CN102487328A - Method and system for communication between network manager and network element - Google Patents
Method and system for communication between network manager and network element Download PDFInfo
- Publication number
- CN102487328A CN102487328A CN2010105702708A CN201010570270A CN102487328A CN 102487328 A CN102487328 A CN 102487328A CN 2010105702708 A CN2010105702708 A CN 2010105702708A CN 201010570270 A CN201010570270 A CN 201010570270A CN 102487328 A CN102487328 A CN 102487328A
- Authority
- CN
- China
- Prior art keywords
- network
- vpn
- webmaster
- network element
- gateway
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Telephonic Communication Services (AREA)
Abstract
The invention discloses a method and a system for communication between a network manager and a network element. The system comprises the network manager, one or more network elements positioned in the same network, and a virtual private network (VPN) gateway, wherein the VPN gateway is arranged in the network and is communicated with the one or more network elements in the network through the network; and the VPN gateway is used for providing VPN access to the network manager and creating VPN connection between the network manager and the network. The effect of reducing cost in network management and maintenance is achieved through the method and the system.
Description
Technical field
The present invention relates to the communications field, the method and system that communicate in particular to a kind of webmaster and network element.
Background technology
At present; Communication equipment; Especially be placed in the optical communication network equipment of operator's machine room; Its way to manage is fairly simple, and its management mainly is a dual mode: a kind of be webmaster manager (be called for short webmaster or Manager) through local area network with communication equipment network element (abbreviation network element or Agent) thus communicate supervising the network, when network breaks down, directly safeguard and arrange barrier to webmaster machine room or network element locality; Another kind is between webmaster and network element, to set up special line; Come managed network element through special line, wherein special line is meant to making the special fixing communication port of setting up of managing network element, is used for webmaster network element is administered and maintained; Special line needs leased line or fixed investment, and is with high costs.
Above-mentioned which kind of mode no matter; All (here " network " institute's wide area network that refers to or local area network (LAN) for example, all have two local area network (LAN)s in A area and B area for certain company within same network for webmaster and network element; But externally; The said firm is again the local area network (LAN) of an integral body, and in certain zone, it is wide area network that the internal network of the said firm can become).But, when webmaster and network element are not within same network, can't communicate by letter between webmaster and the network element.In this case, the telemanagement like network element just can't realize with safeguarding.
Summary of the invention
Main purpose of the present invention is the method and system that provide a kind of webmaster and network element to communicate, to address the above problem at least.
According to an aspect of the present invention, the system that provides a kind of webmaster and network element to communicate comprises: webmaster, the one or more network elements that are positioned at consolidated network, VPN vpn gateway; Wherein, Vpn gateway is arranged in the said network, and through the one or more net element communications in said network and the said network; Said vpn gateway is used for providing VPN to insert to said webmaster, and the VPN that sets up between said webmaster and the said network connects.
Preferably, said vpn gateway allows said webmaster to set up said VPN connection through dialing.
Preferably, said vpn gateway is used for that also said webmaster is dialled in employed long-distance user and carries out authentication.
Preferably, said webmaster is used for connecting through said VPN to be operated and manages the network element in the said network, wherein, said operation and management comprise following one of at least: configuration, monitoring, upgrading, safeguard.
Preferably, said webmaster is positioned at outside the said network.
According to another aspect of the present invention; The method that also provides a kind of webmaster and network element to communicate; Comprise: said webmaster is set up VPN through the VPN vpn gateway with the network at said network element place and is connected, and wherein, said vpn gateway is arranged in the network at said network element place; Said webmaster communicates through the network element in said VPN connection and the said network.
Preferably, allow the long-distance user to set up through dialing under the situation of said VPN connection at said vpn gateway, said webmaster dialing is set up said VPN through said vpn gateway and is connected.
Preferably, said webmaster is set up VPN through the network at said vpn gateway and said network element place and is connected and comprises: said webmaster use long-distance user dials in; Said vpn gateway receives said long-distance user and dials in and carry out authentication, and after the authentication success, sets up said VPN connection.
Preferably; Said webmaster through said VPN connect with said network in network element communicate and comprise: said webmaster is connected through said VPN to be operated and manages the network element in the said network; Wherein, said operation and management comprise following one of at least: configuration, monitoring, upgrading, safeguard.
Preferably, said webmaster is positioned at outside the said network.
Through the present invention, adopted webmaster to set up VPN with the network at network element place and be connected through VPN (Virtual Private Network abbreviates VPN as) gateway, wherein, vpn gateway is arranged in the network at this network element place; Webmaster through this VPN connect with this network in network element communicate, solved webmaster in the correlation technique there has been limitation in the communication and the management of network element, problem easily inadequately, and then reached the effect that reduces network management and maintenance cost.
Description of drawings
Accompanying drawing described herein is used to provide further understanding of the present invention, constitutes the application's a part, and illustrative examples of the present invention and explanation thereof are used to explain the present invention, do not constitute improper qualification of the present invention.In the accompanying drawings:
Fig. 1 is the method flow diagram that communicates according to the webmaster of the embodiment of the invention and network element;
Fig. 2 is the system architecture diagram that communicates according to the webmaster of the embodiment of the invention and network element;
Fig. 3 is the network architecture sketch map of the system that communicates according to the webmaster of the preferred embodiment of the present invention one and network element;
Fig. 4 is the network architecture sketch map of the system that communicates according to the webmaster of the preferred embodiment of the present invention two and network element;
Fig. 5 is the method flow diagram that communicates according to the webmaster of the preferred embodiment of the present invention two and network element.
Embodiment
Hereinafter will and combine embodiment to specify the present invention with reference to accompanying drawing.Need to prove that under the situation of not conflicting, embodiment and the characteristic among the embodiment among the application can make up each other.
Fig. 1 is the method flow diagram that communicates according to the webmaster of the embodiment of the invention and network element, and as shown in Figure 1, this method comprises the steps:
Step S102, webmaster set up VPN through vpn gateway with the network at network element place and are connected, and wherein, vpn gateway is arranged in the network at network element place;
Step S104, webmaster communicates through the network element in VPN connection and this network.
Through above-mentioned steps, no matter whether webmaster and network element all can connect through VPN and communicate in consolidated network, thus solved webmaster and network element in the prior art not same network just can't communication problem.Need to prove, can solve through above-mentioned steps and be arranged in webmaster and the network element that two networks can not be communicated by letter, and no matter this network is local area network (LAN) or wide area network.
Preferably, when implementing, webmaster can be connected in network element through VPN and communicate, and realizes that webmaster connects through VPN the network element in the network is operated and managed, and for example, can carry out configuration, monitoring, upgrading, maintenance etc. to network element.Need to prove; Through the VPN ways of connecting, thereby make webmaster can be arranged in any position of network, for example; Webmaster is positioned at outside the network at network element place; Certainly, webmaster and network element also can be at consolidated networks, can improve fail safe if adopt this moment VPN to connect to communicate with directly communicating to compare through network.The remote network element that through this preferred embodiment, can realize the across a network of webmaster administers and maintains.
The access way of vpn gateway has a variety of, and dialing is exactly wherein a kind of, and the mode that when implementing, can preferably dial for example, allows the long-distance user to set up through dialing under the situation that VPN connects at vpn gateway, and the webmaster dialing is set up VPN through vpn gateway and connected.Certainly, when using dialing to set up the VPN connection, in order to improve fail safe, after webmaster use long-distance user dialled in, vpn gateway can be dialled in the long-distance user and carry out authentication, after the authentication success, set up VPN again and connected.
Fig. 2 is the system architecture diagram that communicates according to the webmaster of the embodiment of the invention and network element; As shown in Figure 2, this system comprises: webmaster 22 and the one or more network elements 24 that are positioned at consolidated network also comprise: vpn gateway 26; Be arranged in this network; And through the net element communication in this network and this network, this vpn gateway 26 is used for providing VPN to insert to webmaster 22, and the VPN that sets up between webmaster 22 and this network connects.
Preferably, vpn gateway 26 allows webmaster to set up the VPN connection through dialing.Vpn gateway 26 is used for that also webmaster is dialled in employed long-distance user and carries out authentication.
Preferably, webmaster 22 is used for connecting through VPN to be operated and manages the network element in the network 24, wherein, operation and management comprise following one of at least: configuration, monitoring, upgrading, safeguard.Wherein, webmaster can be arranged in any position of network, and for example, webmaster is positioned at outside the network.
Below in conjunction with accompanying drawing preferred embodiment is described.
Preferred embodiment one
Fig. 3 is the network architecture sketch map of the system that communicates according to the webmaster of the preferred embodiment of the present invention one and network element, and as shown in Figure 3, this system comprises:
Webmaster manager (being webmaster) 101 is used for the communication equipment network element (being network element) 105,106,107 of far-end is administered and maintained, and specifically is embodied as one or one group of software that network element is operated, monitors, upgrades, safeguarded.Webmaster manager 101 can possess the function that dials in to VPN, perhaps utilizes third-party VPN dialing instrument to dial.
Local area network (LAN) (Local Area Network abbreviates LAN as) 102 or wide area network (Wide Area Network abbreviates WAN as) 102 or internet (Internet) network 102 are used for webmaster manager 101 is connected with vpn gateway 103.
LAN104, WAN104, promptly the network at vpn gateway and network element place is realized the interconnection of communication equipment network element and vpn gateway 103, has a communication equipment network element and vpn gateway in this network at least through this network interconnection.
In the communication equipment network that network element 105,106,107 (for example, being placed in the optical communication network equipment of operator's machine room, like SDH equipment) is formed, has a network element at least through network and vpn gateway 103 interconnection.Wherein, vpn gateway, with network element through LAN104 or WAN104 interconnection, with webmaster through another network LAN102 or WAN102 or internet 102 interconnection, and the network at the network at network element place and webmaster place only interconnects through vpn gateway.This common network comprises but is not limited to the Internet network.
Through said system, webmaster can link to each other with network element in other networks through vpn gateway, and the realization webmaster is to the communication and the control of rete mirabile network element.
Preferred embodiment two
Fig. 4 is the network architecture sketch map of the system that communicates according to the webmaster of the preferred embodiment of the present invention two and network element, and this system as shown in Figure 4 comprises:
Webmaster 201, it is through vpn server 203 (being used to realize the function of vpn gateway), come to network element 1,2 ..., N manages, for example be configured, monitor, upgrade, operation such as maintenance.
Internet 202, promptly local area network (LAN) 202 or wide area network 202 are the interference networks of webmaster 201 and vpn server 203, in this network, the IP address is 10.8.8.x, belongs to an internet.This network can be directly to link to each other through Ethernet netting twine, Ethernet switch or router, also can be through a plurality of switches or router series connection.
Ethernet switch 204, the physical equipment for vpn server 203 and network element are interconnected need to prove, can be directly with vpn server 203 with network element 205 usefulness Ethernet netting twines, perhaps one group of switch, router are connected.
Fig. 5 is the method flow diagram that communicates according to the webmaster of the preferred embodiment of the present invention two and network element, and as shown in Figure 3, this method comprises the steps:
Step S301, vpn server is disposed.Vpn gateway that allows the long-distance user to dial in through VPN of network internal administration at network element place for example disposes the relevant agreement of VPN, process or service, and the user name, authentication information of dialing etc. are set.
Step S302, the webmaster dialing logs on vpn server, sets up VPN.Be positioned at the webmaster of another local area network (LAN) or network or common network, dial in to vpn server, vpn server is set up the VPN between webmaster and network element after authentication is passed through.
Step S303, webmaster and network element realize telemanagement and maintenance through VPN traffic.After the VPN network was set up, webmaster carried out telemanagement and maintenance to network element.
Need to prove that webmaster is meant and is used for managed network element, comprise to network element be configured, monitor, upgrade, the software program of operation such as maintenance.
The foregoing description has been introduced the virtual private network technology on existing webmaster and the basis of network element through network service, webmaster and network element no longer are confined within the network on the one hand; Thereby the remote network element that realizes across a network administers and maintains, and for example realizes at home the network element of machine room administered and maintained another aspect; Can make full use of conventional network resources; Especially the Internet network reduces the operation cost that communication equipment administers and maintains, and has general applicability.
Obviously; It is apparent to those skilled in the art that above-mentioned each module of the present invention or each step can realize that they can concentrate on the single calculation element with the general calculation device; Perhaps be distributed on the network that a plurality of calculation element forms; Alternatively, they can be realized with the executable program code of calculation element, carried out by calculation element thereby can they be stored in the storage device; Perhaps they are made into each integrated circuit modules respectively, perhaps a plurality of modules in them or step are made into the single integrated circuit module and realize.Like this, the present invention is not restricted to any specific hardware and software combination.
The above is merely the preferred embodiments of the present invention, is not limited to the present invention, and for a person skilled in the art, the present invention can have various changes and variation.All within spirit of the present invention and principle, any modification of being done, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (10)
1. the system that communicates of webmaster and network element is characterized in that, comprising: webmaster, the one or more network elements that are positioned at consolidated network, VPN vpn gateway, wherein,
Vpn gateway is arranged in the said network, and through the one or more net element communications in said network and the said network, said vpn gateway is used for providing VPN to insert to said webmaster, and the VPN that sets up between said webmaster and the said network connects.
2. system according to claim 1 is characterized in that, said vpn gateway allows said webmaster to set up said VPN connection through dialing.
3. system according to claim 2 is characterized in that, said vpn gateway is used for that also said webmaster is dialled in employed long-distance user and carries out authentication.
4. system according to claim 1 is characterized in that,
Said webmaster is used for connecting through said VPN to be operated and manages the network element in the said network, wherein, said operation and management comprise following one of at least: configuration, monitoring, upgrading, safeguard.
5. according to each described system in the claim 1 to 4, it is characterized in that said webmaster is positioned at outside the said network.
6. the method that communicates of webmaster and network element is characterized in that, comprising:
Said webmaster is set up VPN through the VPN vpn gateway with the network at said network element place and is connected, and wherein, said vpn gateway is arranged in the network at said network element place;
Said webmaster communicates through the network element in said VPN connection and the said network.
7. method according to claim 6 is characterized in that, allows the long-distance user to set up through dialing under the situation of said VPN connection at said vpn gateway, and said webmaster dialing is set up said VPN through said vpn gateway and connected.
8. method according to claim 7 is characterized in that, said webmaster is set up VPN through the network at said vpn gateway and said network element place and is connected and comprises:
Said webmaster uses the long-distance user to dial in;
Said vpn gateway receives said long-distance user and dials in and carry out authentication, and after the authentication success, sets up said VPN connection.
9. method according to claim 6 is characterized in that, said webmaster communicates through the network element in said VPN connection and the said network and comprises:
Said webmaster connects through said VPN to be operated and manages the network element in the said network, wherein, said operation and management comprise following one of at least: configuration, monitoring, upgrading, safeguard.
10. according to each described method in the claim 6 to 9, it is characterized in that said webmaster is positioned at outside the said network.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010105702708A CN102487328A (en) | 2010-12-02 | 2010-12-02 | Method and system for communication between network manager and network element |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010105702708A CN102487328A (en) | 2010-12-02 | 2010-12-02 | Method and system for communication between network manager and network element |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102487328A true CN102487328A (en) | 2012-06-06 |
Family
ID=46152784
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010105702708A Pending CN102487328A (en) | 2010-12-02 | 2010-12-02 | Method and system for communication between network manager and network element |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102487328A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104052748A (en) * | 2014-06-24 | 2014-09-17 | 浪潮电子信息产业股份有限公司 | Safety configuration method of remote control server group |
| CN108449253A (en) * | 2018-05-18 | 2018-08-24 | 国网甘肃省电力公司经济技术研究院 | A kind of remote entry system and method based on communication network management equipment |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101022482A (en) * | 2007-01-22 | 2007-08-22 | 珠海市鸿瑞软件技术有限公司 | Dialing security gateway device |
| CN101136771A (en) * | 2006-11-30 | 2008-03-05 | 中兴通讯股份有限公司 | Method for remote maintenance bench to access operation maintenance module server |
| CN101296111A (en) * | 2007-04-29 | 2008-10-29 | 华为技术有限公司 | Method and system for automatically implementing link between management equipment and managed equipment |
| US20090287810A1 (en) * | 2001-10-05 | 2009-11-19 | Stonesoft Corporation | Virtual private network management |
| CN101834739A (en) * | 2010-03-26 | 2010-09-15 | 深圳市云海通讯股份有限公司 | Repeater network management system, and repeater network management communication method and device |
-
2010
- 2010-12-02 CN CN2010105702708A patent/CN102487328A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090287810A1 (en) * | 2001-10-05 | 2009-11-19 | Stonesoft Corporation | Virtual private network management |
| CN101136771A (en) * | 2006-11-30 | 2008-03-05 | 中兴通讯股份有限公司 | Method for remote maintenance bench to access operation maintenance module server |
| CN101022482A (en) * | 2007-01-22 | 2007-08-22 | 珠海市鸿瑞软件技术有限公司 | Dialing security gateway device |
| CN101296111A (en) * | 2007-04-29 | 2008-10-29 | 华为技术有限公司 | Method and system for automatically implementing link between management equipment and managed equipment |
| CN101834739A (en) * | 2010-03-26 | 2010-09-15 | 深圳市云海通讯股份有限公司 | Repeater network management system, and repeater network management communication method and device |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104052748A (en) * | 2014-06-24 | 2014-09-17 | 浪潮电子信息产业股份有限公司 | Safety configuration method of remote control server group |
| CN108449253A (en) * | 2018-05-18 | 2018-08-24 | 国网甘肃省电力公司经济技术研究院 | A kind of remote entry system and method based on communication network management equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104488238B (en) | The system and method controlled for cluster link aggregation in network environment | |
| CN105308913B (en) | For supporting Packet Data Unit (PDU) structure of distributed relay control protocol (DRCP) | |
| CN105099789B (en) | A kind of network element updating method and apparatus | |
| US7027564B2 (en) | System, method and apparatus for supporting E911 emergency services in a data communications network | |
| US20100014433A1 (en) | Method for processing multiple active devices in stacking system and stacking member device | |
| CN101217482B (en) | A method traversing NAT sending down strategy and a communication device | |
| CN103152282A (en) | Single logical network interface for advanced load balancing and fail-over functionality | |
| CN105359469A (en) | Hierarchical rule-based routing system | |
| CN102752187A (en) | Elastic network interface realization method and system | |
| JP5603526B2 (en) | Method for improving high availability in a secure telecommunication network and telecommunication network comprising a plurality of remote nodes | |
| CN101321086A (en) | Connecting equipment management method and connecting equipment, management equipment and communication system | |
| CN110213214A (en) | A kind of attack guarding method, system, device and storage medium | |
| CN108183849A (en) | Device management method, equipment and system based on L2TP | |
| CN109039764A (en) | A kind of network parameter configuration method of distributed memory system | |
| CN103069751B (en) | Network information processing system, Web information processing apparatus and information processing method | |
| CN102404185B (en) | A kind of realize the method and system that network carries out providing as business | |
| CN102035703A (en) | Family wireless network and implementation method thereof | |
| CN106302146A (en) | The convergence method of link aggregation and device | |
| CN102487328A (en) | Method and system for communication between network manager and network element | |
| CN101917414B (en) | BGP (Border Gateway Protocol) classification gateway device and method for realizing gateway function by using same | |
| CN109743316A (en) | Data transmission method, egress router, firewall and dual stage firewall system | |
| CN102045239B (en) | Implementation method and device of point-to-multipoint pseudowire protective network | |
| CN103685017B (en) | Message forwarding method, stack equipment and pile system in pile system | |
| CN104113434A (en) | Data center network redundancy control device by adopting multi-chassis cluster system | |
| CN101909021A (en) | BGP (Border Gateway Protocol) gateway equipment and method for realizing gateway on-off function by utilizing equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20120606 |