CN102547782B - A kind of connection control method and device - Google Patents
A kind of connection control method and device Download PDFInfo
- Publication number
- CN102547782B CN102547782B CN201010604794.4A CN201010604794A CN102547782B CN 102547782 B CN102547782 B CN 102547782B CN 201010604794 A CN201010604794 A CN 201010604794A CN 102547782 B CN102547782 B CN 102547782B
- Authority
- CN
- China
- Prior art keywords
- pretest
- terminal equipment
- described terminal
- network
- management system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The invention discloses a kind of connection control method, terminal equipment and terminal management system, comprising: after terminal equipment powers on, limit the network accessibility of self, and to terminal management system transmitting apparatus mark and active coding; After the device identification that terminal management system receives terminal equipment and active coding, device identification and the active coding of terminal equipment is searched from pre-configured device identification and active coding, if found, then issue the pretest dial data corresponding with the active coding of terminal equipment and device identification to terminal equipment; The pretest dial data that terminal equipment issues according to management system carries out pretest dialing, if pretest dial-up success, then starts network accessibility.The present invention can ensure management and the reasonable employment of Internet resources, is not increasing on the basis of hardware cost, greatly can facilitate the management of operator's equipment when commencing business, simultaneously robber's net phenomenon of effective limiting device.
Description
Technical field
The present invention relates to mobile communication technology field, particularly relate to a kind of connection control method, terminal equipment and terminal management system.
Background technology
As shown in Figure 1, conventional at present carrier network access scene comprises the following network equipment:
BAS Broadband Access Server (Broadband Remote Access Server, be called for short BRAS) be Novel connecting function Access Gateway towards broad band network application, it is positioned at the marginal layer of backbone network, can the IP/ATM(asynchronous transfer mode of completing user bandwidth) data access of net, current access means are mainly based on xDSL(digital subscriber line)/fast Ethernet technology (LAN)/broadband wireless data access (WLAN) etc., realize the broadband access network of business premises and neighbours living, based on IPSec(IP Security Protocol, IP security protocol) IP VPN(Virtual Private Network) service, build enterprises Intranet(intranet), support ISP(ISP) to application such as user's wholesale business.
Terminal management system (Integrated Terminal Management System, be called for short ITMS) be a subsystem of broadband services management platform, mutual by with service operation back-up system and other operation systems, realizes the management of business to broadband and terminal access device.
Authentication, authorization, accounting system (Authentication, Authorization and Accounting, AAA), providing a Consistent framework being used for being configured this three kinds of safety functions of authentication, authorization, accounting, is a kind of management system to broadband network safety.
Terminal equipment is the integrated access equipment towards domestic consumer, terminal use can be made to be linked into carrier network easily, the business such as Develop Data, voice.
Peer-peer protocol (Point-to-Point Protocol, PPP) agreement is a kind of data link layer protocol being provided in encapsulation, transport network layer packet on point-to-point link, PPP is a hierarchy (physical layer, link layer and network layer), multiple physical medium can be supported, support the negotiation of link, support the authentication of user, support multiple network layer protocol.
General operator is when commencing business, capital is distributed to terminal use and is accessed account, terminal use uses the terminal equipment access carrier network of specifying, operator is in order to ensure the Appropriate application of limited resources, just must take effective means, ensure that non-designated terminal equipment can not access the network of oneself; Simultaneously in order to guaranteed benefit maximizes, also must ensure the terminal equipment that operator specifies, other carrier network can not be linked into.Operator also needs the means being convenient to management terminal device, is beneficial to extensively carrying out of its business.
Summary of the invention
The technical problem to be solved in the present invention is to provide a kind of connection control method, terminal equipment and terminal management system, realize the binding of terminal equipment and operator, ensure that non-designated terminal equipment can not access carrier network, the terminal equipment that operator specifies, can not be linked into other network.
