CN103152360A - Method for visitors to access network based on wireless router - Google Patents
Method for visitors to access network based on wireless router Download PDFInfo
- Publication number
- CN103152360A CN103152360A CN2013100975204A CN201310097520A CN103152360A CN 103152360 A CN103152360 A CN 103152360A CN 2013100975204 A CN2013100975204 A CN 2013100975204A CN 201310097520 A CN201310097520 A CN 201310097520A CN 103152360 A CN103152360 A CN 103152360A
- Authority
- CN
- China
- Prior art keywords
- ssid
- address
- access
- gust
- host
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
A method for visitors to access network based on a wireless router comprises the following steps of: dividing a service set identifier (SSID) into an HOST SSID and a GUST SSID; building a dynamic host configuration protocol 1 (DHCP0) of a first DHCP server and a DHCP1 of a second DHCP server, wherein the DHCP0 is used for distributing an internet protocol (IP) address to the HOST SSID, the DHCP1 is used for distributing the IP address to the GUST SSID, and the address pools of the DHCP0 and the DHCP1 are two different network segments; and adding rules: allocating an address to the DHCP0 through a restriction source IP, and allocating an address to the DHCP1 through an access target IP. After the method is adopted, the HOST SSID and GUST SSID access terminals respectively belong to two different network segments, based on the adding rules, when the GUST SSID access terminal accesses the HOST SSID access terminal, the wireless router discards a data packet, so that the GUST SSID access terminal cannot access the HOST SSID access terminal, the HOST SSID access terminal is protected, and the access right of the GUST SSID access terminal is restricted.
Description
Technical field
The present invention relates to networking technology area, particularly relate to a kind of method of the guest access network based on wireless router.
Background technology
In prior art, router is set up a Dynamic Host Configuration Protocol server, be used for to give the distributing IP address of accessing terminal, and terminal can access with wired or wireless mode, and the terminal of all accesses can be accessed resource-sharing mutually at the same network segment.When limiting some access rights that access terminal, the network management personnel faces the risk of an acid test and secure context, has also increased management cost.
Summary of the invention
Based on this, be necessary to provide a kind of method of the guest access network based on wireless router, visitor's access rights are limited.
A kind of method of the guest access network based on wireless router comprises:
SSID is divided into two kinds of HOST SSID and GUST SSID;
Set up the first Dynamic Host Configuration Protocol server DHCP0 and the second Dynamic Host Configuration Protocol server DHCP1, DHCP0 is used for to HOST SSID distributing IP address, and DHCP1 is used for to GUST SSID distributing IP address, and the address pool of DHCP0 and DHCP1 is two different network segments;
Add rule, restriction source IP is that the address access purpose IP that DHCP0 distributes is the address that DHCP1 distributes.
In embodiment, also comprise therein:
GUST SSID is encrypted, to prevent uncorrelated personnel's access.
Therein in embodiment, described interpolation rule, restriction source IP is that the address access purpose IP that DHCP0 distributes is that the address that DHCP1 distributes is specially:
Add the filter rule, restriction source IP is that the address access purpose IP that DHCP0 distributes is the address that DHCP1 distributes.
In embodiment, also comprise therein:
For wireless router adds the router rule.
After adopting method of the present invention; HOST SSID and GUST SSID access terminal and adhere to two different network segments separately; based on the rule of adding; when GUST SSID accesses terminal access HOST SSID when accessing terminal; the wireless router packet discard; GUST SSID is accessed terminal to access HOST SSID to access terminal, protected HOST to access terminal and limited the access rights that GUST SSID accesses terminal.
Description of drawings
Fig. 1 is based on the method flow diagram of the guest access network of wireless router in the embodiment of the present invention;
Fig. 2 is based on the method flow diagram of the guest access network of wireless router in another embodiment of the present invention.
Embodiment
In order to make purpose of the present invention, technical scheme and advantage clearer, below in conjunction with drawings and Examples, the present invention is described in more detail.Should be appreciated that specific embodiment described herein only in order to explain the present invention, is not intended to limit the present invention.
Consult Fig. 1, the method based on the guest access network of wireless router of a kind of execution mode provided by the invention comprises:
Step S101 is divided into two kinds of HOST SSID and GUST SSID with SSID;
Wireless router SSID type is divided into HOST SSID and GUST SSID, with the difference access rights.HOST SSID is used for using to the terminal of super-ordinate right, and GUST SSID user is used for using to the visitor, and visitor's access rights are more limited, can not access the terminal of HOST SSID.
Step S102 sets up the first Dynamic Host Configuration Protocol server DHCP0 and the second Dynamic Host Configuration Protocol server DHCP1, and DHCP0 is used for to HOST SSID distributing IP address, and DHCP1 is used for to GUST SSID distributing IP address, and the address pool of DHCP0 and DHCP1 is two different network segments;
Two Dynamic Host Configuration Protocol server are respectively HOST SSID and GUST SSID access terminal distributing IP address, and HOST SSID and GUST SSID access terminal IP adheres to two different network segments separately in the address.
