating terminal combined with television remote controller, and signal receiving device | |
| CN105099836A (en) | BLE intelligent node control method and system | |
| CN101784090B (en) | Method and terminal for binding a plurality of wireless access links with fixed network links | |
| CN104219357A (en) | A voice instruction network telephone and an operation method of the same | |
| CN104123146A (en) | Method for achieving hot switching between two systems | |
| CN103246504A (en) | Hydrid architecture system and application program switching method thereof | |
| CN109375786A (en) | A kind of method and system manipulating long-range PC desktop based on physics key mouse equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20100825 |