For solving the problems of the technologies described above, a kind of connection control method of the present invention, comprising:
After terminal equipment powers on, limit the network accessibility of self, and to terminal management system transmitting apparatus mark and active coding;
After the device identification that terminal management system receives terminal equipment and active coding, device identification and the active coding of terminal equipment is searched from pre-configured device identification and active coding, if found, then issue the pretest dial data corresponding with the active coding of terminal equipment and device identification to terminal equipment;
The pretest dial data that terminal equipment issues according to management system carries out pretest dialing, if pretest dial-up success, then starts network accessibility.
Further, the network accessibility that terminal equipment limits self comprises: provide network accessibility to the connection of ustomer premises access equipment wide area network management agreement (TR069) type, limits the connection of non-TR069 type.
Further, the device identification of terminal equipment and active coding are sent to terminal management system by the notice message in TR069 by terminal equipment.
Further, the pretest dialing that terminal equipment carries out is peer-peer protocol dialing.
Further, pretest dial data comprises account data, and terminal equipment carries out pretest dialing and comprises: search network, after searching network, initiates pretest dialing according to account data to the network searched.
Further, pretest dial data also comprises the mark of pretest network, the identification search network of terminal equipment usage forecastings examination network.
Further, the method also comprises:
Terminal equipment, after pretest dial-up success, also sends pretest success message to terminal management system;
Terminal management system after receiving pretest success message, to terminal equipment issuing service work order;
Terminal equipment is after receiving business work order, and access network, launches business.
Further, a kind of terminal equipment, comprising: registering unit and pretest dialing unit, wherein:
Registering unit, for after the power-up, limits the network accessibility of self, and to terminal management system transmitting apparatus mark and active coding; After pretest dialing unit pretest dial-up success, start network accessibility;
Pretest dialing unit, for the pretest dial data that receiving terminal management system issues, carries out pretest dialing according to this pretest dial data.
Further, the pretest dialing that pretest dialing unit carries out is peer-peer protocol dialing.
Further, a kind of terminal management system, comprising: dispensing unit, query unit and data transmission unit, wherein:
Dispensing unit, for the Equipments Setting device identification for authorizing, active coding and pretest dial data;
Query unit, for device identification and the active coding of receiving terminal apparatus, after the device identification receiving terminal equipment and active coding, searches device identification and the active coding of terminal equipment the device identification pre-configured from configuration module and active coding;
Data transmission unit, after the device identification of searching terminal equipment the query unit device identification pre-configured from configuration module and active coding and active coding, issue the pretest dial data corresponding with the active coding of terminal equipment and device identification to terminal equipment.
In sum, the present invention utilizes the negotiation of ppp link, make terminal equipment and carrier network effectively bind, management and the reasonable employment of Internet resources can be ensured, do not increasing on the basis of hardware cost, greatly can facilitate the management of operator's equipment when commencing business, simultaneously effectively robber's net phenomenon of limiting device, can the maximization of effective guarantee operator interests.
Accompanying drawing explanation
Fig. 1 is the networking schematic diagram of embodiment of the present invention application scenarios;
Fig. 2 is the flow chart of the connection control method of embodiment of the present invention;
Fig. 3 is the schematic diagram of the data that in embodiment of the present invention, ITMS is pre-configured;
Fig. 4 is the schematic diagram of the terminal equipment of embodiment of the present invention;
Fig. 5 is the schematic diagram of the terminal management system of embodiment of the present invention.
Embodiment
Present embodiment dials in the capability of PPP network by terminal equipment, is not increasing on the basis of hardware cost, before carrying out formal business, carries out pretest dialing, as PPP dialing, just carries out formal business after pretest dial-up success; Terminal equipment before pretest dial-up success, the ability of limiting network access, thus effectively ensure the binding of terminal equipment and carrier network.
In present embodiment, terminal equipment is before pretest dial-up success, the ability of limiting network access, but ensure that operator can remote operation control appliance, according to the service type of operator's definition, limit non-TR069(ustomer premises access equipment wide area network management agreement) connection of type, still provide access network capability to the connection of the TR069 type of management channels.
By the active coding of the preset terminal equipment of ITMS, device id and pretest dial data in present embodiment, terminal equipment reports self active coding and device id, and ITMS mates, and the pretest dial data of correspondence is handed down to terminal equipment.