Step S103 adds rule, and restriction source IP is that the address access purpose IP that DHCP0 distributes is the address that DHCP1 distributes.Preferably, adding rule is the filter rule.
When GUST SSID accesses terminal access HOST SSID when accessing terminal, wireless router is based on the rule of adding, and packet discard accesses terminal GUST SSID can't to access HOST SSID to access terminal.
Step S104 is for wireless router adds routing rule.
The function that router is the most basic, the function of the judgement network address and selection selecting paths makes HOST SSID be connected with GUST SSID and can complete other connections, for example accesses outer net.
In a preferred embodiment, also comprise based on the method for the guest access network of wireless router GUST SSID is encrypted, to prevent the step of uncorrelated personnel's access.When GUST SSID is the SSID that opens, be in the state that any terminal can access.In order to prevent that uncorrelated personnel from will accessing, rationally utilize Internet resources, GUST SSID is encrypted, key for example is set.
In conjunction with Fig. 2, the present invention will be further explained.SSID is divided into HOST SSID and GUST SSID, access terminal respectively by DHCP0, DHCP1 distributing IP address for HOST SSID and GUST SSID, for example, DHCP0 is assigned to the 192.168.0.0 network segment to HOST SSID access device, and DHCP1 is assigned to the 192.168.169.0 network segment to GUST SSID access device.Wireless router adds rule, and restriction source IP is that the address access purpose IP that DHCP0 distributes is the address that DHCP1 distributes.For example the GUST SSID of the 192.168.169.0 network segment accesses terminal the HOST SSID of the access 192.168.0.0 network segment when accessing terminal, and packet discard can't be completed access.But HOST SSID and GUST SSID access terminal and can access outer net based on routing rule.
After adopting method of the present invention; HOST SSID and GUST SSID access terminal and adhere to two different network segments separately; based on the rule of adding; when GUST SSID accesses terminal access HOST SSID when accessing terminal; the wireless router packet discard; GUST SSID is accessed terminal to access HOST SSID to access terminal, protected HOST to access terminal and limited the access rights that GUST SSID accesses terminal.
The above embodiment has only expressed several execution mode of the present invention, and it describes comparatively concrete and detailed, but can not therefore be interpreted as the restriction to the scope of the claims of the present invention.Should be pointed out that for the person of ordinary skill of the art, without departing from the inventive concept of the premise, can also make some distortion and improvement, these all belong to protection scope of the present invention.Therefore, the protection range of patent of the present invention should be as the criterion with claims.
Claims (4)
1. the method based on the guest access network of wireless router, is characterized in that, comprising:
SSID is divided into two kinds of HOST SSID and GUST SSID;
Set up the first Dynamic Host Configuration Protocol server DHCP0 and the second Dynamic Host Configuration Protocol server DHCP1, DHCP0 is used for to HOST SSID distributing IP address, and DHCP1 is used for to GUST SSID distributing IP address, and the address pool of DHCP0 and DHCP1 is two different network segments;
Add rule, restriction source IP is that the address access purpose IP that DHCP0 distributes is the address that DHCP1 distributes.
2. the method for the guest access network based on wireless router according to claim 1, is characterized in that, also comprises:
GUST SSID is encrypted, to prevent uncorrelated personnel's access.
3. the method for the guest access network based on wireless router according to claim 1, is characterized in that, described interpolation rule, and restriction source IP is that the address access purpose IP that DHCP0 distributes is that the address that DHCP1 distributes is specially:
Add the filter rule, restriction source IP is that the address access purpose IP that DHCP0 distributes is the address that DHCP1 distributes.
4. the method based on the guest access network of wireless router, is characterized in that, also comprises:
For wireless router adds the router rule.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013100975204A CN103152360A (en) | 2013-03-25 | 2013-03-25 | Method for visitors to access network based on wireless router |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013100975204A CN103152360A (en) | 2013-03-25 | 2013-03-25 | Method for visitors to access network based on wireless router |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103152360A true CN103152360A (en) | 2013-06-12 |
Family
ID=48550222
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2013100975204A Pending CN103152360A (en) | 2013-03-25 | 2013-03-25 | Method for visitors to access network based on wireless router |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103152360A (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103475667A (en) * | 2013-09-24 | 2013-12-25 | 小米科技有限责任公司 | Method, device and system for controlling access router |
| CN104038402A (en) * | 2014-06-11 | 2014-09-10 | 普联技术有限公司 | Method for realizing visitor network, and wireless router |
| CN105423481A (en) * | 2015-10-30 | 2016-03-23 | 广东美的制冷设备有限公司 | Air conditioner control method and system based on temporary operating authorization |
| CN105636029A (en) * | 2015-06-30 | 2016-06-01 | 巫立斌 | Wireless network safety protection method |
| CN106792679A (en) * | 2016-11-25 | 2017-05-31 | 迈普通信技术股份有限公司 | A kind of wireless communications method and system |
| CN107302543A (en) * | 2017-08-02 | 2017-10-27 | 福建星瑞格软件有限公司 | A kind of wireless LAN safety access management method and device |
| CN115802361A (en) * | 2022-11-28 | 2023-03-14 | 广州通则康威智能科技有限公司 | Network management and control method, device, equipment and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101605077A (en) * | 2008-06-10 | 2009-12-16 | 上海贝尔阿尔卡特股份有限公司 | A kind of providing by the WiFi network moved method and the device thereof that inserts |
| CN101909298A (en) * | 2010-07-15 | 2010-12-08 | 优视科技有限公司 | Secure access control method and device for wireless network |
| CN102006684A (en) * | 2010-12-03 | 2011-04-06 | 成都飞鱼星科技开发有限公司 | Wireless router with guest network function and implementation method thereof |
| CN102547708A (en) * | 2012-02-22 | 2012-07-04 | 深圳市共进电子股份有限公司 | Method for isolating wireless virtual access points |
-
2013
- 2013-03-25 CN CN2013100975204A patent/CN103152360A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101605077A (en) * | 2008-06-10 | 2009-12-16 | 上海贝尔阿尔卡特股份有限公司 | A kind of providing by the WiFi network moved method and the device thereof that inserts |
| CN101909298A (en) * | 2010-07-15 | 2010-12-08 | 优视科技有限公司 | Secure access control method and device for wireless network |
| CN102006684A (en) * | 2010-12-03 | 2011-04-06 | 成都飞鱼星科技开发有限公司 | Wireless router with guest network function and implementation method thereof |
| CN102547708A (en) * | 2012-02-22 | 2012-07-04 | 深圳市共进电子股份有限公司 | Method for isolating wireless virtual access points |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103475667A (en) * | 2013-09-24 | 2013-12-25 | 小米科技有限责任公司 | Method, device and system for controlling access router |
| CN104038402A (en) * | 2014-06-11 | 2014-09-10 | 普联技术有限公司 | Method for realizing visitor network, and wireless router |
| CN105636029A (en) * | 2015-06-30 | 2016-06-01 | 巫立斌 | Wireless network safety protection method |
| CN105423481A (en) * | 2015-10-30 | 2016-03-23 | 广东美的制冷设备有限公司 | Air conditioner control method and system based on temporary operating authorization |
| CN105423481B (en) * | 2015-10-30 | 2018-02-06 | 广东美的制冷设备有限公司 | A kind of air conditioning control method and system based on interim operating right |
| CN106792679A (en) * | 2016-11-25 | 2017-05-31 | 迈普通信技术股份有限公司 | A kind of wireless communications method and system |
| CN107302543A (en) * | 2017-08-02 | 2017-10-27 | 福建星瑞格软件有限公司 | A kind of wireless LAN safety access management method and device |
| CN115802361A (en) * | 2022-11-28 | 2023-03-14 | 广州通则康威智能科技有限公司 | Network management and control method, device, equipment and storage medium |
| CN115802361B (en) * | 2022-11-28 | 2023-08-11 | 广州通则康威智能科技有限公司 | Network management and control method, device, equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11785466B2 (en) | Method and system for IoT code and configuration using smart contracts | |
| CN103152360A (en) | Method for visitors to access network based on wireless router | |
| Liu et al. | Efficient naming, addressing and profile services in Internet-of-Things sensory environments | |
| JP2020535744A (en) | Controlled guest access to WI-FI network | |
| US10142159B2 (en) | IP address allocation | |
| CN106936804B (en) | Access control method and authentication equipment | |
| US20170118127A1 (en) | Systems and Methods of Virtualized Services | |
| KR20160122992A (en) | Integrative Network Management Method and Apparatus for Supplying Connection between Networks Based on Policy | |
| US20130028176A1 (en) | Wireless transmission of data packets based on client associations | |
| US20160100356A1 (en) | Method and controller for implementing wireless network cloud | |
| US11102169B2 (en) | In-data-plane network policy enforcement using IP addresses | |
| CN102611597A (en) | Method for accessing internet through broadband in free of inputting account and password in different family environments | |
| WO2017219748A1 (en) | Method and device for access permission determination and page access | |
| TW201446029A (en) | Localizing a multicast service | |
| CN103036810A (en) | Outer network access control method based on multiple outer network exits and access equipment | |
| CN105490995A (en) | Method and device for forwarding message by NVE in NVO3 network | |
| CN106027491B (en) | Separated links formula communication processing method and system based on isolation IP address | |
| CN109617753A (en) | A kind of platform management method, system and electronic equipment and storage medium | |
| CN102281189B (en) | Service implementation method and device based on private attribute of third-party equipment | |
| ES2388928T3 (en) | Procedure and equipment for controlling access to multicast IP streams | |
| CN104253798A (en) | Network security monitoring method and system | |
| Gentile et al. | A Survey on the Implementation and Management of Secure Virtual Private Networks (VPNs) and Virtual LANs (VLANs) in Static and Mobile Scenarios | |
| CN111885044A (en) | Method, device, equipment and storage medium for configuring multiple network cards of cloud host | |
| KR101690498B1 (en) | Method for setting network configuration and switch and computer-readable recording medium using the same | |
| CN104917660A (en) | VLAN (virtual local area network) service division network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20130612 |