CN102045409B - Network penetrating method and network communication system - Google Patents

Network penetrating method and network communication system Download PDF

Info

Publication number
CN102045409B
CN102045409B CN 200910206321 CN200910206321A CN102045409B CN 102045409 B CN102045409 B CN 102045409B CN 200910206321 CN200910206321 CN 200910206321 CN 200910206321 A CN200910206321 A CN 200910206321A CN 102045409 B CN102045409 B CN 102045409B
Authority
CN
China
Prior art keywords
terminal
network address
connection
address translator
point
Prior art date
Application number
CN 200910206321
Other languages
Chinese (zh)
Other versions
CN102045409A (en
Inventor
沈易宗
何永盛
Original Assignee
财团法人工业技术研究院
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 财团法人工业技术研究院 filed Critical 财团法人工业技术研究院
Priority to CN 200910206321 priority Critical patent/CN102045409B/en
Publication of CN102045409A publication Critical patent/CN102045409A/en
Application granted granted Critical
Publication of CN102045409B publication Critical patent/CN102045409B/en

Links

Abstract

本发明为一种网络穿透方法及网络通讯系统,其包括将位于多个网络地址转换器内的多个终端分群为多个群组,并且配置联机服务器来管理群组信息与已穿透网络地址转换器的联机信息,其中属于相同网络地址转换器内的终端分群为同一群组。 The present invention is a method of penetrating a network and network communication system including a plurality of terminals located within a plurality of network address translator grouped into a plurality of groups, and the online server configured to manage network group information already penetrated online information of the address translator, wherein the grouping of terminals belonging to the same group within the same network address translator. 此外,当其中一个终端需要与另一终端建立联机时,本网络穿透方法还包括判断欲联机的终端所属的群组之间是否存有点对点直接联机,其中当欲联机的终端所属的群组之间存有点对点直接联机时,则利用此点对点直接联机建立欲联机的终端之间的联机。 Further, when a terminal which needs to establish a connection with another terminal, the method further includes penetrating the network if there a direct connection between the peer group is determined to be online terminal belongs, wherein the group to be online when the terminal belongs when a direct connection between the point there, the advantage of this point to establish a direct connection between the connection terminal to be online. 基此,本网络穿透方法可有效地降低穿透网络地址转换器所需的时间、成本与复杂度。 By virtue of this, the present method can effectively penetrate the network to reduce the time required to penetrate the network address translator, cost and complexity.

Description

网络穿透方法及网络通讯系统 Internet penetration method and network communication systems

技术领域 FIELD

[0001] 本发明是有关于一种网络穿透方法及使用此方法的网络通讯系统。 [0001] The present invention relates to a method and a network penetration method using this communication network system.

背景技术 Background technique

[0002] 随着科技与网络基础建设的不断演进与网络用户的增加下,大量的NAT被用来解决在因特网协议(Internet Protocol, IP)中网络地址不足的问题。 [0002] With the increase of Internet users continue to evolve with the technology and infrastructure network, a large number of NAT is used to solve problems in Internet Protocol (Internet Protocol, IP) network address shortage. 然而,NAT的出现也对许多使用点对点(peer-to-peer)传输行为的应用,例如P2P档案传输应用、网络电话应用等,造成运作上的一大阻碍。 However, NAT is also the emergence of many applications using point to point (peer-to-peer) transmission behavior, such as P2P file transfer applications, Internet telephony application, resulting in a large hamper the operation.

[0003] 详细来说,NAT可分为完全圆锥型(Full Cone)NAT、受限圆锥型(RestrictedCone)NAT、端受:限圆维型(Port Restricted Cone)NAT 与对称式(Symmetric)NAT。 [0003] Specifically, full cone NAT can be divided into (Full Cone) NAT, restricted cone (RestrictedCone) NAT, side by: limiting round-dimension type (Port Restricted Cone) NAT and symmetric NAT (Symmetric). 完全圆锥型NAT的特性是当其内部客户端与其外部客户端建立联机后,任何外部客户端皆可依据内部客户端的NAT对应地址/端口号与此内部客户端进行通讯。 Characteristics of the full cone NAT is when its internal and its external client to establish a connection the client, the client console can according to any external client in the corresponding NAT address / port number to this internal client communication. 受限圆锥型NAT的特性是当其内部客户端与其外部客户端建立联机后,仅限于与此内部客户端建立联机的外部地址可依据内部客户端的对应地址/端口号与此内部客户端进行通讯。 Restricted cone NAT characteristic when its internal clients to establish a connection with its external client is limited to the interior of this client to establish a connection of the external address can communicate with this internal client according to the corresponding address / port number of the client's internal . 端受限圆锥型NAT的特性是当其内部客户端与其外部客户端建立联机后,仅限于与此内部客户端建立联机的外部地址/端口号可依据内部客户端的NAT对应地址/端口号与此内部客户端进行通讯。 End restricted cone NAT characteristic when its internal clients to establish a connection with its external clients, only the external address / port number to establish a connection with this internal client can be based on client's internal NAT corresponding to the address / port number to this internal client communication. 而对称式NAT的特性则是其内部客户端发送至不同目的地端的应用都会被指派一个对应的NAT对应地址/端口号,并且仅对应的目的端的地址/端口号能与所指派的NAT对应地址/端口号通讯。 The characteristics of symmetric NAT is its internal client sent to a different destination terminal application will be assigned NAT corresponding to the address / port number of a corresponding, and the destination of only the corresponding address / port number can be the NAT corresponding to the address assigned / communications port number.

[0004] 基于上述,在大量客户端使用私有IP地址(或虚拟IP地址)的环境中,当位于NAT外部的客户端想要与位于NAT内部的客户端建立数据传输联机时,位于NAT外部的客户端所送出的请求信息会被NAT阻挡,因而位于NAT内部的客户端无法得知有联机建立的请求而造成联机失败。 [0004] Based on the above, using the private IP address environmental large number of clients (or virtual IP address), when located outside the NAT client wants located inside a NAT client establishes a data transmission line, is located outside the NAT the client sends a request message will be blocked NAT, which is located inside the NAT client does not know there is a request to establish a connection failure caused by online.

[0005] 为克服上述问题,NAT的使用者数据包协议简单穿透(SimpleTraversal of UserDatagram Protocol through NAT, STUN)、使用转传的NAT 穿透(Traversal Using RelayNAT, TURN)、互动连接建立(Interactive Connectivity Establishment, ICE)等网络协议陆续被提出。 [0005] To overcome the above problems, the NAT penetration simple user datagram protocol (SimpleTraversal of UserDatagram Protocol through NAT, STUN), transmissible by using NAT traversal (Traversal Using RelayNAT, TURN), interactive connection establishment (Interactive Connectivity Establishment, ICE) and other network protocols continue to be raised. 因特网技术意见书(Request For Comments, RFC) 3489所记载的STUN网络协议提出一套方法,以使得位于NAT内部的客户端可以得知NAT所分配的地址/端口号与NAT的型态,并且通过将这些信息提供给位于NAT外部的客户端,则双方可因此建立联机。 Internet technology Submission (Request For Comments, RFC) STUN network protocols described in 3489 propose a method, so that the client may be located inside the NAT address of NAT that the assigned / port number and the NAT type, and by This information will be provided to the client is located outside the NAT, the parties may therefore establish a connection. 然而,STUN在对称式NAT(symmetricNAT)型态下是无法成功运作的。 However, STUN in symmetric NAT (symmetricNAT) type is not successful operation. TURN网络协议是在公众网域(publicdomain)中布建一台TURN服务器,其中此TURN服务器会分配的一个地址/端口号来代表位于NAT内部的客户端,并且使用一对映表来记录位于NAT内部的客户端用来对外沟通的地址/端口号和所分配的地址/端口号的对映关系。 TURN network protocol is in the public domain (publicdomain) in provisioning a TURN server, wherein an address is assigned to this TURN server / port number to represent clients located inside the NAT, and using a mapping table to record located NAT internal client to external communication address / port number and the assigned address / port number of enantiomeric relationship. 之后,进入与流出NAT的数据皆会透过TURN服务器转送以达到穿透NAT的目的。 After entering all the data will be transferred out of NAT's aim to achieve through NAT through TURN server. 尽管TURN可以用于对称式NAT的穿透,然而由于NAT内部的所有客户端的数据流都需要经过TURN服务器,因此TURN服务器会成为一个效能上的瓶颈。 Although the TURN symmetric NAT can be used to penetrate, but because the data stream all clients have to go through the inside of the NAT TURN server, and therefore become a bottleneck TURN server on a performance. 而ICE网络协议则是提出了一套混合式的NAT穿透方法以利用STUN与TURN的功能来解决问题,其中当客户端之间需要穿透NAT建立联机时,客户端会先去搜集本身的候选网络地址(candidateaddress)信息,然后通过彼此交换候选网络地址信息后,客户端针对对方的候选网络地址进行联机测试,最后决定一条最佳的联机来进行数据传输。 The ICE network protocol is proposed a hybrid method to use NAT traversal STUN and TURN functions to solve the problem, which needs to penetrate between the time when a client NAT establish a connection, the client will go to collect itself candidate network address (CandidateAddress) information, and then switched to each other by the candidate network address information, client-line test for a candidate network address of the other party, a final decision of the best connection for data transmission.