In present embodiment, terminal equipment preserves pretest dial data when first time pretest, all can also use the pretest dial data preserved to carry out pretest by limiting network access capability at every turn, just can open network accessibility after pretest success after powering on.Operator can according to the change of business simultaneously, and the dial data of Descend Prediction examination at any time notification terminal equipment changing pretest dial data, initiates pretest flow process again.
Below with reference to the accompanying drawings, describe the specific embodiment of the present invention in detail, as shown in Figure 2, comprising:
Step 201:ITMS is that the equipment preset device of all mandates identifies (ID), active coding and pretest dial data;
Pretest dial data comprises account data, and comprises the mark of pretest network alternatively.
As shown in Figure 3, ITMS eachly puts the information such as the mark of installing standby preset device ID, active coding, account data and pretest network.
Step 202: when terminal equipment normally powers on first, the ability of limiting network access, user inputs active coding by the page or voice to terminal equipment, terminal equipment finishing equipment activation process;
Step 203: the INFORM(that terminal equipment sends TR069 to ITMS notices) message, carry active coding and device id in this message;
After step 204:ITMS receives INFORM message, search from pre-configured active coding and device id message the active coding and device id that carry INFORM message;
Step 205: if find the active coding and device id that carry in message, then to terminal equipment Descend Prediction examination request, carry pretest dial data;
Step 206: after terminal equipment receives the pretest request that ITMS issues, preserves pretest dial data, starts to carry out pretest;
Step 207: the pretest dial data that terminal equipment search is preserved, if do not comprise the mark of pretest network, then automatic search can with network connect, otherwise the identification search network of usage forecastings examination network, uses the account data that issues to carry out pretest dialing by BRAS and AAA;
Step 208: after terminal equipment pretest dial-up success, namely obtain IP address, disconnects pretest and connects, report pretest success message simultaneously to ITMS, and, start network accessibility;
After step 209:ITMS receives pretest success message, issue formal business work order to terminal equipment;
Step 210: after terminal equipment receives business work order, is linked in network, launches the operation of business.
Terminal equipment is follow-up power at every turn after, first all can limiting network access capability, and restart network accessibility after pretest success, start the operation of business.
The terminal equipment realized in present embodiment and the binding of carrier network, can be applied to the arbitrary equipment binding in ppp link, open the business that binding is relevant.Also can expand the certification and network accessibility that utilize other procotol simultaneously, realize similar binding.
Figure 4 shows that the terminal equipment of present embodiment, comprising: registering unit and pretest dialing unit, wherein:
Registering unit, for after the power-up, limits the network accessibility of self, and to terminal management system transmitting apparatus mark and active coding; After pretest dialing unit pretest dial-up success, start network accessibility;
Pretest dialing unit, for the pretest dial data that receiving terminal management system issues, carries out pretest dialing according to this pretest dial data, and this pretest dialing is peer-peer protocol dialing.
Figure 5 shows that the terminal management system of present embodiment, comprising: dispensing unit, query unit and data transmission unit, wherein:
Dispensing unit, for the Equipments Setting device identification for authorizing, active coding and pretest dial data;
Query unit, for device identification and the active coding of receiving terminal apparatus, after the device identification receiving terminal equipment and active coding, searches device identification and the active coding of terminal equipment the device identification pre-configured from configuration module and active coding;
Data transmission unit, after the device identification of searching terminal equipment the query unit device identification pre-configured from configuration module and active coding and active coding, issue the pretest dial data corresponding with the active coding of terminal equipment and device identification to terminal equipment.
Other functions of each functional unit in above-mentioned terminal equipment and terminal management apparatus please refer to the description of method content.
The foregoing is only the preferred embodiments of the present invention, be not limited to the present invention, for a person skilled in the art, the present invention can have various modifications and variations.Within the spirit and principles in the present invention all, any amendment done, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (10)
1. a connection control method, comprising:
After terminal equipment powers on, limit the network accessibility of self, and to terminal management system transmitting apparatus mark and active coding;
After the device identification that described terminal management system receives described terminal equipment and active coding, device identification and the active coding of described terminal equipment is searched from pre-configured device identification and active coding, if found, then issue the pretest dial data corresponding with the active coding of described terminal equipment and device identification to described terminal equipment;
The pretest dial data that described terminal equipment issues according to described terminal management system carries out pretest dialing, if pretest dial-up success, then starts described network accessibility;
Wherein, the method also comprises: described terminal equipment, after pretest dial-up success, also sends pretest success message to described terminal management system;
Described terminal management system after receiving described pretest success message, to described terminal equipment issuing service work order;
Described terminal equipment is after receiving described business work order, and access network, launches business;
The network accessibility that described terminal equipment limits self comprises: provide network accessibility to the connection of ustomer premises access equipment wide area network management agreement TR069 type, limit the connection of non-TR069 type.
2. the method for claim 1, is characterized in that, the device identification of described terminal equipment and active coding are sent to described terminal management system by the notice message in described TR069 by described terminal equipment.
3. the method for claim 1, is characterized in that, the described pretest dialing that described terminal equipment carries out is peer-peer protocol dialing.
4. method as claimed in claim 3, it is characterized in that, described pretest dial data comprises account data, and described terminal equipment carries out pretest dialing and comprises: search network, after searching network, initiate pretest dialing according to described account data to the network searched.
5. method as claimed in claim 4, it is characterized in that, described pretest dial data also comprises the mark of pretest network, and described terminal equipment uses the identification search network of described pretest network.
6. an access control apparatus, comprising: the first module, the second module and the 3rd module, wherein:
Described first module, after powering on, limits the network accessibility of self for making terminal equipment, and to terminal management system transmitting apparatus mark and active coding;
Described second module, after the device identification receiving described terminal equipment for making described terminal management system and active coding, device identification and the active coding of described terminal equipment is searched from pre-configured device identification and active coding, if found, then issue the pretest dial data corresponding with the active coding of described terminal equipment and device identification to described terminal equipment;
Described 3rd module, carries out pretest dialing for the pretest dial data making described terminal equipment issue according to described terminal management system, if pretest dial-up success, then starts described network accessibility;
Wherein,
Described 3rd module, also for making described terminal equipment after pretest dial-up success, sends pretest success message to described terminal management system;
Described second module, also for making described terminal management system after receiving described pretest success message, to described terminal equipment issuing service work order;
Described first module, also for making described terminal equipment after receiving described business work order, access network, launches business;
Described first module is that the network accessibility for making described terminal equipment limit self comprises: provide network accessibility to the connection of ustomer premises access equipment wide area network management agreement TR069 type, limit the connection of non-TR069 type.
7. device as claimed in claim 6, it is characterized in that, described first module, is for making described terminal equipment, by the notice message in described TR069, the device identification of described terminal equipment and active coding be sent to described terminal management system.
8. device as claimed in claim 6, is characterized in that, described 3rd module, is that the described pretest dialing for making described terminal equipment carry out is peer-peer protocol dialing.
9. device as claimed in claim 8, it is characterized in that, described 3rd module, that packet for making described pretest dial is containing account data, the described pretest dialing that described terminal equipment carries out comprises: search network, after searching network, initiate pretest dialing according to described account data to the network searched.
10. device as claimed in claim 9, is characterized in that, described 3rd module, and be the mark that data for making described pretest dial also comprise pretest network, described terminal equipment uses the identification search network of described pretest network.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010604794.4A CN102547782B (en) | 2010-12-24 | 2010-12-24 | A kind of connection control method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010604794.4A CN102547782B (en) | 2010-12-24 | 2010-12-24 | A kind of connection control method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102547782A CN102547782A (en) | 2012-07-04 |
| CN102547782B true CN102547782B (en) | 2015-10-21 |
Family
ID=46353484
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201010604794.4A Active CN102547782B (en) | 2010-12-24 | 2010-12-24 | A kind of connection control method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102547782B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9734694B2 (en) * | 2013-10-04 | 2017-08-15 | Sol Mingso Li | Systems and methods for programming, controlling and monitoring wireless networks |
| CN109640345A (en) * | 2018-12-28 | 2019-04-16 | 广东中兴新支点技术有限公司 | Network dialing method, device and electronic equipment |
| CN110941217B (en) * | 2019-11-29 | 2021-07-13 | 珠海优特智厨科技有限公司 | System and method for remotely assisting cooking |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101127782A (en) * | 2007-07-19 | 2008-02-20 | 中兴通讯股份有限公司 | Method for forceful implementation of portal service |
| CN101127631A (en) * | 2006-08-15 | 2008-02-20 | 华为技术有限公司 | Method and system for managing configuration of network devices |
| CN101242396A (en) * | 2008-03-18 | 2008-08-13 | 北京直真节点技术开发有限公司 | Zero-contact system and operation method for broadband access terminal service |
| CN101771692A (en) * | 2009-12-30 | 2010-07-07 | 华为终端有限公司 | Method, device and system for managing user terminal equipment region |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101699905A (en) * | 2009-10-30 | 2010-04-28 | 中兴通讯股份有限公司 | Wireless intelligent terminal, webmaster platform and management method by webmaster platform |
-
2010
- 2010-12-24 CN CN201010604794.4A patent/CN102547782B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101127631A (en) * | 2006-08-15 | 2008-02-20 | 华为技术有限公司 | Method and system for managing configuration of network devices |
| CN101127782A (en) * | 2007-07-19 | 2008-02-20 | 中兴通讯股份有限公司 | Method for forceful implementation of portal service |
| CN101242396A (en) * | 2008-03-18 | 2008-08-13 | 北京直真节点技术开发有限公司 | Zero-contact system and operation method for broadband access terminal service |
| CN101771692A (en) * | 2009-12-30 | 2010-07-07 | 华为终端有限公司 | Method, device and system for managing user terminal equipment region |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102547782A (en) | 2012-07-04 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7542455B2 (en) | Unlicensed mobile access (UMA) communications using decentralized security gateway | |
| JP4769815B2 (en) | Restricted WLAN access for unknown wireless terminals | |
| JP4802263B2 (en) | Encrypted communication system and gateway device | |
| EP2624525A1 (en) | Method, apparatus and virtual private network system for issuing routing information | |
| US20080095086A1 (en) | Method of deploying an access point for an ip-based wireless network | |
| CN105025044A (en) | Device control method and device control system | |
| CN103095654B (en) | Virtual local area network (VLAN) configuration method, wireless access point and network control point | |
| WO2013107136A1 (en) | Terminal access authentication method and customer premise equipment | |
| CN101600224A (en) | Wireless data card is supported the implementation method and the wireless data card of a plurality of PDP Contexts | |
| US20160278158A1 (en) | Methods for a link recovery of a wireless network and respective devices | |
| WO2014176964A1 (en) | Communication managing method and communication system | |
| WO2020048348A1 (en) | Data transmission method and system | |
| EP4096294A1 (en) | Route advertising method, network elements, system, and device | |
| CN101656964B (en) | The implementation method of Wi-Fi metropolitan area network and home gateway | |
| CN108207018A (en) | Wireless connection method and device | |
| CN102547782B (en) | A kind of connection control method and device | |
| US20080086549A1 (en) | Ppp access terminal, access service device and a method for getting an address of a provider server by the terminal | |
| EP2887586B1 (en) | A system and a method for bonding connections of an access device | |
| CN102595563A (en) | Telephone terminal with converged communication function and system as well as implementation method | |
| US10367658B2 (en) | Wireless network session establishment method and apparatus utilizing a virtual local area network label | |
| KR101504895B1 (en) | Separable charge system for byod service and separable charge method for data service | |
| JP5855987B2 (en) | Communication device and base station device | |
| CN114173316B (en) | Method, device and storage medium for establishing service connection | |
| JP2004040651A (en) | Communication method, communication device, terminal equipment and communication service providing server | |
| JP2002141934A (en) | Leased line vpn connection system and leased line vpn connection method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |