CN103220374B - A kind of method of client access network, device - Google Patents
A kind of method of client access network, device Download PDFInfo
- Publication number
- CN103220374B CN103220374B CN201210019018.7A CN201210019018A CN103220374B CN 103220374 B CN103220374 B CN 103220374B CN 201210019018 A CN201210019018 A CN 201210019018A CN 103220374 B CN103220374 B CN 103220374B
- Authority
- CN
- China
- Prior art keywords
- client
- network address
- information
- ipv4
- protocol stack
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The present invention implements to provide the methods, devices and systems of a kind of client access network, it is possible to distribute the network address for client accurately.The method includes: receive request of reaching the standard grade the first message that client sends;Authentication request message is sent, so that client is authenticated by certificate server to certificate server;Receiving the authentication response message that certificate server sends, if first kind information is IPv4 type of network address, carry the protocol stack information of client in authentication response message, protocol stack information includes the IPv4 network address classification of client;Being that client distributes the first kind network address according to authentication response message and first kind information, if first kind information is IPv4 type of network address, the first kind network address is the IPv4 network address of IPv4 network address classification instruction;Sending, to client, request response of reaching the standard grade first, request response of reaching the standard grade first carries the first kind network address.The embodiment of the present invention is suitable to communication technical field.
Description
Technical field
The present invention relates to communication technical field, particularly relate to the side of a kind of client access network
Method, device.
Background technology
Due to increasing rapidly of existing network client terminal quantity, existing IPv4 (Internet
Protocol version 4, Internet Protocol Version 4) the publicly-owned address of network will exhaust, therefore
Virtual network operator introduces NAT (Network Address Translation, network in a network
Address is changed) technology.NAT technology is a kind of private address to be converted into public ip address
Transformation technology so that some clients can be allocated private address, is come by NAT technology
Share a publicly-owned address of IPv4 such that it is able to solve the public ip address in existing network not
The problem of foot.
Due to the publicly-owned address shortage of the IPv4 of prior art, operator introduces IPv4 demesne
Location and IPv6 network address technology.Operator both can arrange the network of the client newly contracted
Address style is IPv6 (Internet Protocol version 6, IPv6) network
Address, it is also possible to the type of network address of the client of the new signing of agreement is the IPv4 network address,
The classification of the IPv4 network address of the client newly contracted can be arranged further, e.g.
The publicly-owned address of IPv4 or IPv4 private address.So in client to access server, example
Such as BRAS (Broadband Remote Access Server, Broadband Remote Access Server),
When the initiation request of reaching the standard grade distributes the IPv4 network address, owing to IPv4 address classes is unique, wide
Cannot be distinguished by out the signing of this client with RAS is the ground of which classification of IPv4
Location, so that access server cannot distribute the network address for client accurately.
Summary of the invention
Embodiments of the invention provide a kind of method of client access network, device, it is possible to district
Divide the IPv4 network address classification of client, thus distribute IPv4 network accurately for client
Address.
For reaching above-mentioned purpose, embodiments of the invention adopt the following technical scheme that
A kind of method of client access network, including:
Receiving request of reaching the standard grade the first message that described client sends, the described request of reaching the standard grade first disappears
Breath includes: the title of described client, password and described client request access server are
The first kind information of the network address of described client distribution;
Sending authentication request message to certificate server, described authentication request message includes described
The title of client, password and described first kind information, so that described certificate server pair
Described client is authenticated;
Receive the authentication response message that described certificate server sends, if described first kind information
It is IPv4 type of network address, described authentication response message carries the association of described client
View stack information, described protocol stack information includes the IPv4 network address classification of client;
It is the distribution of described client according to described authentication response message and described first kind information
The first kind network address, if described first kind information is IPv4 type of network address, institute
State the IPv4 network ground that the first kind network address is the classification instruction of the described IPv4 network address
Location;
Sending, to described client, request response of reaching the standard grade first, the described request of reaching the standard grade first rings
Message is answered to carry the described first kind network address.
A kind of method of client access network, including:
Receiving the authentication request message that access server sends, described authentication request message includes
The title of described client, password and described client ask described access server to be described visitor
The first kind information of the network address of family end distribution;
After described client is authenticated successfully, send authentication response to described access server
Message, if described first kind information is IPv4 type of network address, described authentication response disappears
Carrying the protocol stack information of described client in breath, described protocol stack information includes IPv4 net
Network address classes, so that described access server is according to described authentication response message and described
One type information is that described client distributes the first kind network address, if described first kind letter
Breath is IPv4 type of network address, and the described first kind network address is described IPv4 network ground
The IPv4 network address of location classification instruction.
A kind of device of client access network, including: receive unit, transmitting element and process
Unit;
Described reception unit, for receiving request of reaching the standard grade the first message that described client sends,
Described request message of reaching the standard grade first includes: the title of described client, password and described client
The first kind information of the network address that end asks described device to be the distribution of described client;
Described transmitting element, for sending authentication request message, described certification to certificate server
Request message includes the title of described client, password and described first kind information, so that
Obtain described certificate server described client is authenticated;
Described reception unit, the authentication response being additionally operable to receive the transmission of described certificate server disappears
Breath, if described first kind information is IPv4 type of network address, described authentication response message
In carry the protocol stack information of described client, described protocol stack information includes IPv4 network
Address classes;
Described processing unit, for according to described authentication response message and described first kind information
The first kind network address is distributed, if described first kind information is IPv4 for described client
Type of network address, the described first kind network address is that described IPv4 network address classification refers to
The IPv4 network address shown;
Described transmitting element, is additionally operable to send request response of reaching the standard grade first to described client and disappears
Breath, described request response of reaching the standard grade first carries the described first kind network address.
A kind of device of client access network, including: receive unit, processing unit and transmission
Unit;
Receive unit, for receiving the authentication request message that access server sends, described certification
Request message includes the title of described client, password and the request access service of described client
Device is the first kind information of the network address of described client distribution;
Processing unit, is used for the described authentication request message according to the reception of described reception unit to institute
State client to be authenticated;
Transmitting element, is used for after described client is authenticated successfully by described processing unit,
Authentication response message is sent, if described first kind information is IPv4 to described access server
Type of network address, carries the protocol stack letter of described client in described authentication response message
Breath, described protocol stack information includes IPv4 network address classification, so that described access service
Device is described client distribution the according to described authentication response message and described first kind information
One type network address, if described first kind information is IPv4 type of network address, described
The first kind network address is the IPv4 network address of described IPv4 network address classification instruction.
The method of client access network of embodiment of the present invention offer, device, certificate server
After to client certificate success, if client request access service is that client distributes IPv4
The network address, certificate server carries the protocol stack letter of client in authentication response message
Breath, this protocol stack information includes the IPv4 network address classification of client, and certificate server will
This authentication response message is sent to access server so that access server can distinguish client
IPv4 network address classification, accurately for client distribute the IPv4 network address.
Accompanying drawing explanation
In order to be illustrated more clearly that the technical scheme of the embodiment of the present invention, embodiment technology will be retouched below
In stating, the required accompanying drawing used is briefly described, it should be apparent that, the accompanying drawing in describing below is only
It is only some embodiments of the present invention, for those of ordinary skill in the art, is not paying creation
Property work on the premise of, it is also possible to obtain other accompanying drawing according to these accompanying drawings.
The method flow signal of the client access network that Fig. 1 provides for the embodiment of the present invention one
Figure;
The method flow signal of the client access network that Fig. 2 provides for the embodiment of the present invention two
Figure;
The simplification knot of the device of the client access network that Fig. 3 provides for the embodiment of the present invention three
Structure block diagram;
The simplification knot of the device of the client access network that Fig. 4 provides for the embodiment of the present invention four
Structure block diagram;
Fig. 5 is the extended attribute form schematic diagram of the client defined in the embodiment of the present invention.
Detailed description of the invention
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is entered
Row clearly and completely describes, it is clear that described embodiment is only a part of embodiment of the present invention,
Rather than whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not having
Have and make the every other embodiment obtained under creative work premise, broadly fall into present invention protection
Scope.
Embodiment one
A kind of method embodiments providing client access network, this method is from access
Server side illustrates, clear in order to illustrate, the single stack client described in the present embodiment or
Double stack clients refer to that client operation commercial treaty when signing determines the protocol stack information of client, example
The client of signing as new in operator's agreement is single stack IPv4 client, or single stack IPv6 client
End or double stack clients of support IPv4 and IPv6, the most also arranged the network of IPv4
Address classes.Even if client support IPv4 and the IPv6 network address, but these client label
Run commercial treaty time about determining client is IPv4 client, then the embodiment of the present invention is also considered as this
Client is single stack IPv4 client, includes the most as shown in Figure 1:
101, receive request of reaching the standard grade the first message that described client sends, described reach the standard grade first
Request message includes: the title of described client, password and the request of described client access clothes
Business device is the first kind information of the network address of described client distribution.
For example, above-mentioned request message of reaching the standard grade first includes the title of described client, close
Code and the first kind that described client request access server is the network address that client is distributed
Type information.Such as, type of network address includes IPv4 and the IPv6 network address, this client
Request access server is that the first kind information of the network address of client distribution can be
IPv4 or IPv6 type of network address.
102, sending authentication request message to certificate server, described authentication request message includes
There are the title of described client, password and described first kind information, so that described certification clothes
Described client is authenticated by business device.
For example, information when certificate server storage has client to contract, according to this client
Client is authenticated by the CAMEL-Subscription-Information of end.For example, this certificate server is by checking
The title of the client that this authentication request message includes and password whether with the signing of this client
Client name in information is the most consistent with password to be authenticated client.
103, the authentication response message that described certificate server sends is received, if the described first kind
Type information is IPv4 type of network address, carries described client in described authentication response message
The protocol stack information of end, described protocol stack information includes the IPv4 network address classification of client.
After certificate server is to the success of above-mentioned client certificate, send certification to this access server
Response message.No matter being the IPv4 client of single stack or double stack client, this client please
Ask access server be client distribution the IPv4 network address time, this authentication response message is taken
With the protocol stack information of this client, described protocol stack information includes the IPv4 net of client
Network address classes, such as IPv4 network address classification is IPv4 private address.For single stack
IPv6 client or double stack client, when this client request access server is client distribution
During the IPv6 network address, owing to access server need not when for the client distribution network address
Distinguish private address and publicly-owned address, so this certificate server can be in this authentication response message
In carry the protocol stack information of this client, it is also possible to do not carry the protocol stack letter of this client
Breath, this is not construed as limiting by the present embodiment.
During realizing, certificate server can define new extension in protocol stack information and belong to
Property carries the IPv4 network address classification of client, this extended attribute form as it is shown in figure 5,
The protocol stack value of information including type, length and the client of extended attribute.Wherein this extension belongs to
The total length of property is 6 bytes.Wherein, the type of this extended attribute takies first character joint,
For distinguishing other attribute, represent the protocol stack information that this extended attribute is client, this association
View stack information includes the classification information of the IPv4 that client supports.The length of extended attribute takies
One byte, value is 6, represents that the total length of this extended attribute is 6 bytes.Client
The protocol stack value of information occupies 4 bytes, for the network address class indicating this client to support
Type.For example, no matter it is single stack IPv4 client or double stack client, if this client
The protocol stack value of information of end is 1, is used for indicating operator's subscribed client to support IPv4 network ground
Location, and the network address classification of this client is the publicly-owned address of IPv4;If the association of this client
The view stack value of information is 2, is used for indicating operator's subscribed client to support the IPv4 network address, and
The network address classification of this client is IPv4 private address;If the protocol stack letter of this client
Breath value is 5, is used for indicating operator to arrange this client and supports the IPv6 network address, certainly should
Extended attribute can not also define the protocol stack value of information supporting the IPv6 network address, this
Bright embodiment is not construed as limiting.
104, it is described client according to described authentication response message and described first kind information
The distribution first kind network address, if described first kind information is IPv4 type of network address,
The described first kind network address is the IPv4 network ground of described IPv4 network address classification instruction
Location.