[0006] 基于上述网络协议,一些NAT穿透方法被提出以使位于NAT外部的客户端能够穿透NAT而与位于NAT内部的客户端建立联机。 [0006] Based on the above network protocol, a number of approaches have been proposed NAT traversal so that the client can penetrate located outside the NAT NAT connection is established with the NAT located inside the client. 例如,RFC 5128所提出的打孔(holepunching)方法就是先在公众网域下布建一台会合服务器(Rendezvous Server),而在NAT底下的所有客户端都事先与此服务器建立控制信息联机。 For example, punching (holepunching) RFC 5128 proposed method is the first in the public domain provisioning a rendezvous server (Rendezvous Server), and all clients are under NAT control information previously established connection with this server. 当客户端A要与客户端B建立直接的NAT穿透联机时,客户端A会先送出一个请求建立联机信息给会合服务器。 When the client A wants to establish a direct NAT and client B penetrates online, A client will first send a request to establish a connection to the rendezvous server information. 会合服务器收到此请求建立联机信息后,会合服务器会将客户端B的NAT对应地址/端口号传送给客户端A,以及将客户端A的NAT对应地址/端口号传送给客户端B。 After the rendezvous server receives this request message to establish a connection, the client rendezvous server will transmit the corresponding NAT address / port number of the terminal B to the client A, and the corresponding NAT address of the client A / port number to the client B. 当客户端A收到客户端B的地址信息时,客户端A会送出一个测试封包到客户端B的NAT对应地址/端口号,此时此测试封包会被客户端B的NAT阻挡,但同时客户端A的NAT对映表会被更改而允许客户端B的NAT对应地址/端口号可传送数据给客户端A。 When the client A receives the address information of the client B, client A will send a test packet to the client the corresponding NAT address / port number B, the packet will be tested at this point the client's NAT barrier B, but a client's NAT mapping table are changed to allow client B corresponds to the NAT address / port number of the data can be transmitted to the client A. 接着客户端B亦送出测试封包给客户端A的NAT对应地址/端口号,此时,客户端B的NAT对映表会被更改而允许客户端A的NAT对应地址/端口号可传送数据给客户端B。 Next Client B also sends test packets to the client A corresponding to the NAT address / port number, this time, client B's NAT mapping table may be changed to allow the client A corresponding to the NAT address / port number to transmit data client B. 基此,双向的NAT穿透联机可顺利地被建立。 By virtue of this, bidirectional NAT Traversal connection can be established smoothly. 尽管打孔方法可解决部分NAT穿透问题,然而在双方NAT的类型分别为端受限圆锥型NAT与对称式NAT,或者双方NAT的类型皆为对称式NAT的例子中,如上所述由于对称式NAT会根据不同的目的地端指派不同的NAT对应地址/端口号,因此打孔方法将无法被使用。 Although the puncturing method can solve the problem of NAT traversal part, however both ends of NAT types are restricted cone NAT and symmetric NAT, or both types are all symmetric NAT NAT example, as described above due to the symmetric formula NAT NAT assigns corresponding to different address / port number depending on the destination end, thus puncturing method will not be used.

[0007] 为了能够在双方NAT的类型分别为端受限圆锥型NAT与对称式NAT,或者双方NAT的类型皆为对称式NAT的例子中达成网络穿透的目的,美国专利第7328280号揭露一种端号猜测(Port Prediction)方法。 [0007] In order to Symmetric NAT are all examples of network penetration achieve the object of the type of NAT both ends are restricted cone NAT and symmetric NAT, NAT type, or both, U.S. Patent No. 7,328,280 discloses a No end kind of speculation (Port Prediction) method. 由于对称式NAT于每次在分配端号给内部客户端时,会以一个固定的间隔来分配端号,因此在端号猜测方法中欲建立联机的客户端会先测试本身对应的NAT的端口号分配规则,并且进行信息交换以获知对方的端口号分配规则。 Symmetric NAT due to the end of each number assigned to the internal client, will be fixed at a dispensing end of interval number, so the end number prediction method to be established online clients to test itself corresponding port NAT No allocation rules, and to exchange information in order to know the other side of the port number assigned rule. 之后,欲建立联机的客户端会同时送出多个测试封包到依据对方的端口号分配规则所猜测的端口号,同样的对方也会类似动作。 After that, the desire to establish an online client will also send more test packets to each other based on port number port number allocation rules guessed, the other will be similar to the same action. 理论上,经过上述过程便可打通一条穿透NAT的联机供双方使用。 In theory, after the above process can open up a line through NAT for the two sides to use. 然而,在此方法中猜测NAT所分配的端号需花费大量的猜测信息成本以及沟通时间成本,此外亦无法保证猜测的成功率。 However, speculation NAT allocated in this method takes a lot of end No. guess the cost of information and communication and time costs, in addition there is no guarantee of success rate speculation.

发明内容 SUMMARY

[0008] 本发明范例实施例提出一种网络穿透方法,用于在多个终端之中的一第一终端与一第二终端之间建立联机。 [0008] The exemplary embodiment of the present invention provides a method of penetrating the network, for establishing a connection between a plurality of terminals among the first terminal and a second terminal. 本网络穿透方法包括配置一联机服务器(on-line server),其中上述终端分别地在联机服务器中注册一注册信息并与此联机服务器保持一联机状态。 This method includes configuring a network penetration online server (on-line server), wherein each of the terminal registered in a registration information holding an online server and online connection to this server. 本该网络穿透方法也包括依据终端的注册信息分群上述终端,其中上述第一终端位于一第一网络地址转换器(Network Address Translator, NAT)内且上述第二终端位于一第二网络地址转换器内,上述终端之中位于第一网络地址转换器内的终端被分群为第一群组,并且上述终端之中位于第二网络地址转换器内的终端被分群为第二群组。 The present method also includes the penetration of the network based on terminal grouping registration information of the terminal, wherein the first terminal and the second terminal is located in a second network address translation within a first network address translator (Network Address Translator, NAT) inside, a terminal located in the terminal in the first network address translator are grouped as a first group, and the terminal in a terminal located in a second network address translator is grouped into the second group. 本该网络穿透方法还包括判断是否存有用于第一群组的终端与第二群组的终端之间的一可利用联机,其中当判断存有此可利用联机时,则使用所判断的可利用联机建立第一终端与第二终端之间的联机。 The network of the present method further comprises determining whether penetrating there may utilize a connection between the terminal and a second terminal group for the first group, wherein when it is determined there may utilize this line, using the determined may be utilized to establish a connection between the first connection terminal and a second terminal.

[0009] 本发明范例实施例提出一种网络通讯系统,其包括多个网络地址转换器、多个终端与联机服务器。 Examples [0009] Example embodiments of the present invention provides a communication network system comprising a plurality of network address translation, a plurality of connection terminals and the server. 上述终端之中的一第一终端是位于上述网络地址转换器之中的一第一网络地址转换器内,并且上述终端之中的一第二终端是位于上述网络地址转换器之中的一第二网络地址转换器内。 A first terminal among the terminal within a first network address translator positioned within said network address translator, and a second terminal among the terminal is located in a first said network address translator in the the second network address translator. 联机服务器是用以分群上述终端,其中上述终端之中位于第一网络地址转换器内的终端被分群为第一群组,并且上述终端之中位于第二网络地址转换器内的终端被分群为第二群组。 Online server is used for grouping the terminal, wherein the terminal in a terminal located in a first network address translator are grouped as a first group, and the terminal in a terminal located in a second network address translator are grouped as a second group. 在此通讯系统中,第一终端会判断是否存有用于第一群组的终端与第二群组的终端之间的一可利用联机,其中当判断存有此可利用联机时,则第一终端会使用所判断的可利用联机建立第一终端与第二终端之间的联机。 In this communication system, a first terminal determines whether there will be a connection may be utilized between the terminal and the second terminal group for the first group, wherein when it is determined there may utilize this connection, the first the terminal uses the determined may be utilized to establish a connection between the first connection terminal and a second terminal.

[0010] 基于上述,本发明范例实施例第一终端利用两个群组之间已存在的联机来建立第一终端与第二终端之间的联机,由此可降低穿透NAT所需的时间、成本与复杂度。 [0010] Based on the above, a first exemplary embodiment of the present invention is the use of the terminal between the two groups existing connection to establish a connection between a first terminal and a second terminal, thereby reducing the time required to penetrate NAT , cost and complexity.

附图说明 BRIEF DESCRIPTION

[0011] 图1是根据范例实施例所绘示的网络通讯系统的示意图。 [0011] FIG. 1 is a schematic diagram of a network communication system according to the depicted exemplary embodiment.

[0012] 图2是根据范例实施例所绘示的群组与联机清单表的范例。 [0012] FIG. 2 is an example of a group list table of the online exemplary embodiment depicted embodiment.

[0013] 图3是根据范例实施例所绘示的联机范例示意图。 [0013] FIG. 3 is a schematic diagram illustrating an online exemplary embodiment depicted in the exemplary embodiment.

[0014] 图4是根据范例实施例所绘示的网络穿透方法的流程图。 [0014] FIG. 4 is a flowchart of a method of network penetration exemplary embodiment depicted embodiment.

[0015] 图5是根据范例实施例所绘示图4中步骤S405的详细流程图。 [0015] FIG. 5 is a detailed flowchart of step S405 in FIG. 4 according to an exemplary embodiment depicted embodiment.

[0016] 图6是根据范例实施例所绘示图4中步骤S413的详细流程图。 [0016] FIG. 6 is a detailed flowchart of step 4 S413 according to the exemplary embodiment depicted in FIG.

[0017]【主要元件符号说明】 [0017] The main reference numerals DESCRIPTION

[0018] 102:第一终端 [0018] 102: a first terminal

[0019] 104:第二终端 [0019] 104: second terminal

[0020] 106:第三终端 [0020] 106: third terminal

[0021] 108:第四终端 [0021] 108: The fourth terminal

[0022] 110:第五终端 [0022] 110: a fifth terminal

[0023] 122:第一网络地址转换器 [0023] 122: a first network address translator

[0024] 124:第二网络地址转换器 [0024] 124: The second network address translator

[0025] 130:联机服务器 [0025] 130: Online Server

[0026] 140:网络 [0026] 140: Network

[0027] 200:群组与联机清单表 [0027] 200: Groups and online inventory table

[0028] 202:群组名称字段 [0028] 202: group name field

[0029] 204:群组类型字段 [0029] 204: Field Type Group

[0030] 206:客户端名称字段 [0030] 206: Client Name field

[0031] 208:客户端地址信息字段 [0031] 208: The client address information field

[0032] 210:联机群组名称字段 [0032] 210: line group name field

[0033] 212:联机客户端名称字段 [0033] 212: an online client name field

[0034] S302、S304、S306、S308、S310、S312、S314、S316、S318、S320、S322、S324、S326、S328:在第一终端与第五终端之间建立联机的步骤 [0034] S302, S304, S306, S308, S310, S312, S314, S316, S318, S320, S322, S324, S326, S328: the step of establishing a connection between the first terminal and the fifth terminal

[0035] S401、S403、S405、S407、S409、S411、S413、S501、S503、S505、S507、S509、S511、S601、S603、S605:网络穿透的步骤具体实施方式 [0035] S401, S403, S405, S407, S409, S411, S413, S501, S503, S505, S507, S509, S511, S601, S603, S605: Step of network penetration DETAILED DESCRIPTION

[0036] 为让本发明的上述特征和优点能更明显易懂,下文特举实施例,并配合所附图式作详细说明如下。 [0036] In order to make the above features and advantages of the present invention can be more fully understood, the following non-limiting embodiment, and the accompanying figures are described in detail below.

[0037] 图1是根据本发明范例实施例所绘示的网络通讯系统的示意图。 [0037] FIG. 1 is a schematic diagram illustrating a network communication system according to an exemplary embodiment of the present invention.

[0038] 请参照图1,网络通讯系统包括第一终端102、第二终端104、第三终端106、第四终端108、第五终端110、第一NAT 122、第二NAT 124 与联机服务器(On-Line Server) 130。 [0038] Referring to FIG 1, the system comprises a communication network 102, a first terminal a second terminal 104, third terminal 106, fourth terminal 108, a fifth terminal 110, a first NAT 122, and a second online server NAT 124 ( On-Line Server) 130.

[0039] 第一终端102、第二终端104、第三终端106、第四终端108与第五终端110具有支持传输控制/ 网络通讯协议(Transmission ControIProtoco 1/Internet Protocol, TCP/IP)的网络联机功能,并且经由网络140传送与接收网络电话、音乐档案、影音档案、实时通讯等数字内容。 [0039] The first terminal 102 and second terminal 104, third terminal 106 and fourth terminal 108 and fifth terminal 110 having a Transmission Control / Internet protocol (Transmission ControIProtoco 1 / Internet Protocol, TCP / IP) network connection functionality and content over the network 140 to send and receive Internet calls, music files, video files, instant messaging and other digital. 在此,网络140是依据TCP/IP所建构的因特网。 Here, the network 140 is based on the TCP / IP Internet constructed.

[0040] 在本范例实施例中,第一终端102、第二终端104、第三终端106、第四终端108与第五终端110皆是透过一有线方式连结至网络140。 [0040] In the present exemplary embodiment, a first terminal 102, second terminal 104, third terminal 106 and fourth terminal 108 are all linked to a wired network 140 via a terminal 110 of the fifth embodiment. 然而,本发明不限于此,第一终端102、第二终端104、第三终端106、第四终端108与第五终端110亦可分别地透过有线方式或无线方式连结至网络140。 However, the present invention is not limited thereto, a first terminal 102, second terminal 104, third terminal 106, fourth terminal 108 is also connected to the fifth terminal 110, respectively, via a wired or wireless manner to the network 140. 此外,在本范例实施例中,第一终端102、第二终端104、第三终端106、第四终端108与第五终端110为个人计算机。 Further, in the present exemplary embodiment, a first terminal 102, second terminal 104, third terminal 106 and fourth terminal 108 and fifth terminal 110 is a personal computer. 然而,本发明不限于此,第一终端102、第二终端104、第三终端106、第四终端108与第五终端110亦可以是服务器、个人数字助理(Personal Digital Assistant, PDA)或其它可连接至网络140的电子装置等。 However, the present invention is not limited thereto, a first terminal 102, second terminal 104, third terminal 106 and fourth terminal 108 and fifth terminal 110 also may be a server, a personal digital assistant (Personal Digital Assistant, PDA), or other the electronic device is connected to the network 140 and the like.

[0041]第一 NAT 122 与第二NAT 124 是用以转换私有IP 地址(Private IPAddress)与公有IP地址(Public IP Address)。 [0041] The first NAT 122 and the second NAT 124 is for converting a private IP address (Private IPAddress) and the Public IP address (Public IP Address). 也就是说,第一NAT 122与第二NAT 124会将通过的IP封包标头中的地址/端口号转换为另一个地址/端口号,以让使用私有IP地址的第一终端102、第二终端104、第三终端106、第四终端108与第五终端110能够连接至网络140。 That is, the address / port number to the IP packet header of the first NAT 122 and the second NAT 124 will pass into another address / port number, to allow the use of private IP address of the first terminal 102, a second terminal 104, third terminal 106 and fourth terminal 108 and fifth terminal 110 can be connected to network 140. NAT为此领域技术人员所熟知的技术,在此不详细描述其运作原理。 NAT for this purpose are well known to those skilled in the art, and it works not described in detail. 在本范例实施例中,第一NAT 122与第二NAT 124皆为对称式NAT。 In the present exemplary embodiment, the first NAT 122 and the second NAT 124 are both symmetric NAT. 然而,必须了解的是,本发明不限于此,第一NAT 122与第二NAT 124亦可以是其它类型的NAT。 However, it must be understood that the invention is not limited thereto, the first NAT 122 and the second NAT 124 also may be other types of NAT.

[0042] 如图1所示,第一终端102、第二终端104与第三终端106是位于第一NAT 122内,而第四终端108与第五终端110是位于第二NAT 124内。 [0042] As shown in FIG 1, a first terminal 102, second terminal 104 and third terminal 106 is located within the first NAT 122, and the fourth terminal 108 and fifth terminal 110 is located within the second NAT 124. 也就是说,第一终端102、第二终端104与第三终端106是位于第一NAT122的网域下,并且透过第一NAT 122的地址转换来连接至网络140。 That is, a first terminal 102, second terminal 104 and third terminal 106 is located at a first NAT122 domain, and to connect to the network 140 through a first address translation NAT 122. 同时,第四终端108与第五终端110是位于第二NAT 124的网域下,并且透过第二NAT 124的地址转换来连接至网络140。 Meanwhile, the fourth terminal 108 and fifth terminal 110 is located in the second NAT domain 124, and to connect to the network 140 via a second address translation NAT 124. 在此,第一终端102所使用的私有IP地址/端口号为10.0.0.1:8000,第二终端104所使用的私有IP地址/端口号为10.0.0.2:8000,第三终端106所使用的私有IP地址/端口号为10.0.0.3:8000,第四终端108所使用的私有IP地址/端口号为10.0.0.1:8000,第五终端110所使用的私有IP地址/端口号为10.0.0.2:8000,第一NAT 122 所使用的公有IP 地址为140.96.178.1,并且第二NAT 124 所使用的公有IP地址为140.96.178.5。 Here, the private IP address / port number of the first terminal 102 used as 10.0.0.1:8000, private IP address / port number used by the second terminal 104 is 10.0.0.2:8000, the third terminal 106 is used private IP address / port number 10.0.0.3:8000, private IP address / port number used by a fourth terminal 108 is 10.0.0.1:8000, private IP address / port number used by the fifth terminal 110 is 10.0.0.2 : 8000, public IP address of the first NAT 122 is used 140.96.178.1, and the second public IP address of the NAT 124 used is 140.96.178.5.

[0043] 必须了解的是,在本发明范例实施例中,虽然仅以2个NAT及位于其内的5个终端来作说明,然而本发明不限于此,网络通讯系统可包括任何数量的NAT与终端。 [0043] to be understood that, in the exemplary embodiment of the present invention, although only two NAT and located within the five terminals for illustration, but the present invention is not limited thereto, a network communication system may include any number of NAT and the terminal.

[0044] 联机服务器130具有支持传输控制/网络通讯协议的网络联机功能并且耦接至网络140。 [0044] The online server 130 has a network connection function Transmission Control / Internet protocol and coupled to the network 140. 在本范例实施例中,联机服务器130是位于公众网域中的单一服务器。 In the present exemplary embodiment, the online server 130 is located in a single server public domain. 然而,本发明不限于此,在本发明另一范例实施例中,联机服务器130亦可由点对点网络的重叠网(Overlay)中多台服务器所组成。 However, the present invention is not limited thereto, in a further exemplary embodiment of the present invention, by the online server 130 may overlay network peer network composed of (the Overlay) multiple servers.

[0045] 在本范例实施例中,联机服务器130提供一注册接口以使第一终端102、第二终端104、第三终端106、第四终端108与第五终端110能与联机服务器130建立控制通道(control channel)来保持联机状态。 [0045] In the present exemplary embodiment, the online server 130 provides a registration interface 102 to the first terminal, a second terminal 104, the fifth terminal 108 and the server 110 can establish a connection with the control third terminal 106 and fourth terminal 130 channel (control channel) to remain online.

[0046]例如,当第一终端 IO2 使用传输控制协议(Transmission ControlProtocol,TCP)与联机服务器130建立联机并于注册接口中进行注册时,联机服务器130会记录关于第一终端102的注册信息,其中包括客户端账号字段、客户端内部地址/端口号字段、网络地址转换器类型字段与客户端外部网络地址/端号。 [0046] For example, when the first terminal IO2 using Transmission Control Protocol (Transmission ControlProtocol, TCP) to establish a connection with the online server 130 and registered in the register interface, online server 130 records the registration information on the first terminal 102, wherein field includes a client account number, client internal address / port number field, a network address Translator type field external network address and the customer / end terminal number. 客户端账号字段是用以记录欲注册的终端的终端账号(例如,第一终端102的账号为“102”),客户端内部网络地址是用以记录欲注册的终端的私有IP地址/端口号(例如,第一终端102的私有IP地址/端口号为 The client terminal account number field is used to record the account to be registered in a terminal (e.g., an account of the first terminal 102 is "102"), the internal network address of the client terminal is a private IP address / port number to be registered for recording (e.g., private IP address / port number of the first terminal 102 is

10.0.0.1:8000),网络地址转换器类型用以记录欲注册的终端所对应的NAT的类型(例如,第一终端102对应的第一NAT 122的类型为“对称式NAT”),以及客户端外部网络地址是用以记录对应的NAT指派给欲注册的终端的公有IP地址/端口号(例如,第一NAT 122指派给第一终端102的公有IP地址/端口号为“140.96.178.1:1111”)。 10.0.0.1:8000), Network Address Translator Type for the terminal to be registered in the record corresponding to the type of NAT (e.g., the first NAT type 122 corresponding to the first terminal 102 is "symmetric NAT"), and the customer end of the external network addresses are used to record the corresponding NAT assigned public IP address of the terminal to be registered / port number (e.g., the first NAT to the first terminal 122 is assigned a public IP address / port number 102 is "140.96.178.1: 1111 "). 同时,在第一终端102注册之后,第一终端102会与联机服务器130持续保持联机,直到第一终端102中断与联机服务器130的联机为止。 Meanwhile, after the first 102 registered terminal, the first terminal 102 with the online server 130 will continue to remain online until the first terminal 102 interrupts the connection of up to 130 servers online. 类似地,在本范例中,第二终端104、第三终端106、第四终端108与第五终端110亦是以上述方式向联机服务器130进行注册并保持联机。 Similarly, in this example, a second terminal 104, third terminal 106 and fourth terminal 108 are also in the manner described above and the fifth terminal 110 to register online server 130 and remain online.

[0047] 在本范例实施例中,联机服务器130会将所注册的终端进行分群并且储存一群组与联机清单表来记录在联机服务器130中注册的终端的信息。 [0047] In the present exemplary embodiment, the online server 130 will be grouped and registered with the terminal group of the online store a list of the terminal information table to record registered in the server 130 online. 例如,联机服务器130会依据终端所位于的NAT来进行分群,并且记录已注册的终端之间是否存有点对点直接联机。 For example, online server 130 will be grouped according to the terminal is located, NAT, whether there point to point direct connection between the terminal and records registered.

[0048] 图2是根据本发明范例实施例所绘示的群组与联机清单表的范例。 [0048] FIG. 2 is an example of a group list table of the online embodiment depicted according to an exemplary embodiment of the present invention.

[0049] 请参照图2,群组与联机清单表200包括群组名称(Group Name)字段202、群组类型(Group Type)字段204、客户端名称(User Name)字段206、客户端地址信息(UserContact)字段208、联机群组名称(ConnectionGroup Name)字段210与联机客户端名称(Connection User Name)字段212。 [0049] Referring to FIG. 2, the group list table 200 includes a line group name (Group Name) field 202, the type of the group (Group Type) field 204, a client name (User Name) field 206, the address information of the client (UserContact) field 208, group name online (ConnectionGroup name) field 210 with the name of the client connection (Connection User name) field 212.

[0050] 群组名称(Group Name)字段202是用以记录已注册的终端所属的群组的名称,在此联机服务器130是以NAT的公有IP地址来作为群组名称。 [0050] The group name (Group Name) field 202 is used for recording the registered terminal belongs to the group name, the server 130 is in this connection NAT to public IP addresses as a group name.

[0051] 群组类型(Group Type)字段204是用以记录已注册的终端所对应的NAT的类型。 [0051] Group type (Group Type) field 204 is a type of the registered record to the terminal corresponding to the NAT.

[0052] 客户端名称(User Name)字段206是用以记录已注册的终端的账号。 [0052] The client name (User Name) field 206 is a terminal for recording the registered account.

[0053] 客户端地址信息(User Contact)字段208是用以记录已注册的终端的私有IP地 [0053] Client address information (User Contact) field 208 is used for terminal records registered in the private IP

址/端口号。 Address / port number.

[0054] 联机群组名称(Connection Group Name)字段210是用以当已注册的终端已建立点对点联机时记录所联机的群组名称。 [0054] Online group name (Connection Group Name) field 210 is used when a registered terminal has established peer group name recording the online connection.

[0055] 联机客户端名称(Connection User Name)字段212是用以当已注册的终端已建立点对点联机时记录所联机的终端账号。 [0055] Online client name (Connection User Name) Account field 212 is used when the terminal equipment has established a registered point connection records online.

[0056] 例如,联机服务器130依据每一终端所对应的NAT将第一终端102、第二终端104与第三终端106分群为第一群组,并且第四终端108与第五终端110分群为第二群组,其中第一群组的名称为“140.96.178.1”,而第二群组的名称为“140.96.178.5”。 [0056] For example, online server 130 corresponding to each terminal based NAT the first terminal 102, third terminal 104 and second terminal 106 grouped into a first group, and the fourth terminal 108 and fifth terminal 110 grouped into a second group, wherein the first group name is "140.96.178.1", and the name of the second group as "140.96.178.5". 基此,在群组 This group, the group

与联机清单表200中会记录各终端相关的信息。 200 will record information about each terminal associated with online inventory table. 特别是,在假设第一群组的第三终端106与第二群组的第四终端108已透过上述端号预测方法建立点对点直接联机的例子中,在群组与联机清单表200中关于第三终端106的信息会包含其与第二群组的第四终端108已存有点对点直接联机的信息,且关于第四终端108的信息会包含其与第一群组的第三终端106已存有点对点直接联机的信息。 In particular, in the example of the third terminal is assumed that the first group 106 has a direct connection through the establishment of the end-point prediction method number 108 with a second terminal of the fourth group, the group in the table on the online list 200 the third terminal information 106 will comprise a fourth group with the second terminal 108 there is a direct connection of the information point, and on the fourth terminal 108 comprises a message with the third group 106 has a first terminal there point information directly online.

[0057] 特别是,在本范例实施例中,当网络通讯系统中的终端(即,发起终端)欲穿透NAT与另一终端(即,受邀终端)进行联机时,发起终端与受邀终端会透过联机服务器130交换彼此的候选网络地址信息及对应的NAT类型信息,其中倘若双方的NAT类型皆为对称式NAT,或者其中一个NAT为端受限圆锥型NAT且另一个NAT为对称式NAT时,则发起终端会向联机服务器130发送一询问信息以查询发起终端所属的群组与受邀终端所属的群组之间是否存有点对点直接联机,并且尝试利用此已存在的点对点联机来与受邀终端建立联机。 [0057] In particular, in the present exemplary embodiment, when the network communication system, the terminal (i.e., the originating terminal) To penetrate NAT with another terminal (i.e., terminal invited) for online, initiate a terminal invited terminal 130 may exchange information with each other the NAT type of the candidate and the corresponding network address information through the online server, wherein if both are all symmetric NAT NAT type, or wherein a restricted cone NAT NAT-terminated and the other is a symmetric NAT when the type NAT, initiating terminal sends a message to an online server 130 asks whether there direct connection between the point group to check the originating terminal belongs to the group invited terminal belongs to, and attempt to exploit the existing point-online invited to establish a connection with the terminal.

[0058] 图3是根据本发明范例实施例所绘示的联机范例示意图。 [0058] FIG. 3 is a schematic diagram illustrating an online exemplary embodiment depicted according to an exemplary embodiment of the present invention.

[0059] 请参照图3,在此假设第一群组的第三终端106与第二群组的第四终端108之间已存在点对点直接联机(S302),并且当第一终端102欲与第五终端110建立联机时,第一终端102会将联机请求与候选网络地址信息传送给联机服务器130 (S304),并且联机服务器130会将第一终端102的联机请求、候选网络地址信息与对应NAT类型信息传送给第五终端110(S306)。 [0059] Referring to FIG 3, it is assumed here that the third terminal of the first group 106 and the fourth terminal of the second group have a direct connection exists between the point 108 (S302), and when the first and the second terminal 102 to be five terminal 110 to establish a connection, the first connection terminal 102 will request the candidate network address information to the online server 130 (S304,), and the online server 130 will first terminal 102 of the online request, the candidate message corresponding to the network address NAT a fifth type information transmitted to the terminal 110 (S306). 同样的,当第五终端110从联机服务器130中接收到第一终端102的联机请求与候选网络地址信息后,第五终端110会将本身的候选网络地址信息传送给联机服务器130(S308)并且联机服务器130会将第五终端110的候选网络地址信息与对应NAT类型信息传送给第一终端102(S310)。 Similarly, when the fifth terminal 110 from the online server 130 receives the request for connection to the first terminal network address and the candidate information 102, the fifth terminal 110 itself will be a candidate network address information to the online server 130 (S308) and online server 130 will candidate network address information corresponding to the fifth NAT type information transmission terminal 110 to the first terminal 102 (S310). 基此,第一终端102与第五终端110会得知彼此都是位于对称式NAT内。 This group, the first terminal 102 and the fifth terminal 110 to each other that are located in symmetric NAT.

[0060] 之后,第一终端102会向联机服务器130发送询问信息以查询群组与联机清单表200中相同群组的联机清单(S312),并且从联机服务器130中接收响应信息(S314)以判断第一终端102所属的群组(即,第一群组)中是否有任何终端与第五终端所属的群组(即,第二群组)中的终端之间已存在点对点直接联机。 After [0060], the first terminal 102 sends a query to an online server 130 to query a group information table 200 and a list of online connection list to the same group (S312), and receives the response information from the online server 130 (S314) to are there any terminal group the terminal belongs to the fifth group belongs (i.e., the first group) determining a first terminal 102 (i.e., the second group) is directly point to point connection already exists between the terminals.

[0061] 如上所述,由于第一群组的第三终端106与第二群组的第四终端108之间已存在点对点直接联机,因此第一终端102会向第三终端106发送一联机授权请求(S316),其中在第三终端106同意此联机授权请求下,第三终端106会将此联机授权请求传送给第四终端108(S318),并且在第四终端同意此联机授权请求下,第四终端108会通知第五终端110(S320)。 [0061] As described above, since the third terminal of the first group 106 and the fourth terminal point a direct connection exists between the second group 108, the first terminal 102 sends a grant to the third connection terminal 106 request (S316), wherein the third connection terminal 106 agree this authorization request, the third terminal 106 would transmit this authorization request to the fourth connection terminal 108 (S318), and agrees to this authorization request in the fourth connection terminal, 108 notifies a fifth terminal 110 (S320) a fourth terminal. 之后,若第五终端110同意此联机时,则第五终端110会传送确认回应(acknowledgement response)给第四终端108(S322),第四终端108会传送确认回应给第三终端106(S324),并且第三终端106会传送确认回应给第一终端102(S326)。 Thereafter, if the Terminal 110 agrees to this fifth line, the fifth terminal 110 transmits acknowledgment response (acknowledgement response) to the fourth terminal 108 (S322), a fourth terminal 108 will send a confirmation response to the third terminal 106 (S324) and the third terminal 106 will send a confirmation response to the first terminal 102 (S326). 最后,第一终端102与第五终端110之间就可经由第三终端106与第四终端108之间的点对点直接联机来建立联机(S328)。 Finally, a first terminal 102 and between the fifth point 106 and terminal 110 can be a direct connection between the fourth terminal 108 to establish a connection (S328) via the third terminal.

[0062] 基于上述,由于第一NAT 122内的终端与第二NAT 124内的终端之间已存有点对点直接联机,因此第一终端102与第五终端110可利用图3所示的联机重用机制来联机,而无需再耗费大量的成本执行其它NAT穿透技术。 [0062] Based on the above, since there is a direct connection point between the terminal and the second terminal in the NAT 124 in the first NAT 122, 102 so that the first terminal and the fifth terminal 110 shown in FIG. 3 may be utilized in connection reuse connection mechanism, without having to spend a lot of cost to perform other NAT traversal techniques.

[0063] 值得一提的是,在图3所示的范例中,第三终端106与第四终端108会传送确认回应给第一终端102以允许第一终端102使用第三终端106与第四终端108之间的点对点联机。 [0063] It is worth mentioning that, in the example shown in FIG. 3, the third terminal 106 and fourth terminal 108 will send a confirmation response to the first terminal 102 to allow the first terminal 102 using the third and the fourth terminal 106 point to point connection between the terminal 108. 然而,在另一范例中,被请求授权的终端会依据本身频宽的使用状况而拒绝其它终端的联机授权请求。 However, in another example, the terminal may request authorization itself, depending on the usage of bandwidth and deny access authorization request to the other terminals. 假设在第一终端102向第三终端106提出联机授权请求的例子中,倘若透过第三终端106联机的终端数已大于一联机数门限值时,第三终端106会拒绝第一终端102的请求。 Suppose proposed online authorization request example, if the number of the terminal when the terminal through a third connection line 106 is greater than a threshold number, the third terminal 106 will reject the first terminal 102 to the third terminal 106 of the first terminal 102 requests. 例如,在本范例实施例中,联机数门限值是设定为5。 For example, in the present exemplary embodiment, the threshold line is set to the number 5. 基此,在被请求授权的终端提供其它终端来共享其已建立的点对点直接联机的同时,亦可维持一定的联机质量。 This group provided the other terminals in the terminal is authorized to request a shared point it has established a direct connection, while also maintaining a certain quality of connection.

[0064] 此外,在本范例实施例中,当被请求授权的终端同意其它终端使用其所建立的点对点直接联机时,其必须能够区别所接收到的封包是属于哪一个终端的封包。 [0064] Further, in the present exemplary embodiment, when the terminal is authorized to request the other terminals using point to point consent they establish a direct connection, it must be able to distinguish the received packet is a packet which the terminal belongs. 因此,在本范例实施例中,所传送的IP封包中会封装实际来源地地址、与所接收的封包的实际目的地地址,以利封包的转送。 Accordingly, in the present exemplary embodiment, the IP packet encapsulation will be transmitted in real source address of the received packet with the actual destination address, to facilitate the transfer of packets.

[0065] 图4是根据本范例实施例所绘示的网络穿透方法的流程图。 [0065] FIG. 4 is a flowchart of a method of network penetration depicted embodiment according to the present exemplary embodiment.

[0066] 请参照图4,首先,在步骤S401中欲建立联机的发起终端(例如,图3所示的第一终端102)以及受邀终端(例如,图3所示的第五终端110)会彼此交换候选网络地址信息与对应NAT信息。 [0066] Referring to FIG 4, first, in step S401, to be the initiating terminal to establish a connection (e.g., a first terminal 102 shown in FIG. 3) and the invited terminal (fifth terminal e.g., 110 shown in FIG. 3) We will exchange the network address information corresponding to the candidate NAT information with each other.

[0067] 在步骤S403中发起终端会依据所交换的信息判断双方的NAT类型是否皆为对称式NAT,或者其中一个NAT为端受限圆锥型NAT且另一个NAT为对称式NAT。 [0067] initiating terminal information exchanged will be based on the NAT type determination whether both are all symmetric NAT, NAT is a terminal or wherein a restricted cone NAT and the other is a symmetric NAT NAT in step S403.

[0068] 倘若在步骤S403中判断双方的NAT类型皆为对称式NAT,或者其中一个NAT为端受限圆锥型NAT且另一个NAT为对称式NAT时,则在步骤S405中判断是否存有用于发起终端所属的群组与受邀终端所属的群组之间的可利用联机,反之,则在步骤S407中发起终端会执行第二联机模式来穿透NAT以与受邀终端建立点对点直接联机。 [0068] If the determination when both types are all symmetric NAT NAT, NAT or wherein a is an end and the other restricted cone NAT NAT is a symmetrical NAT in step S403, it is determined in step S405 whether there for available connection between the group and the group originating terminals belong invited terminal belongs, on the contrary, the originating terminal performs a second online mode in step S407 to establish a point to penetrate the NAT invited direct on-line terminal. 在此,第二联机模式可以是打孔方法(模式)或其它适合的联机方法。 Here, the second mode may be a perforated line method (mode), or other suitable connection method.

[0069] 图5是根据本发明范例实施例所绘示图4中步骤S405的详细流程图。 [0069] The embodiment depicted in FIG. 5 is a detailed flowchart of step S405 4 diagram according to an exemplary embodiment of the present invention.

[0070] 请参照图5,在步骤S501中发起终端会依据联机服务器130中的群组与联机清单表200来判断发起终端所属的群组与受邀终端所属的群组之间是否存有点对点直接联机。 [0070] Referring to FIG 5, the terminal will be initiated in step S501 based on the online server 130 in connection with the group list table 200 to determine whether there between peer group the terminal belongs to a group originating terminals belong invited direct online.

[0071] 倘若在步骤S501中判断发起终端所属的群组与受邀终端所属的群组之间无存有点对点直接联机时,则在步骤S511中判断发起终端所属的群组与受邀终端所属的群组之间无可利用联机。 [0071] When it is determined in step S501 if no point there between groups originating terminal belongs to the group the terminal belongs invited directly online, it is determined that the terminal belongs to a group originating terminals belong invited at step S511 There is no connection between the use of the group.

[0072] 若在步骤S501中发起终端所属的群组与受邀终端所属的群组之间存有点对点直接联机时,则在步骤S503中发起终端会向对应此点对点直接联机的终端(即,拥有此点对点直接联机的终端)发送联机授权请求,并且在步骤S505中判断是否从对应此点对点直接联机的终端中接收到确认响应。 [0072] If there initiated between the terminal belongs to the group the group the terminal belongs invited point in step S501 that a direct connection, the terminal will initiate this point a direct connection to the corresponding terminal (i.e., at step S503, this has a direct connection to the terminal point) transmits an online authorization request, and determines whether or not the response corresponding to this point a direct connection from the terminal to receive the confirmation in step S505.

[0073] 倘若接收到确认响应时,则在步骤S507中判断此点对点直接联机为可利用联机,反之则在步骤S509中判断发起终端所属的群组与受邀终端所属的群组之间是否还有其它点对点直接联机。 [0073] If the received acknowledgment response time, this point is determined using a direct connection to be online at step S507, otherwise step S509 is determined whether in between the groups further groups originating terminal and the invited terminal belongs belongs there are other ad directly online. 倘若还有其它点对点直接联机时,则执行步骤S503,反之,则执行步骤S511。 If there are other point when a direct connection is performed step S503, otherwise, the step S511.

[0074] 请再参照图4,倘若在步骤S405中判断存有用于发起终端所属的群组与受邀终端所属的群组之间的可利用联机时,则在步骤S409中发起终端使用此可利用联机建立发起终端与受邀终端之间的联机。 [0074] Referring again to FIG. 4, when there is determined if a connection can be used between the group and the group originating terminals belong invited terminal belongs in step S405, the terminal is initiated in step S409 can use this use online to establish a connection between the originating terminal and invited terminal.

[0075] 倘若在步骤S405中判断无存有用于发起终端所属的群组与受邀终端所属的群组之间的可利用联机时,则在步骤S411中发起终端会使用第一联机模式来穿透NAT以与受邀终端建立点对点直接联机。 [0075] If there is determined when no available connection between the group and the group originating terminals belong to the terminal belongs invited in step S405, the terminal may initiate the connection using the first mode in step S411 to wear through NAT to establish a direct connection point with the invited terminal. 也就是说,倘若在图3的例子中第三终端106与第四终端108之间无点对点直接联机时,则第一终端102与第五终端110会使用第一联机模式来穿透NAT以建立点对点直接联机,并且在群组与联机清单表200中更新此信息以供后续其它终端欲联机时可以使用。 That is, when the fourth terminal 106 if no point 108 in the example of FIG. 3 between the third terminal of the direct on-line, the first terminal 102 and the fifth connection terminal 110 uses a first mode to establish through NAT point a direct connection, and update this information in connection with the group list table 200 may be used for subsequent connection to be another terminal. 类似地,在此,第一联机模式可以是端口号猜测方法(模式)或其它适合的联机方法。 Similarly, in this case, the first connection pattern can be a port number prediction method (mode), or other suitable connection method.

[0076] 在步骤S411之后,在步骤S413中发起终端与受邀终端会向联机服务器130回报联机信息以更新群组与联机清单表200。 [0076] After step S411, in step S413 invited to the originating terminal and the terminal will return to the online information online server 130 to update the list of groups and online table 200.

[0077] 图6是根据本发明范例实施例所绘示图4中步骤S413的详细流程图。 [0077] FIG. 6 is a detailed flowchart illustrating the procedure of Example 4 S413 depicted according to an exemplary embodiment of the present invention.

[0078] 请参照图6,在步骤S601中,发起终端与受邀终端会分别地将所建立的点对点直接联机的联机信息传送给联机服务器130。 [0078] Referring to FIG 6, in step S601, the information terminal initiating connection and the terminal will be invited to the respective point established a direct connection to the online server 130 transmits. 在本发明范例实施例中,此联机信息依序地包括群组名称、客户端名称、联机群组名称、联机客户端名称。 In the exemplary embodiment of the present invention, the online information sequentially includes a group name, client name, connection group name, online client name. 例如,倘若在图3所示的范例中,第三终端106不允许第一终端102重用第三终端106与第四终端108之间的点对点直接联机,并且第一终端102与第五终端110执行上述步骤S411使用第一模式来建立点对点直接联机之后,第一终端102会将包含{140.96.178.1、102、140.96.178.5、110}的联机信息传送给联机服务器130,并且第五终端110会将包含{140.96.178.5、110、140.96.178.1、102}的联机信息传送给联机服务器130。 For example, if in the example shown in FIG. 3, the third terminal 106 is not allowed to reuse a first terminal 102 third terminal 106 and fourth terminal point a direct connection between the 108, 102 and the first terminal and the fifth terminal 110 performs after the above information transfer connection using the first mode of step S411 to establish a direct connection point, comprising a first terminal 102 will} {140.96.178.1,102,140.96.178.5,110 to the online server 130, and the fifth terminal 110 will {} 140.96.178.5,110,140.96.178.1,102 comprising connection information to the server 130 online.

[0079] 接着,在步骤S603中联机服务器130接收到联机信息,并且依据所接收的联机信息更新群组与联机清单表200。 [0079] Next, in step S603 the server 130 receives the line connection information, and updates the group information with the online list based on the received connection table 200. 最后,在步骤S605中联机服务器130会传送确认回应给发起终端与受邀终端。 Finally, in step S605, the online server 130 will send a confirmation response to the initiation terminal and invited terminal.

[0080] 值得一提的是,在图5所绘示的判断是否存有可利用联机的步骤中,仅于发起终端与受邀终端的对应NAT类型皆为对称式NAT,或者其中一个NAT为端受限圆锥型NAT且另一个NAT为对称式NAT时,才会确认是否可执行图3所示的联机重用机制(即,步骤S409)。 [0080] It is worth mentioning that, in FIG. 5 depicted step determines whether there are available online, only to initiate the corresponding NAT type of the terminal and the invited terminal are all symmetric NAT, NAT or wherein a is when the end of the other restricted cone NAT and symmetric NAT NAT is, will confirm whether an executable online reuse mechanism shown in FIG. 3 (i.e., step S409). 然而本发明不限于此,在本发明另一范例实施例中,判断NAT类型的步骤亦可省略,而直接进行是否可执行联机重用机制的判断。 However, the present invention is not limited thereto, in a further exemplary embodiment of the present invention, the NAT type determination step may be omitted, and the direct connection is determined whether an executable reuse mechanism. 换言之,本发明不限于在发起终端与受邀终端的对应NAT类型皆为对称式NAT或者其中一个NAT为端受限圆锥型NAT且另一个NAT为对称式NAT的例子中使用,上述联机重用机制可应用于任何其它NAT类型的穿透。 In other words, the present invention is not limited to the originating terminal and the corresponding NAT type terminals are all invited NAT or Symmetric NAT is one end of a further restricted cone NAT and symmetric NAT NAT examples used in the online reuse mechanism NAT can be applied to any other type of penetration.

[0081] 综上所述,本发明范例实施例使用已建立的点对点联机来达成NAT的穿透,可大幅降低穿透NAT所需的时间、成本与复杂度。 [0081] As described above, exemplary embodiments of the present invention, using established point to point connection is achieved through NAT, can significantly reduce the time required to penetrate the NAT, cost and complexity. 此外,由于所传递的封包是属于同一个网域的封包,因此可降低所需的传输时间。 Further, since the transmitted packet is a packet belonging to the same domain, thus reducing the time required for the transmission. 因此在传输时间以及所需花费的封包成本皆大幅降低。 Therefore, packet transmission time and cost required to spend are greatly reduced. 此外,在本范例实施例中,已建立点对点直接联机的终端会依据频宽的质量来控制共享此点对点直接联机的终端数,因此数据流量可被分散,而不会造成数据流量集中而产生效能瓶颈的问题。 Further, in the present exemplary embodiment, a direct connection has been established to the terminal point will be based on the quality control of the shared bandwidth to this point the number of terminals of a direct connection, so that the data traffic can be dispersed without causing concentration of traffic data generated Effectiveness bottleneck problem.

[0082] 虽然本发明已以实施例揭露如上,然其并非用以限定本发明,任何所属技术领域中具有通常知识者,在不脱离本发明的精神和范围内,当可作些许的更动与润饰,故本发明的保护范围当视后附的申请专利范围所界定的为准。 [0082] Although the present invention has been disclosed in the above embodiments, they are not intended to limit the present invention, any skilled in the art having ordinary knowledge, without departing from the spirit and scope of the present invention, various omissions, substitutions can be made to and variations, so the scope of the invention when appended claims which are defined by the scope of equivalents.

Claims (16)

1.一种网络穿透方法,用于在多个终端之中的一第一终端与一第二终端之间建立联机,其特征在于,该网络穿透方法包括: 配置一联机服务器,其中该些终端分别地在该联机服务器中注册一注册信息并与该联机服务器保持一联机状态; 依据该些终端的注册信息分群该些终端,其中该第一终端位于一第一网络地址转换器内且该第二终端位于一第二网络地址转换器内,该些终端之中位于该第一网络地址转换器内的终端被分群为一第一群组,并且该些终端之中位于该第二网络地址转换器内的终端被分群为一第二群组; 第一终端判断是否存有用于该第一群组的终端与该第二群组的终端之间的一可利用联机;以及当判断存有该可利用联机时,则第一终端使用所判断的可利用联机建立该第一终端与该第二终端之间的联机; 其中,判断是否存有用于该第一群组的 A network penetration method, for establishing a connection between a plurality of terminals among the first terminal and a second terminal, wherein the network penetration method comprising: configuring an online server, wherein the these terminals are registered in the registration information online server and held in a state of a connection to the online server; grouping the plurality of terminals based on the plurality of registration information terminal, wherein the first terminal is located within a first network address translator and the second terminal located in a second network address translator, the plurality of terminals in a terminal located in the first network address translator are grouped as a first group, and among the plurality of terminal is located in the second network address translator within the terminal is grouped into a second group; a first terminal determining whether there may be utilized between a terminal for the first terminal group and the second group line; and when the memory is determined when the line has available, the first terminal may utilize determined using the connection establishment of the connection between the first terminal and the second terminal; wherein, for determining whether the first group there 终端与该第二群组的终端之间的可利用联机的步骤包括: 第一终端判断是否存有该第一群组的终端与该第二群组的终端之间的一点对点直接联机; 当判断存有该点对点直接联机时,则第一终端向该些终端之中对应该点对点直接联机的终端提出一联机授权请求;以及当从对应该点对点直接联机的终端中接收到一确认响应时,则将所判断的点对点直接联机识别为该可利用联机,并且当未从对应该点对点直接联机的终端中接收到该确认响应时,则第一终端不将所判断的点对点直接联机识别为该可利用联机。 Step available online terminal and between the second group of terminals comprising: a first terminal determines whether there a direct connection between the terminal point of the second group of terminals of the first group; when there is determined the point a direct connection, the first terminal to the terminal among those proposed authorization request for a connection to be a direct connection point of the terminal; and when the response from the point to be a direct connection of the terminal to receive an acknowledgment, direct connection point identification that will be available to the determined line, and not from the time when it should point to a direct connection of the terminal in response to receiving the acknowledgment, the first terminal does not directly point to the determination for the on-line can be identified use online.
2.如权利要求1所述的网络穿透方法,其特征在于,还包括: 在向该些终端之中对应该点对点直接联机的终端提出该联机授权请求之后,对应该点对点直接联机的终端判断利用该点对点直接联机进行通讯的终端的数目是否大于一联机数门限值,其中当利用该点对点直接联机进行通讯的终端的数目大于该联机数门限值时,则第一终端不将所判断的点对点直接联机识别为该可利用联机。 After this the terminal among those proposed to be the connection point to the authorization request a direct connection terminal, a direct connection to the terminal point should be determined: 2. The network penetration method according to claim 1, characterized in that, further comprising if the number of the number of direct on-line using a terminal point of the communication line number is greater than a threshold value, wherein when a direct connection using the point of a terminal is greater than the communication line number threshold value, the first terminal does not judged the line identified as the point directly available online.
3.如权利要求1所述的网络穿透方法,其特征在于,当无存有该可利用联机时,则第一终端使用一第一联机模式来建立该第一终端与该第二终端之间的点对点直接联机,其中该第一联机模式为一端口号猜测模式或一打孔模式。 3. The network penetration method according to claim 1, wherein, when there no line that may be utilized, the first terminal uses a first mode to establish a connection to the first terminal and the second terminal of the a direct connection between the peer, wherein the first mode is a connection mode or a port number to guess a puncturing pattern.
4.如权利要求3所述的网络穿透方法,其特征在于,还包括: 在使用该第一联机模式来建立该第一终端与该第二终端之间的点对点直接联机之后,第一终端向该联机服务器回报在该第一终端与该第二终端之间所建立的点对点直接联机。 4. The network penetration method according to claim 3, characterized in that, further comprising: using the first connection mode is established between a point after the first terminal and the second terminal of the direct line, a first terminal online server to return between the first terminal and the second terminal point established direct connection.
5.如权利要求1所述的网络穿透方法,其特征在于,还包括在该联机服务器中配置一群组与联机清单,以记录所分群的该些终端之间的点对点直接联机,且其中判断是否存有该第一群组的终端与该第二群组的终端之间的点对点直接联机的步骤包括: 第一终端判断该群组与联机清单中是否存有该第一群组的终端与该第二群组的终端之间的点对点直接联机。 5. The network penetration method according to claim 1, characterized in that, further comprising configuring a group with a line in the list of online server, the point between the plurality of terminals grouped in a direct line recording, and wherein the step of determining whether the first group there is a terminal point between the terminal and the second group of direct line comprises: a first terminal determines whether the connection with the group list if there is a terminal of the first group point between the second terminal of the direct on-line group.
6.如权利要求1所述的网络穿透方法,其特征在于,该第一网络地址转换器为一端受限圆锥型网络地址转换器或一对称式网络地址转换器且该第二网络地址转换器为另一对称式网络地址转换器。 6. The network penetration method according to claim 1, wherein the first network address translator restricted cone end to a network address translator or a symmetric network address translator and the second network address translation is another symmetric network address translators.
7.如权利要求1所述的网络穿透方法,其特征在于,该第二网络地址转换器为一端受限圆锥型网络地址转换器或一对称式网络地址转换器且该第一网络地址转换器为另一对称式网络地址转换器。 7. The network penetration method according to claim 1, wherein the second network address translator restricted cone end to a network address translator or a symmetric network address translator and the first network address translation is another symmetric network address translators.
8.如权利要求1所述的网络穿透方法,其特征在于,在判断是否存有用于该第一群组的终端与该第二群组的终端之间的一可利用联机之前,第一终端判断该第一网络地址转换器与该第二网络地址转换器是否分别为一完全圆锥型网络地址转换器、一受限圆锥型网络地址转换器、一端受限圆锥型网络地址转换器或一对称式网络地址转换器, 其中当该第一网络地址转换器与该第二网络地址转换器分别为该完全圆锥型网络地址转换器、该受限圆锥型网络地址转换器或该端受限圆锥型网络地址转换器时,则使用一第二联机模式来建立该第一终端与该第二终端之间的点对点联机, 其中当该第一网络地址转换器与该第二网络地址转换器的其中之一为该对称式网络地址转换器且另一为该完全圆锥型网络地址转换器或该受限圆锥型网络地址转换器时,则使用该第二联 8. The network before penetrating method according to claim 1, wherein, in determining whether there may utilize a connection between the terminal and the terminal for the second group of the first group, a first the terminal determines whether the first network address translator and the second network address translator are a complete network address translator cone, restricted cone a network address translator, one end of the restricted cone or a network address translator symmetric network address translator, wherein when the first network address translator and the second network address translator for each complete network address translator cone, restricted cone of the network address translator or the end of the restricted cone when network address Translator, a second connection mode is used to establish point to point connection between the first terminal and the second terminal, wherein when the first network address translator and the second network address translator one for the symmetric network address translator and the other when a network address translator cone, for use with the second network address translator full cone or the restricted 模式来建立该第一终端与该第二终端之间的点对点联机, 其中该第二联机模式为一端口号猜测模式或一打孔模式。 Point to point connection mode is established between the first terminal and the second terminal, wherein the second connection mode is a mode or a port number to guess a puncturing pattern.
9.一种网络通讯系统,其特征在于,包括: 多个网络地址转换器与多个终端,其中该些终端之中的一第一终端位于该些网络地址转换器之中的一第一网络地址转换器内,并且该些终端之中的一第二终端位于该些网络地址转换器之中的一第二网络地址转换器内;以及一联机服务器,用以分群该些终端,其中该些终端之中位于该第一网络地址转换器内的终端被分群为一第一群组,并且该些终端之中位于该第二网络地址转换器内的终端被分群为一第二群组, 其中该第一终端判断是否存有用于该第一群组的终端与该第二群组的终端之间的一可利用联机,其中当判断存有该可利用联机时,则该第一终端使用所判断的可利用联机建立该第一终端与该第二终端之间的联机; 其中,该第一终端判断是否存有该第一群组的终端与该第二群组的终端之间的一点对点直接 A network communication system comprising: a plurality of network address translator with a plurality of terminals, wherein a first terminal among the plurality of terminals located in a first network of the plurality of network address translator the address converter, and a second terminal among the plurality of terminals located in a second network address translator network address from among the plurality of converter; and an online server for grouping the plurality of terminals, wherein the plurality of among the terminals in the terminal is located at a first network address translator are grouped as a first group, among the plurality of terminals and a terminal located in the second network address translator are grouped into a second group, wherein the first terminal determines whether there available for a connection between a terminal of the first group and the second terminal group, wherein when it is judged that there can be used when online, the first terminal using the determining the available connection establishment the connection between the first terminal and the second terminal; wherein the first terminal determines whether there is a terminal point between the terminal and the second group of the first group direct 机,并且当存有该点对点直接联机时,则该第一终端向该些终端之中对应该点对点直接联机的终端提出一联机授权请求, 其中当从对应该点对点直接联机的终端中接收到一确认响应时,则该第一终端将所判断的点对点直接联机识别为该可利用联机,并且当未从对应该点对点直接联机的终端中接收到该确认响应时,则该第一终端不将所判断的点对点直接联机识别为该可利用联机。 Machine, and the point when there a direct connection, the first terminal to the terminal among those proposed authorization request for a connection to be a direct connection to the terminal point, wherein when receiving from the peer to be a direct connection to a terminal a when the acknowledgment response, the first terminal directly to the determined point for the line identification available online, and when the point is not to be in direct line terminal in response to receiving the acknowledgment from the first terminal does not the Analyzing the point that direct on-line identification available online.
10.如权利要求9所述的网络通讯系统,其特征在于,在该第一终端向该些终端之中对应该点对点直接联机的终端提出该联机授权请求之后,对应该点对点直接联机的终端判断利用该点对点直接联机进行通讯的终端的数目是否大于一联机数门限值,其中当利用该点对点直接联机进行通讯的终端的数目大于该联机数门限值时,则对应该点对点直接联机的终端不传送该确认响应给该第一终端。 After 10. The network communication system according to claim 9, characterized in that, to some among the connection terminals made a request for authorization to be a direct connection to the terminal point of the first terminal, a direct connection to a terminal point should be determined if the number of the number of direct on-line using a terminal point of the communication line number is greater than a threshold value, wherein when a direct connection using a terminal point of the communication line is greater than the threshold number, then the terminal should point to a direct connection It does not transmit the acknowledgment to the first terminal.
11.如权利要求9所述的网络通讯系统,其特征在于,当该第一终端判断无存有该可利用联机时,则该第一终端使用一第一联机模式来建立该第一终端与该第二终端之间的点对点直接联机, 其中该第一联机模式为一端口号猜测模式或一打孔模式。 11. The network communication system according to claim 9, wherein, when the first terminal determines that there no available line, the first terminal uses a first mode to establish a connection with the first terminal point between the second terminal of the direct on-line, wherein the first mode is a connection mode or a port number to guess a puncturing pattern.
12.如权利要求11所述的网络通讯系统,其特征在于,在使用该第一联机模式来建立该第一终端与该第二终端之间的点对点直接联机之后,该第一终端与该第二终端向该联机服务器回报在该第一终端与该第二终端之间所建立的点对点直接联机。 After 12. The network communication system according to claim 11, wherein, in use of the first mode to establish a connection point between the first terminal and the second terminal a direct connection, the first terminal and the second to the second terminal point returns online server established between the first terminal and the second terminal of the direct on-line.
13.如权利要求9所述的网络通讯系统,其特征在于,该联机服务器建立一群组与联机清单,以记录所分群的该些终端之间的点对点直接联机,且该第一终端依据该群组与联机清单来判断是否存有该第一群组的终端与该第二群组的终端之间的点对点直接联机。 13. The network communication system according to claim 9, characterized in that the connection server establishes a connection with the group list, the point between the plurality of terminals grouped directly online record, and the first terminal according to the Groups with the online list to determine whether or not there between the terminal point of the first terminal group and the second group of direct on-line.
14.如权利要求9所述的网络通讯系统,其特征在于,该第一网络地址转换器为一端受限圆锥型网络地址转换器或一对称式网络地址转换器且该第二网络地址转换器为另一对称式网络地址转换器。 14. The network communication system of claim 9 and the second network address translator claim, wherein the first network address translator restricted cone end to a network address translator or a symmetric network address translators another symmetric network address translators.
15.如权利要求9所述的网络通讯系统,其特征在于,该第二网络地址转换器为一端受限圆锥型网络地址转换器或一对称式网络地址转换器且该第一网络地址转换器为另一对称式网络地址转换器。 15. The network communication system of claim 9 and the first network address translator claim, wherein the second network address translator restricted cone end to a network address translator or a symmetric network address translators another symmetric network address translators.
16.如权利要求9所述的网络通讯系统,其特征在于,在判断是否存有用于该第一群组的终端与该第二群组的终端之间的一可利用联机之前,该第一终端判断该第一网络地址转换器与该第二网络地址转换器是否分别为一完全圆锥型网络地址转换器、一受限圆锥型网络地址转换器、一端受限圆锥型网络地址转换器或一对称式网络地址转换器, 其中当该第一网络地址转换器与该第二网络地址转换器分别为该完全圆锥型网络地址转换器、该受限圆锥型网络地址转换器或该端受限圆锥型网络地址转换器时,则该第一终端与该第二终端使用一第二联机模式来建立该第一终端与该第二终端之间的该点对点联机, 其中当该第一网络地址转换器与该第二网络地址转换器的其中之一为该对称式网络地址转换器且另一为该完全圆锥型网络地址转换器或该受限圆锥型网络地 Prior to the communication system 16. The network as claimed in claim 9, wherein, in determining whether there may utilize a connection between the terminal and the terminal for the second group of the first group, the first the terminal determines whether the first network address translator and the second network address translator are a complete network address translator cone, restricted cone a network address translator, one end of the restricted cone or a network address translator symmetric network address translator, wherein when the first network address translator and the second network address translator for each complete network address translator cone, restricted cone of the network address translator or the end of the restricted cone when the network address translator, the first terminal and the second terminal using a second connection mode to establish the connection point between the first terminal and the second terminal, wherein when the first network address translator one of the second network address translator, wherein for the symmetric network address translator and the other for the full cone or network address translator to the network restricted cone 转换器时,则该第一终端与该第二终端使用该第二联机模式来建立该第一终端与该第二终端之间的该点对点联机, 其中该第二联机模式为一端口号猜测模式或一打孔模式。 When the converter, the first terminal and the second terminal using the second connection mode to establish the connection point between the first terminal and the second terminal, wherein the second connection mode is a mode to a port number to guess or a puncturing pattern.
CN 200910206321 2009-10-13 2009-10-13 Network penetrating method and network communication system CN102045409B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200910206321 CN102045409B (en) 2009-10-13 2009-10-13 Network penetrating method and network communication system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 200910206321 CN102045409B (en) 2009-10-13 2009-10-13 Network penetrating method and network communication system

Publications (2)

Publication Number Publication Date
CN102045409A CN102045409A (en) 2011-05-04
CN102045409B true CN102045409B (en) 2013-05-01

Family

ID=43911167

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 200910206321 CN102045409B (en) 2009-10-13 2009-10-13 Network penetrating method and network communication system

Country Status (1)

Country Link
CN (1) CN102045409B (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI508495B (en) * 2013-04-10 2015-11-11 D Link Corp
TWI493924B (en) * 2013-04-10 2015-07-21 D Link Corp
CN104125201A (en) * 2013-04-26 2014-10-29 达创科技股份有限公司 Communication transmission system and method
CN104754068B (en) * 2013-12-30 2019-02-05 三亚中兴软件有限责任公司 The recognition methods of NAT environmental form and device
CN104243629B (en) * 2014-09-24 2017-11-03 浙江宇视科技有限公司 Nat one kind of device type intercommunication method and system based on
CN104581444A (en) * 2015-01-08 2015-04-29 上海伟视清数字技术有限公司 Building intercom system
TW201709700A (en) * 2015-08-25 2017-03-01 財團法人資訊工業策進會 Signaling control system and method for use in NAT traversal system
CN105430066A (en) * 2015-11-06 2016-03-23 浪潮软件集团有限公司 Tax control equipment interconnection method based on P2P technology

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101431511A (en) 2007-11-09 2009-05-13 友讯科技股份有限公司 Method for penetrating fire wall and establishing on-line channel between network terminal apparatus
CN101478505A (en) 2009-01-23 2009-07-08 建汉科技股份有限公司 Method for establishing network system and network connection between network appliances of different private networks

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100930037B1 (en) * 2007-12-17 2009-12-07 한국전자통신연구원 Network Address Translation simulation method and system
US7856506B2 (en) * 2008-03-05 2010-12-21 Sony Computer Entertainment Inc. Traversal of symmetric network address translator for multiple simultaneous connections

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101431511A (en) 2007-11-09 2009-05-13 友讯科技股份有限公司 Method for penetrating fire wall and establishing on-line channel between network terminal apparatus
CN101478505A (en) 2009-01-23 2009-07-08 建汉科技股份有限公司 Method for establishing network system and network connection between network appliances of different private networks

Also Published As

Publication number Publication date
CN102045409A (en) 2011-05-04

Similar Documents

Publication Publication Date Title
Holdrege et al. Protocol complications with the IP network address translator
Singh et al. Peer-to-peer internet telephony using SIP
CA2470013C (en) Transport system for instant messaging
US8862684B2 (en) Method and apparatus for remotely controlling a computer with peer-to-peer command and data transfer
JP4276568B2 (en) Router and sip server
CN101465850B (en) Control of transmission interface of SIP response message
JP4083737B2 (en) Peer-to-peer network communication using network address translation (nat)
US7684397B2 (en) Symmetric network address translation system using STUN technique and method for implementing the same
CN101668051B (en) Method and apparatus for facilitating peer-to-peer application communication
CN1327355C (en) Address changing device, message treatment method and apparatus
JP5797739B2 (en) Method and system for reliable protocol tunneling through Http
EP1368947B1 (en) Addressing method and system for using an anycast address
JP4579934B2 (en) Addressing method and apparatus for establishing a Host Identity protocol between a legacy node and hip node (hip) connected
CN100531229C (en) Generic external proxy
Guha et al. NUTSS: A SIP-based approach to UDP and TCP network connectivity
US8356103B2 (en) NAT traversal for media conferencing
US7729366B2 (en) Method, apparatus and system for network mobility of a mobile communication device
JP4000331B2 (en) System for port mapping of network
US9137027B2 (en) Bootstrapping in peer-to-peer networks with network address translators
US8316134B2 (en) File server device arranged in a local area network and being communicable with an external server arranged in a wide area network
US8055771B2 (en) Network traversal method for establishing connection between two endpoints and network communication system
US9497168B2 (en) Method and apparatus for supporting communications between a computing device within a network and an external computing device
US8082324B2 (en) Method of establishing a tunnel between network terminal devices passing through firewall
JP2013524632A (en) Administration and stream transport protocol of the network communication between the network nodes
KR20100117651A (en) Traversal of symmetric network address translator for multiple simultaneous connections

Legal Events

Date Code Title Description
C06 Publication
C10 Request of examination as to substance
C14 Granted