Such as, no matter it is the IPv4 client of single stack or double stack client, when this client
The first kind information of the network address that client distributed to by request access server is IPv4 net
During network address style, if the protocol stack carried in the authentication response message that receives of access server
The protocol stack value of information in information is 1, according to the agreement carried in the authentication response message received
Stack information and first kind information distribute the publicly-owned address of IPv4 to this client.No matter it is single stack
IPv6 client or double stack client, if this client request access server is distributed to
The first kind information of the network address of client is IPv6 type of network address, access service
Device directly distributes to this client according to this authentication response message and described first kind information
The IPv6 network address.
For example, for double stack clients, go up first to access server transmission in client
After line request message, access server is after client is assigned with the first kind network address, visitor
Family end again sends second to access server and reaches the standard grade request message, and access server can also be to
Certificate server sends authentication request message, and this client is recognized by request certificate server
Card.If after certificate server certification success, sending authentication response message to access server.If
The second request Second Type information that includes of message of reaching the standard grade is IPv4 type of network address, should
Carrying the protocol stack information of client in authentication response message, described protocol stack information includes visitor
The IPv4 network address classification of family end.
Such as, it is after client is assigned with the IPv6 network address at access server, client
The request access server distribution IPv4 network address again, certification asked again by access server
This client is authenticated by server, and sends certification to access server after the authentication has been successful
Response message, carries the protocol stack information of this client, this agreement in this authentication response message
Stack information includes the IPv4 network address classification of client.
105, send to described client and reach the standard grade first request response, described reach the standard grade first
Request response carries the described first kind network address.
For example, above-mentioned access server can be BRAS, above-mentioned certificate server
Can be that (Authentication, Authorization, Accounting verify, award AAA
Power, charging) server.
The method of the client access network that the embodiment of the present invention provides, certificate server is to visitor
After the end certification success of family, if client request access service is client distribution IPv4 network ground
During location, certificate server carries the protocol stack information of client in authentication response message, should
Protocol stack information includes the IPv4 network address classification information of client, and certificate server should
Authentication response message is sent to access server so that access server can distinguish client
IPv4 network address classification, distributes the IPv4 network address for client accurately.
Embodiment two,
A kind of method embodiments providing client access network, clear in order to illustrate
Chu, the single stack client described in the present embodiment or double stack client refer to that client is when signing
The protocol stack information of operator's subscribed client, the such as client of the new signing of operator's agreement are
Single stack IPv4 client, or single stack IPv6 client, or support double stacks of IPv4 and IPv6
Client, further operator can also arrange IPv4 network address classification.Even if client
Support IPv4 and the IPv6 network address, but during the signing of this client, client determined by operation commercial treaty
It is IPv4 client, then in the embodiment of the present invention, this client is single stack IPv4 client,
Concrete as in figure 2 it is shown, include:
201, access server receives request of reaching the standard grade the first message that described client sends, institute
State request message of reaching the standard grade first to include: the title of described client, password and described client
Request access server is the first kind information of the network address of described client distribution.
For example, above-mentioned request message of reaching the standard grade first includes the title of described client, close
Code and the first kind that described client request access server is the network address that client is distributed
Type information.Such as, type of network address includes IPv4 and the IPv6 network address, this client
Request access server be the first kind information of the network address of client distribution be IPv4 or
IPv6 type of network address.
202, access server sends authentication request message to certificate server, and described certification please
Message is asked to include the title of described client, password and described first kind information, so that
Described client is authenticated by described certificate server.
For example, information when certificate server storage has client to contract, according to this client
Client is authenticated by the CAMEL-Subscription-Information of end.For example, this certificate server is by checking
The title of the client that this authentication request message includes and password whether with the signing of this client
Client name in information is the most consistent with password to be authenticated client.
203, access server receives the authentication response message that described certificate server sends, if
Described client is double stack clients, and no matter first kind information is IPv4 type of network address
Or IPv6 type of network address, carries described protocol stack letter in described authentication response message
Ceasing the title with client and password, described protocol stack information includes: described client is double stacks
The IPv4 network address classification of client and client.
For example, during realizing, certificate server can when generating authentication response message
To define new extended attribute to carry the IPv4 network address classification of client, this extension belongs to
Personality formula is as it is shown in figure 5, include the protocol stack letter of the type of extended attribute, length and client
Breath value.Wherein the total length of this extended attribute is 6 bytes.Wherein, the class of this extended attribute
Type takies first character joint, for distinguishing other attribute, represents that this extended attribute is client
Protocol stack information, the protocol stack information of this client includes the class of the IPv4 that client supports
Other information, also includes that client is single stack client or the information of double stack client.Extension belongs to
The length of property takies a byte, and value is 6, represents that the total length of this extended attribute is 6 words
Joint.The protocol stack value of information of client occupies 4 bytes, for indicating this client to support
Type of network address.The protocol stack value of information of this client can be defined below, if this client
The protocol stack value of information be 1, be used for indicating operator's subscribed client to support IPv4 network ground
Location, and the network address classification of this client is the publicly-owned address of IPv4;If the association of this client
The view stack value of information is 2, is used for indicating operator's subscribed client to support the IPv4 network address, and
The network address classification of this client is IPv4 private address;If the protocol stack letter of this client
Breath value is 3, is used for indicating operator's subscribed client to support double stack client, wherein IPv4
Network address classification is the publicly-owned address of IPv4;If the protocol stack value of information of this client is 4, use
In instruction operator, subscribed client supports double stack client, wherein IPv4 network address classification
For IPv4 private address;If the protocol stack value of information of this client is 5, it is used for indicating client
It is single stack client, supports the IPv6 network address, certainly can also be indefinite in this extended attribute
Justice supports the protocol stack value of information of the IPv6 network address, and the embodiment of the present invention is not construed as limiting.
If 204 described clients are double stack clients, access server stores described certification and rings
Answer the protocol stack information of the title of described client, password and described client that message carries,
Store for the client name sent according to described client, password and described access server
Client name, the protocol stack information of client described in password confirming, according to described protocol stack
Information and described Second Type information are that described client distributes the Second Type network address, if institute
Stating Second Type information is IPv4 type of network address, and the described Second Type network address is institute
State the IPv4 network address of IPv4 network address classification instruction.
205, it is described client according to described authentication response message and described first kind information
The distribution first kind network address, if described first kind information is IPv4 type of network address,
The described first kind network address is the IPv4 network ground of described IPv4 network address classification instruction
Location.
For example, if the request message requests of reaching the standard grade first that sends to access server of client
Access server is that client distributes the IPv6 network address, at certificate server to this client
After certification success, access server receives the authentication response message that certificate server sends, if
The protocol stack value of information in the extended attribute that this authentication response message is carried is 2, then this access clothes
Business device is that this client distributes the IPv6 network address.
If the protocol stack value of information in extended attribute is 3, then recognize described in the storage of this access server
The protocol stack letter of the title of described client, password and the described client that card response message carries
Breath, then distributes the IPv6 network address to this client.Described in the storage of this access server
After authentication response message, message is asked to be asked if this client is reached the standard grade to access server transmission second
Seeking access server is that client distributes the IPv4 network address, and second reaches the standard grade asks to wrap in message
Include: the title of described client, password and described client request access server are described
The Second Type information of the network address of client distribution.Access server is according to described client
The client name, the password that send make a look up, and find this client of access server storage
The protocol stack information of end, if this protocol stack information includes that this client is double stack clients, and
The IPv4 network address classification of client be IPv4 be publicly-owned address, then this access server is straight
Connect to this client distribute the publicly-owned address of IPv4, it is not necessary to certificate server to this client
End is authenticated, and decreases the certification number of times of double stack client, improves authentication efficiency.Accordingly,
If the request message requests access server of reaching the standard grade first that double stack clients send is that client is divided
Joining the IPv4 network address, access server also stores the described visitor that this authentication response message is carried
The protocol stack information of the title of family end, password and described client.When this client is to accessing clothes
Business device send second reach the standard grade request message requests distribution the IPv6 network address, access server root
The client name, the password that send according to described client make a look up, and find access server
The protocol stack information of this client of storage, if this protocol stack information includes that this client is double
Stack client, access server according to this protocol stack information and Second Type information directly to client
The end distribution IPv6 network address.
As described in said process, access service is receiving transmission the second request of reaching the standard grade of this client
During message, this second network address reaching the standard grade request message requests Second Type, access server
Need not ask certificate server that this client is authenticated again, simplify double stack client
Reach the standard grade flow process.
206, access server sends request response of reaching the standard grade first, institute to described client
State request response of reaching the standard grade first and carry the described first kind network address.
Access server is the publicly-owned address of IPv4 or the private address distributing to above-mentioned client
Or IPv6 address is sent to above-mentioned client, completes above-mentioned client and move in the access of network side
Make.
If access server is assigned with the Second Type network address, access service to client certainly
Device also sends second to client and reaches the standard grade request response, and the described second request response of reaching the standard grade disappears
Breath carries the described Second Type network address.
The method of the client access network that the embodiment of the present invention provides, certificate server is to client
After end certification success, if client request access service is that client distributes the IPv4 network address
Time, certificate server carries the protocol stack information of client, this association in authentication response message
View stack information includes the address classes of the IPv4 network of client, so, access service
Device can distribute net for client accurately according to the IPv4 network address classification that client is supported
Network address.Further, if client is double stack clients, no matter first kind information is IPv4
Type of network address or IPv6 type of network address, this authentication response message carries client
The protocol stack information of title, password and the client of end, this protocol stack information includes: client
End is double stack client and the IPv4 network address classification of described client, and access server is also
This authentication response message is carried the protocol stack letter of the title of client, password and client
Breath stores, and so sends second in client to access server and reaches the standard grade request message requests
Access server is when the client distribution Second Type network address, and access server need not again
This client is authenticated by request certificate server, but directly according to this protocol stack information and
Second Type information distributes the Second Type network address to client, so that double stack client
Identifying procedure simplify, it is provided that the authentication efficiency of double stack clients.
Embodiment three
Embodiments provide the device 30 of a kind of client access network, this device 30
Can be Broadband Remote Access Server, clear in order to illustrate, the single stack described in the present embodiment
Client or double stack client refer to that the agreement of client determined by client operation commercial treaty when signing
Stack information, the such as client of the new signing of operator's agreement are single stack IPv4 clients, or single
Stack IPv6 client or double stack clients of support IPv4 and IPv6, the most also agreement
The network address classification of IPv4.Even if client supports IPv4 and the IPv6 network address, but
During the signing of this client, client determined by operation commercial treaty is IPv4 client, then the present invention implements
It is single stack IPv4 client that example is also considered as this client, concrete as it is shown on figure 3, include receiving
Unit 31, transmitting element 32, processing unit 33 and memory element 34.
Receive unit 31, for receiving request of reaching the standard grade the first message that described client sends,
Described request message of reaching the standard grade first includes: the title of described client, password and described client
The first kind information of the network address that end asks described device to be the distribution of described client.
Above-mentioned request message of reaching the standard grade first includes the title of described client, password and described visitor
Family end request access server is the first kind information of the network address of client distribution.Example
As, type of network address includes IPv4 and the IPv6 network address, and the request of this client accesses clothes
The first kind information that device is the network address that client is distributed of being engaged in is IPv4 or IPv6 network ground
Location type.
Transmitting element 32, for sending authentication request message, described certification to certificate server
Request message includes the title of described client, password and described first kind information, so that
Obtain described certificate server described client is authenticated.
For example, information when certificate server storage has client to contract, according to this client
Client is authenticated by the CAMEL-Subscription-Information of end.For example, this certificate server is by checking
The title of the client that this authentication request message includes and password whether with the signing of this client
Client name in information is the most consistent with password to be authenticated client.
Described reception unit 31, is additionally operable to receive the authentication response that described certificate server sends
Message, if described first kind information is IPv4 type of network address, described authentication response disappears
Carrying the protocol stack information of described client in breath, described protocol stack information includes IPv4 net
Network address classes.
Such as, after certificate server is to the success of above-mentioned client certificate, receives unit 31 and access
Server receives the authentication response message that certificate server sends.It is no matter the IPv4 visitor of single stack
Family end still supports double stack clients of IPv4 and IPv6 type of network address, and this client please
Seeking access server is that client distributes the IPv4 network address, then take in this authentication response message
With the protocol stack information of this client, this protocol stack information includes the IPv4 network of client
The IPv4 network address classification of address classes, such as this client is IPv4 private address.Right
In IPv6 client or double stack client of single stack, this client request access server is visitor
The end distribution IPv6 network address, family, owing to access server is distributing the network address for client
Time need not distinguish between private address and publicly-owned address, so this certificate server can be in this certification
Response message carries the protocol stack information of this client, it is also possible to do not carry the association of this client
View stack information, this is not construed as limiting by the present embodiment.
During realizing, certificate server can define new extension in protocol stack information and belong to
Property carries the IPv4 network address classification of client, this extended attribute form as it is shown in figure 5,
The protocol stack value of information including type, length and the client of extended attribute.Wherein this extension belongs to
The total length of property is 6 bytes.Wherein, the type of this extended attribute takies first character joint,
For distinguishing other attribute, represent the protocol stack information that this extended attribute is client, this association
View stack information includes the classification information of the IPv4 that client supports.The length of extended attribute takies
One byte, value is 6, represents that the total length of this extended attribute is 6 bytes.Client
The protocol stack value of information occupies 4 bytes, for the network address class indicating this client to support
Type.For example, no matter it is single stack IPv4 client or double stack client, if this client
The protocol stack value of information of end is 1, is used for indicating operator's subscribed client to support IPv4 network ground
Location, and the network address classification of this client is the publicly-owned address of IPv4;If the association of this client
The view stack value of information is 2, is used for indicating operator's subscribed client to support the IPv4 network address, and
The network address classification of this client is IPv4 private address;If the protocol stack letter of this client
Breath value is 5, is used for indicating operator to arrange this client and supports the IPv6 network address, certainly should
Extended attribute can not also define the protocol stack value of information supporting the IPv6 network address, this
Bright embodiment is not construed as limiting.
Further, in order to reduce certification number of times, if described client is double stack clients, no
Pipe first kind information is IPv4 type of network address or IPv6 type of network address, described
Authentication response message carries described protocol stack information and the title of client and password, described
Protocol stack information includes: described client is the IPv4 network ground of double stack client and client
Location classification.During realizing, as it is shown in figure 5, the type of this extended attribute takies first
Byte, for distinguishing other attribute, represents the protocol stack information that this extended attribute is client,
The protocol stack information of this client includes the classification information of the IPv4 that client supports, also includes
Client is single stack client or the information of double stack client.The protocol stack value of information can define
As follows: if the protocol stack value of information of this client is 1, being used for indicating client is single stack client
End, supports the publicly-owned address of IPv4;If the protocol stack value of information of this client is 2, it is used for indicating
Client is single stack client, supports single stack IPv4 private address;If the agreement of this client
The stack value of information is 3, for indicating the protocol stack information of client to be double stack clients, supports IPv4
Publicly-owned address;If the protocol stack value of information of this client is 4, for indicating the agreement of client
Stack information is double stack clients, supports IPv4 private address;If the protocol stack letter of this client
Breath value is 5, and being used for indicating client is single stack client, supports the IPv6 network address, certainly
This extended attribute can not also define the protocol stack value of information supporting the IPv6 network address, this
Inventive embodiments is not construed as limiting.
Processing unit 33, for according to described authentication response message and described first kind information
The first kind network address is distributed, if described first kind information is IPv4 for described client
Type of network address, the described first kind network address is that described IPv4 network address classification refers to
The IPv4 network address shown.
For example, if the request of reaching the standard grade first that reception unit 31 receives client transmission disappears
Breath request access server is that client distributes the IPv6 network address, at certificate server to this
After client certificate success, even if this client is double stack clients, certificate server is only to visitor
Family end sends authentication response message, shows that certificate server is to this client certificate success.
Receive unit 32 and receive the authentication response message that certificate server sends, then this processor list
Unit 33 directly distributes the IPv6 network address for this client.
For double stack clients, send, to access server, request message of reaching the standard grade first in client
After, after processing unit 33 is the client first kind network address, client is again to connecing
Entering server to send second and reach the standard grade request message, transmitting element 32 also needs to certificate server
Sending authentication request message, this client is authenticated by request certificate server.If certification takes
Authentication response message is sent to access server, if the second request of reaching the standard grade disappears after business device certification success
The Second Type information that breath includes is IPv4 type of network address, in this authentication response message
Carrying the protocol stack information of client, this protocol stack information includes the IPv4 network of client
Address classes.
Such as, after processing unit 33 is assigned with the IPv6 network address for client, client
The request access server distribution IPv4 network address, transmitting element 32 is again to certificate server
Send authentication request message request certificate server this client is authenticated, and become in certification
After merit, certificate server sends authentication response message to access server, in this authentication response message
Carrying the protocol stack information of this client, this protocol stack information includes the IPv4 net of client
Network address classes.
Further, in order to reduce the certification number of times of double stack client, if this client is double stacks
Client, no matter first kind information is IPv4 type of network address or the IPv6 network address
Type, this device also includes memory element 34, is used for storing described authentication response message and carries
The protocol stack information of the title of described client, password and described client.Described protocol stack
Information includes that client is double stack clients, and the IPv4 network address classification of this client.
If such as this client is double stack clients, and the IPv4 network address classification of client is
The publicly-owned address of IPv4, no matter first kind information is IPv4 type of network address or IPv6 net
Network address style, certificate server sends authentication response message, authentication response to access server
Message carries the protocol stack information of client and the title of client and password, this protocol stack information
In the protocol stack value of information be 3.After reception unit 31 receives this authentication response message,
The title of described client that this authentication response message is directly carried by memory element 34, password
Store with the protocol stack information of described client.If described reception unit 31 receives institute
State that client sends second is reached the standard grade request message, and the described second request message of reaching the standard grade includes:
The title of described client, password and described client request access server are client distribution
The Second Type information of the network address.The visitor that processing unit 33 sends according to described client
Family end title, password make a look up, and find the association of this client of memory element 34 storage
View stack information, this protocol stack information includes that this client is double stack clients, and indicates visitor
The IPv4 network address classification of family end, processing unit 33 is according to this protocol stack information and Equations of The Second Kind
Type information is that client distributes the Second Type network address.
As described in said process, receive unit 31 and send and second reach the standard grade receiving this client
During request message, this second network address reaching the standard grade request message requests Second Type, send single
Unit 32 need not send authentication request message request certificate server to this to certificate server again
Client is authenticated, and simplifies the flow process of reaching the standard grade of double stack client.
The device of the client access network that the embodiment of the present invention provides, certificate server is to client
After end certification success, if client request access server is client distribution IPv4 network ground
During location, certificate server carries the protocol stack information of client in authentication response message, should
Protocol stack information includes the IPv4 network address classification of client, so, processing unit
IPv4 net can be distributed for client accurately according to the IPv4 network address classification of client
Network address.Further, if client is double stack clients, no matter first kind information is IPv4
Type of network address or IPv6 type of network address, authentication response message carries client
The protocol stack information of title, password and client, this protocol stack information includes: client
It is double stack client and the IPv4 network address classification of described client, depositing of access server
Storage unit authentication storage response message carries the association of the title of client, password and client
View stack information, so receive unit receive client send second reach the standard grade request message please
Asking access server when the client distribution Second Type network address, transmitting element need not again
Send authentication request message request certificate server to access server this client is recognized
Card, but directly distribute Equations of The Second Kind according to this protocol stack information and Second Type information to client
The type network address, so that the identifying procedure of double stack client simplifies, it is provided that double stack clients
Authentication efficiency.
Embodiment four
Embodiments provide the device 40 of a kind of client access network, this device 40
Can be aaa server, clear in order to illustrate, the single stack client described in the present embodiment
Or double stack client refers to that the protocol stack information of client determined by client operation commercial treaty when signing,
The such as client of the new signing of operator's agreement is single stack IPv4 client, or single stack IPv6 visitor
Family end or double stack clients of support IPv4 and IPv6, the most also arranged the net of IPv4
Network address classes.Even if client support IPv4 and the IPv6 network address, but this client
Run commercial treaty during signing determining client is IPv4 client, then the embodiment of the present invention is also considered as
This client is single stack IPv4 client, the most as shown in Figure 4, including receive unit 41,
Processing unit 42 and transmitting element 43.
Receive unit 41, for receiving the authentication request message that access server sends, described
Authentication request message includes the title of described client, password and the request of described client and accesses
Server is the first kind information of the network address of described client distribution.
Above-mentioned request message of reaching the standard grade first includes the title of client, password and described client
Request access server is the network address first kind information of client distribution.Such as, network
Address style includes IPv4 and the IPv6 network address, and this client request access server is visitor
The first kind information of the network address of family end distribution can be IPv4 or IPv6 network address class
Type.
Processing unit 42, for the described authentication request message received according to described reception unit
Described client is authenticated.
Information when certificate server storage has client to contract, processing unit 42 is according to this visitor
Client is authenticated by the CAMEL-Subscription-Information of family end.For example, this processing unit 42 passes through
Verify the title of the client that this authentication request message includes and password whether with this client
Client name in CAMEL-Subscription-Information is the most consistent with password to be authenticated client.
Transmitting element 43, for being authenticated successfully described client at described processing unit
After, send authentication response message to described access server, if described first kind information is
IPv4 type of network address, carries the protocol stack of described client in described authentication response message
Information, described protocol stack information includes IPv4 network address classification, accesses clothes so that described
Business device is described client distribution the according to described protocol stack information and described first kind information
One type network address, if described first kind information is IPv4 type of network address, described
The first kind network address is the IPv4 network address of described IPv4 network address classification instruction.
Such as, if this client request access server is that client distributes the IPv4 network address,
After processing unit 42 is to the success of above-mentioned client certificate, transmitting element 43 is then to access server
Send authentication response message.No matter it is the IPv4 client of single stack or double stack client, if
This client request access server is that client distributes the IPv4 network address, then processing unit
The protocol stack information of this client is carried, this protocol stack information bag in this authentication response message
Include the IPv4 network address classification of client.For single stack IPv6 client or double stack client,
This client request access server is that client distributes the IPv6 network address, owing to accessing clothes
Business device needs not distinguish between whether IPV6 is demesne when for the client distribution IPv6 network address
Location and publicly-owned address, so transmitting element 43 is sending authentication response message to access server
In can carry this client support the IPv6 network address information, it is also possible to do not carry this visitor
Family end is the information supporting the IPv6 network address, and the present embodiment is in this no limit.
Further, if this client is double stack clients, in order to reduce recognizing of double stack client
Card flow process, no matter first kind information is IPv4 type of network address or the IPv6 network address
Type, transmitting element 43 is required for carrying in the authentication response message that access server sends
The protocol stack information of client and the title of client, password.This protocol stack information includes: should
Client is double stack clients, the IPv4 network address classification of this client.So access clothes
Business device stores the protocol stack information of the client carried in this authentication response message and client
Title, password, when request message is reached the standard grade in client transmission second, it is not necessary to request is recognized again
This client is asked certification by the processing unit of card server.
The device of the client access network that the embodiment of the present invention provides, processing unit is to client
After certification success, if client request access service is the client distribution IPv4 network address,
The authentication response message that transmitting element sends carries the protocol stack information of client, this agreement
Stack information includes the IPv4 network address classification of client, so, access server energy
Enough IPv4 network address classifications supported according to client distribute IPv4 net for client accurately
Network address.Alternatively, if client is double stack clients, no matter first kind information is IPv4
Type of network address or IPv6 type of network address, this authentication response message carries client
The protocol stack information of title, password and the client of end, this protocol stack information includes: client
End is double stack client and the IPv4 network address classification of described client, and access server is also
This authentication response message is carried the protocol stack letter of the title of client, password and client
Breath stores, so when the client request distribution Second Type network address, and access service
Device need not send authentication request message request certificate server to client to certificate server again
End is authenticated, so that the identifying procedure of double stack client simplifies, it is provided that double stack clients
Authentication efficiency.
The embodiment of the present invention additionally provides a kind of Broadband Remote Access Server, includes embodiment
The device of the client access network in one or three, concrete structure and work process are at this no longer
Repeat.
The embodiment of the present invention additionally provides a kind of certificate server, includes the visitor in embodiment three
The device of family end access network, concrete structure and work process do not repeat them here.
One of ordinary skill in the art will appreciate that: realize all or part of step of said method embodiment
Suddenly can be completed by the hardware that programmed instruction is relevant, aforesaid program can be stored in a computer
In read/write memory medium, this program upon execution, performs to include the step of said method embodiment;
And aforesaid storage medium includes: ROM, RAM, magnetic disc or CD etc. are various can store journey
The medium of sequence code.
The above, the only detailed description of the invention of the present invention, but protection scope of the present invention is also
Being not limited to this, any those familiar with the art is at the technology model that the invention discloses
In enclosing, change can be readily occurred in or replace, all should contain within protection scope of the present invention.
Therefore, protection scope of the present invention should be as the criterion with described scope of the claims.
Claims (16)
1. the method for a client access network, it is characterised in that including:
Access server receive described client send request of reaching the standard grade first message, described first
Request message of reaching the standard grade includes: the title of described client, password and the request of described client connect
Enter the first kind information of the network address that server is the distribution of described client;
Described access server sends authentication request message to certificate server, and described certification is asked
Message includes the title of described client, password and described first kind information, so that institute
State certificate server described client is authenticated;
Described access server receives the authentication response message that described certificate server sends, if institute
Stating first kind information is IPv4 type of network address, carries in described authentication response message
The protocol stack information of described client, described protocol stack information includes the IPv4 network of client
Address classes;
Described access server according to described authentication response message and described first kind information is
The described client distribution first kind network address, if described first kind information is IPv4 net
Network address style, the described first kind network address is the classification instruction of the described IPv4 network address
The IPv4 network address;
Described access server sends, to described client, request response of reaching the standard grade first, described
Request response of reaching the standard grade first carries the described first kind network address.
Method the most according to claim 1, it is characterised in that if described client is
Double stack clients, also carry the title of described client and close in described authentication response message
Code, described protocol stack information also includes: described client is double stack clients.
Method the most according to claim 2, it is characterised in that if the described first kind
Information is IPv6 type of network address and described client is double stack clients, described certification
Response message carries described protocol stack information.
Method the most according to claim 3, it is characterised in that if described client is
Double stack clients, described method also includes: described access server stores described authentication response and disappears
The protocol stack information of the title of described client, password and described client that breath carries;
When what described access server received that described client sends second reaches the standard grade request message
Time, the described second request message of reaching the standard grade includes: the title of described client, password and described
The Equations of The Second Kind of the network address that client asks described access server to be the distribution of described client
Type information, client name, password and the described access server sent according to described client
The protocol stack information of client described in the client name of storage, password confirming, according to described association
View stack information and described Second Type information are that described client distributes the Second Type network address,
If described Second Type information is IPv4 type of network address, the described Second Type network address
It it is the IPv4 network address of described IPv4 network address classification instruction;
Sending second to described client to reach the standard grade request response, the described second request of reaching the standard grade rings
Message is answered to carry the described Second Type network address.
5. the method for a client access network, it is characterised in that including:
Certificate server receives the authentication request message that access server sends, and described certification is asked
Message includes the title of described client, password and described client and asks described access service
Device is the first kind information of the network address of described client distribution;
After described client is authenticated successfully by described certificate server, to described access service
Device sends authentication response message, if described first kind information is IPv4 type of network address,
Carrying the protocol stack information of described client in described authentication response message, described protocol stack is believed
Breath includes IPv4 network address classification, so that described access server rings according to described certification
Answering message and described first kind information is that described client distributes the first kind network address, if
Described first kind information is IPv4 type of network address, and the described first kind network address is
The IPv4 network address of described IPv4 network address classification instruction.
Method the most according to claim 5, it is characterised in that if described client is
Double stack clients, also carry the title of described client and close in described authentication response message
Code, described protocol stack information also includes: described client is double stack clients.
Method the most according to claim 6, it is characterised in that if the described first kind
Information is IPv6 type of network address and described client is double stack clients, described certification
Response message carries described protocol stack information.
8. the device of a client access network, it is characterised in that including: reception unit,
Transmitting element and processing unit;
Described reception unit, for receiving request of reaching the standard grade the first message that described client sends,
Described request message of reaching the standard grade first includes: the title of described client, password and described client
The first kind information of the network address that end asks described device to be the distribution of described client;
Described transmitting element, for sending authentication request message, described certification to certificate server
Request message includes the title of described client, password and described first kind information, so that
Obtain described certificate server described client is authenticated;
Described reception unit, the authentication response being additionally operable to receive the transmission of described certificate server disappears
Breath, if described first kind information is IPv4 type of network address, described authentication response message
In carry the protocol stack information of described client, described protocol stack information includes IPv4 network
Address classes;
Described processing unit, for according to described authentication response message and described first kind information
The first kind network address is distributed, if described first kind information is IPv4 for described client
Type of network address, the described first kind network address is that described IPv4 network address classification refers to
The IPv4 network address shown;
Described transmitting element, is additionally operable to send request response of reaching the standard grade first to described client and disappears
Breath, described request response of reaching the standard grade first carries the described first kind network address.
Device the most according to claim 8, it is characterised in that if described client is
Double stack clients, also carry described in the described authentication response message that described reception unit receives
The title of client and password, described protocol stack information also includes: described client is double stack visitors
Family end.
Device the most according to claim 9, it is characterised in that if the described first kind
Information is IPv6 type of network address and described client is double stack clients, described reception
The described authentication response message that unit receives carries described protocol stack information.
11. devices according to claim 10, it is characterised in that also include: storage
Unit, for store the title of described client that described authentication response message carries, password and
The protocol stack information of described client;
Described reception unit is additionally operable to receive that described client sends second reaches the standard grade request message,
Second reach the standard grade request message include the title of described client, password and described client request institute
State the Second Type information of the network address that device is the distribution of described client;
Client name that described processing unit is additionally operable to send according to described client, password and
The protocol stack letter of client described in the client name of described access server storage, password confirming
Breath, is described client distribution second according to described protocol stack information and described Second Type information
Type network address, if described Second Type information is IPv4 type of network address, described
Two type network addresses are the IPv4 network address of described IPv4 network address classification instruction;
Described transmitting element is additionally operable to send second to described client and reaches the standard grade request response,
Described second request response of reaching the standard grade carries the described Second Type network address.
12. 1 kinds of access servers, it is characterised in that include any one of claim 8-11
Described device.
The device of 13. 1 kinds of client access networks, it is characterised in that including: reception unit,
Processing unit and transmitting element;
Receive unit, for receiving the authentication request message that access server sends, described certification
Request message includes the title of described client, password and the request access service of described client
Device is the first kind information of the network address of described client distribution;
Processing unit, is used for the described authentication request message according to the reception of described reception unit to institute
State client to be authenticated;
Transmitting element, is used for after described client is authenticated successfully by described processing unit,
Authentication response message is sent, if described first kind information is IPv4 to described access server
Type of network address, carries the protocol stack letter of described client in described authentication response message
Breath, described protocol stack information includes IPv4 network address classification, so that described access service
Device is described client distribution the according to described authentication response message and described first kind information
One type network address, if described first kind information is IPv4 type of network address, described
The first kind network address is the IPv4 network address of described IPv4 network address classification instruction.
14. devices according to claim 13, it is characterised in that if described client
It is double stack clients, the described authentication response message that described transmitting element sends also has been carried
Stating title and the password of client, described protocol stack information also includes: described client is double stacks
Client.
15. devices according to claim 14, it is characterised in that if the described first kind
Type information is IPv6 type of network address and described client is double stack clients, described
Unit is sent to carry described protocol stack information to the authentication response message that described access server sends.
16. 1 kinds of certificate servers, it is characterised in that include any one of claim 13-15
Described device.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210019018.7A CN103220374B (en) | 2012-01-20 | 2012-01-20 | A kind of method of client access network, device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210019018.7A CN103220374B (en) | 2012-01-20 | 2012-01-20 | A kind of method of client access network, device |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103220374A CN103220374A (en) | 2013-07-24 |
CN103220374B true CN103220374B (en) | 2016-12-07 |
Family
ID=48817824
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201210019018.7A Active CN103220374B (en) | 2012-01-20 | 2012-01-20 | A kind of method of client access network, device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103220374B (en) |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP3059930B1 (en) * | 2015-02-18 | 2021-01-06 | Siemens Aktiengesellschaft | Method for configuring a communication device of an industrial automation system and communication device |
CN107809496B (en) * | 2016-09-09 | 2020-05-12 | 新华三技术有限公司 | Network access control method and device |
CN111511041B (en) * | 2019-01-31 | 2022-03-29 | 大唐移动通信设备有限公司 | Remote connection method and device |
CN111327599B (en) * | 2020-01-21 | 2022-05-27 | 新华三信息安全技术有限公司 | Authentication process processing method and device |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1744597A (en) * | 2004-09-01 | 2006-03-08 | 华为技术有限公司 | Method for host use obtaining IP address parameters in IPV6 network |
CN101297523A (en) * | 2004-08-13 | 2008-10-29 | 高通弗拉里奥恩技术公司 | Methods and apparatus for efficient VPN server interface, address allocation , and signaling with a local addressing domain |
CN101610156A (en) * | 2009-08-04 | 2009-12-23 | 杭州华三通信技术有限公司 | A kind of method of dual protocol stack user authentication, equipment and system |
CN102325145A (en) * | 2011-10-21 | 2012-01-18 | 杭州华三通信技术有限公司 | Method and equipment for carrying out access control on dual-stack user |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101692674B (en) * | 2009-10-30 | 2012-10-17 | 杭州华三通信技术有限公司 | Method and equipment for double stack access |
-
2012
- 2012-01-20 CN CN201210019018.7A patent/CN103220374B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101297523A (en) * | 2004-08-13 | 2008-10-29 | 高通弗拉里奥恩技术公司 | Methods and apparatus for efficient VPN server interface, address allocation , and signaling with a local addressing domain |
CN1744597A (en) * | 2004-09-01 | 2006-03-08 | 华为技术有限公司 | Method for host use obtaining IP address parameters in IPV6 network |
CN101610156A (en) * | 2009-08-04 | 2009-12-23 | 杭州华三通信技术有限公司 | A kind of method of dual protocol stack user authentication, equipment and system |
CN102325145A (en) * | 2011-10-21 | 2012-01-18 | 杭州华三通信技术有限公司 | Method and equipment for carrying out access control on dual-stack user |
Also Published As
Publication number | Publication date |
---|---|
CN103220374A (en) | 2013-07-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN100521650C (en) | Packet forwarding apparatus and access network system | |
CN103746812B (en) | A kind of access authentication method and system | |
CN101764757B (en) | Method, device and system for content accessing | |
CN106878483A (en) | A kind of IP address distribution method and device | |
CN110191031A (en) | Network resource access method, device, electronic equipment | |
CN108881308A (en) | A kind of user terminal and its authentication method, system, medium | |
CN102136938B (en) | Method and device for providing user information for carried grade network address translation (CGN) equipment | |
CN107800603B (en) | Intranet user accesses the method and storage medium of headend equipment based on VPN | |
CN103200281A (en) | Method, device and system for accessing intranet server | |
CN103118147A (en) | Method, equipment and system for accessing intranet server | |
CN102710777A (en) | Advertisement push-delivery method and system, as well as advertisement pusher | |
CN103781055A (en) | Data downloading method and associated device | |
CN103220374B (en) | A kind of method of client access network, device | |
CN103916491B (en) | Dynamic address mapping method and device based on NAT444 architecture | |
CN103812836A (en) | System and method for website to send user reserved information | |
CN109617780A (en) | Access method, apparatus, terminal device and the machine readable storage medium of network | |
CN104640114A (en) | Verification method and device of access request | |
CN108737585A (en) | The distribution method and device of IP address | |
CN104144096A (en) | Virtual network layer construction method, device and system | |
CN102238159A (en) | Access control method, equipment and system based on point-to-point protocol (PPP) | |
CN107734046A (en) | Method, service end, client and the system of remote operation database | |
CN110120932A (en) | Multipath method for building up and device | |
CN107135506A (en) | A kind of portal authentication methods, apparatus and system | |
CN109951493A (en) | A kind of network intercommunication method, device, equipment and storage medium | |
CN109040334A (en) | Static Intranet mapping method, external network server, Intranet communication equipment and system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant |