CN104283895A - Compulsive portal authentication control system and method used for wireless router - Google Patents
Compulsive portal authentication control system and method used for wireless router Download PDFInfo
- Publication number
- CN104283895A CN104283895A CN201410590807.5A CN201410590807A CN104283895A CN 104283895 A CN104283895 A CN 104283895A CN 201410590807 A CN201410590807 A CN 201410590807A CN 104283895 A CN104283895 A CN 104283895A
- Authority
- CN
- China
- Prior art keywords
- mobile terminal
- wireless router
- comparing unit
- authentication
- mac address
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/55—Push-based network services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W88/00—Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
- H04W88/08—Access point devices
Abstract
The invention discloses a compulsive portal authentication control system and method used for a wireless router. The method comprises the steps that a mobile terminal and the wireless router are in communication connection; the wireless router receives a DNS request message of the mobile terminal; the DNS request message comprises the IP address of the mobile terminal and the domain name of a network which the mobile terminal has access to; the wireless router judges the communication mode between the mobile terminal and the wireless router according to the DNS request message; the wireless router judges whether the mobile terminal is a privileged user or not; the wireless router judges whether the domain name of the network which the mobile terminal has access to is a free URL or not; the wireless router judges whether the mobile terminal is an authenticated user or not; the wireless router controls the mobile terminal to conduct compulsive authentication; the wireless router enables a page which the mobile terminal has access to to be displayed to the mobile terminal by performing communication with a domain name server. Thus, the purpose that when the user is connected to the wireless router wirelessly, the wireless router will firstly push an advertising page with an authentication request compulsively, and the user can surf the internet freely after the authentication is passed is realized.
Description
Technical field
The present invention relates to mobile terminal accessing method, be specifically related to a kind of wireless router and forced gate Verification System wherein and method.
Background technology
Current, in some food and drink and merchant store fronts, free being surfed the Net by wireless router can be provided.The page that one pushes away by force certification can be done on the router, push away by force at this and page issues the information and advertisement that some trade companies promote, as information of discount, promotional advertisement, and advertisement link and advertising pictures.When user connects wireless router time, first router will be forced to release such advertisement page with certification, and user is by ability Free Internet Access after certification.By such technology, extra advertisement benefit can be brought to trade company.In prior art, doing url filtering is on the router generally realized by scheme urlfilter process of increasing income, or is realized by iptables rule, filters then realized by iptables rule MAC.But be difficult to by these two kinds traditional technology and push away by force page technology combine and realize the function that access registrar controls.
Summary of the invention
The object of the present invention is to provide a kind of wireless router and forced gate Verification System wherein and method, free URL show by arranging respectively in wireless router, authenticated user table, and increase Device field in the ARP table of establishing in wireless router; Realize when user is by wireless connections wireless router time, first wireless router can be forced to release such advertisement page with certification, and user is by ability Free Internet Access after certification.By such technology, extra advertisement benefit can be brought to trade company, be convenient to businessman and facilitate self online and issue free advertising.
In order to achieve the above object, the present invention is achieved through the following technical solutions:
For a system for the forced gate certification of wireless router, be characterized in, described system comprises: mobile terminal, generates the DNS request message of this mobile terminal; Wireless router, receives the online connection request that described mobile terminal sends; Far-end Cloud Server, carries out communication with described wireless router, and provides the information meeting online connection request to this wireless router; Name server, carries out communication with described wireless router, resolves the domain names of described mobile terminal input.
Described wireless router comprises: communication unit, for receiving the DNS request message of described mobile terminal; Comparing unit, for judging that described mobile terminal is the need of forcible authentication; Control unit, carries out forcible authentication for controlling described mobile terminal;
For a forced gate authentication method for wireless router, be characterized in, the method comprises following steps:
S1, mobile terminal and wireless router carry out communication, and described wireless router receives the DNS request message that described mobile terminal sends; The communication unit of described wireless router, receives the DNS request message of described mobile terminal; Described DNS request message comprises the IP address of described mobile terminal and the domain names of mobile terminal accessing;
S2, the comparison rules set in this mobile terminal request information and this wireless router is compared by the comparing unit of described wireless router;
S3, to not meeting described comparing unit, the control unit of described wireless router requires that the mobile terminal of comparison rules carries out forcible authentication;
S4, described wireless router by with name server communication, by the display of the accession page of described mobile terminal to not needing the mobile terminal of forcible authentication or the mobile terminal after forcible authentication.
Preferably, before described step S1, also need to perform following steps:
Described wireless router and described far-end Cloud Server carry out communication, and obtain the user profile that this far-end Cloud Server arranges described wireless router;
This user profile comprises: the advertisement page of described wireless router and the MAC Address of superuser.
Preferably, described step S1 comprises following steps:
S1.1, described wireless router is by carrying out communication with the identical communications protocol that described mobile terminal has;
S1.2, the communication unit of described wireless router receives the DNS request message of described mobile terminal according to described communications protocol.
Preferably, in described step S2, comprise following any one comparison rules, or the combination in any of following some comparison rules:
First comparison rules makes described comparing unit judge the communication modes of this mobile terminal and described wireless router according to described DNS request message; When described comparing unit judges described mobile terminal and described wireless router is wireless telecommunications, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit;
Second comparison rules, be described comparing unit is judged whether this mobile terminal is superuser; When described comparing unit judges that described mobile terminal is not superuser, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit;
3rd comparison rules, be described comparing unit is judged whether the domain name of mobile terminal network visiting is free URL; When the domain name that described comparing unit judges described mobile terminal network visiting is not free URL, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit;
4th comparison rules, be described comparing unit is judged whether described mobile terminal is authenticated user; When described comparing unit judges that described mobile terminal is not authenticated user, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
Preferably, when described comparing unit judges the communication modes of this mobile terminal and described wireless router:
Described wireless router inside arranges ARP table, and described ARP table arranges MAC Address corresponding to each IP address of mobile terminal and Device field;
Carry out the mobile terminal of communication to wireless router, described comparing unit, according to the IP address of mobile terminal in described DNS request message, is searched Device field corresponding in ARP table, when Device field list shows wire communication, is jumped to step S4;
When Device field represents wireless telecommunications, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
Preferably, when described comparing unit judges whether this mobile terminal is superuser:
Described comparing unit, according to the IP address of mobile terminal in the corresponding DNS request message of described mobile terminal, searches MAC Address corresponding in ARP table;
The MAC Address that the MAC Address of described mobile terminal and described far-end Cloud Server arrange the superuser of this wireless router user profile is mated by described comparing unit;
When the MAC Address of described mobile terminal is mated with the MAC Address of the superuser of described wireless router, jump to step S4;
When the MAC Address of this mobile terminal is not mated with the MAC Address of the superuser of described wireless router, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
Preferably, when whether the domain name that described comparing unit judges mobile terminal network visiting is free URL:
Establish free URL to show in described wireless router, this free URL table comprises all free URL that this wireless router allows non-privileged users access;
Whether the described comparing unit accesses network domain name of searching in the DNS request message of described mobile terminal is present in described free URL table; When the accesses network domain name of described mobile terminal is free URL, jump to step S4;
As the non-free URL of accesses network domain name, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
Preferably, when described comparing unit judges whether described mobile terminal is authenticated user:
Setting authentication subscriber's meter in described wireless router, described authenticated user table comprises the MAC Address of all authenticated user, certification initial time and certification usage time interval;
The MAC Address of described mobile terminal is mated with the MAC Address in described authenticated user table by described comparing unit; When the MAC Address of described mobile terminal is mated with the MAC Address in described authenticated user table, this comparing unit, according to certification initial time corresponding to the MAC Address in described authenticated user table and certification usage time interval, calculates and judges whether this mobile terminal has exceeded authenticated time section; When this mobile terminal is not when exceeding, jump to described step S4;
When the MAC Address of this mobile terminal is not mated with the MAC Address in described authenticated user table, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit;
When described comparing unit judges this mobile terminal authentication time-out, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
Preferably, when described wireless router control unit to do not meet described comparing unit require that the mobile terminal of comparison rules carries out forcible authentication time:
The advertisement page display of this wireless router that described far-end Cloud Server arranges by described control unit is to described mobile terminal; This advertisement page comprises user authentication information;
Described mobile terminal inputs the authentication information required in described advertisement page and carries out certification.
Preferably, described step S4 comprises following steps:
S4.1, the accesses network domain name that described wireless router resolves described mobile terminal DNS request message is sent to domain name server;
S4.2, domain name server generates the IP address of above-mentioned accesses network domain name, and described access web page is returned display to described mobile terminal.
A kind of wireless router, this wireless router comprises comparing unit, described comparing unit judges the communication modes of mobile terminal and described wireless router respectively according to the comparison rules of setting, whether described mobile terminal is superuser, whether the domain name of this mobile terminal network visiting is free URL, whether this mobile terminal is authenticated user, and then judges that described mobile terminal carries out forcible authentication the need of the control unit arranged by this wireless router; Described wireless router and name server carry out communication, to meeting the mobile terminal of setting rule or mobile terminal after forcible authentication provides the information meeting its online connection request to not meeting setting rule.
The present invention compared with prior art has the following advantages:
A kind of forced gate Verification System for wireless router provided by the invention and method, increase income scheme urlfilter process or iptables rule of tradition is avoided to be difficult to and the drawback pushing away by force page technology and combine, can by arranging the inside of wireless router, realize certification when user accesses merchant network, be convenient to businessman and facilitate self online and issue free advertising.
Accompanying drawing explanation
Fig. 1 is the overall flow figure of a kind of forced gate authentication method for wireless router of the present invention.
Embodiment
Below in conjunction with accompanying drawing, by describing a preferably specific embodiment in detail, the present invention is further elaborated.
For a system for the forced gate certification of wireless router, this system comprises: mobile terminal; The wireless router of communication is carried out with mobile terminal; Communication far-end Cloud Server is wirelessly carried out with wireless router.Wireless router, for receiving the online connection request that described mobile terminal sends; Far-end Cloud Server, provides user profile to this wireless router; Name server, carries out communication with wireless router, resolves the domain names of mobile terminal input.Mobile terminal generates the DNS request message of this mobile terminal.
Wireless router comprises: communication unit, for the DNS request message of mobile terminal receive; Comparing unit, for judging that mobile terminal is the need of forcible authentication; Control unit, carries out forcible authentication for controlling mobile terminal.
In the present invention, mobile terminal and wireless router can carry out communication to wirelessly.Mobile terminal and wireless router also can be connected, and carry out communication by wired mode.
As shown in Figure 1, a kind of forced gate authentication method for wireless router, the method comprises following steps:
Mobile terminal and wireless router carry out communication, and described wireless router receives the DNS request message that described mobile terminal sends; The communication unit of wireless router, the DNS request message of mobile terminal receive; This DNS request message comprises the IP address of described mobile terminal and the domain names of mobile terminal accessing.
This mobile terminal request information and this wireless router are compared by the comparing unit of wireless router.
To not meeting described comparing unit, the control unit of described wireless router requires that the mobile terminal of comparison rules carries out forcible authentication.
Described wireless router by with name server communication, by the display of the accession page of described mobile terminal to not needing the mobile terminal of forcible authentication or the mobile terminal after forcible authentication.
The present invention preferably embodiment is specific as follows:
Before step S1, also need to perform following steps:
Wireless router and the communication of far-end Cloud Server, and the user profile obtaining that this far-end Cloud Server arranges wireless router.This user profile comprises: the advertisement page of wireless router and the MAC Address of superuser.
In the present embodiment, far-end Cloud Server, according to the demand of businessman, can arrange the MAC Address of one or more superuser for wireless router, be convenient to businessman's routine use.
S1, mobile terminal and wireless router carry out communication and are connected.
In the present embodiment, according to actual conditions, different mobile terminals can by with wireless router wired connection, realize communication therebetween; Also can select by radio connection such as wifi, realize the communication of mobile terminal and wireless router.
S2, wireless router receives the DNS request message of this mobile terminal; This step S2 comprises following steps:
S2.1, wireless router is by carrying out communication with the identical communications protocol that mobile terminal has.
S2.2, wireless router receives DNS request message according to communications protocol.
DNS request message comprises the IP address of mobile terminal and the domain names of mobile terminal accessing.
Such as, when mobile terminal needs the domain names of access be: www.xxx.com; The IP address of mobile terminal is: 192.168.1.xx; DNS request message comprises above-mentioned two information.
S3, wireless router judges the communication modes of this mobile terminal and wireless router according to above-mentioned DNS request message; This step S3 comprises following steps:
S3.1, wireless router inside arranges ARP table, and this ARP table arranges MAC Address corresponding to each IP address of mobile terminal and Device field.
S3.2, when mobile terminal and this wireless router carry out wired connection, wireless router arranges Device=eth in ARP table corresponding to this IP address of mobile terminal; When mobile terminal and this wireless router carry out wireless telecommunications, wireless router arranges Device=wl in ARP table corresponding to this IP address;
In the present invention, the ARP table field that such as mobile terminal IP is corresponding is as follows:
IP address HW type Flags HW address Mask Br Device
192.168.1.xx 0x1 0x2 00:88:44:33:22:88 * br0 wl
In this embodiment, Device=eth, illustrates that this mobile terminal adopts wired mode and wireless router to carry out communication.
S3.3, when mobile terminal and this wireless router carry out communication, wireless router, according to the IP address in DNS request message, searches Device field corresponding in ARP table, as Device=wl, performs step S4; As Device=eth, jump to step S8.
S4, wireless router judges whether this mobile terminal is superuser; This step S4 comprises following steps:
S4.1, wireless router, according to the IP address in mobile terminal DNS request message, searches user's MAC address corresponding in ARP table.
According in above-described embodiment, wireless router is according to the IP address 192.168.1.xx of this mobile terminal, and searching corresponding MAC Address is: 00:88:44:33:22:88.
In the present invention, in ARP table, field is HW address, is described user's MAC address.
S4.2, the MAC Address that the MAC Address of mobile terminal and far-end Cloud Server arrange the superuser of this wireless router user profile is mated by wireless router.
S4.3, when the MAC Address of mobile terminal is mated with the MAC Address of the superuser of wireless router, jumps to step S8; When the MAC Address of this mobile terminal is not mated with the MAC Address of the superuser of wireless router, perform step S5.
S5, wireless router judges whether the domain name of mobile terminal network visiting is free URL; This step S5 comprises following steps:
S5.1, wireless router obtains the free URL table of far-end Cloud Server, and this free URL table comprises all free URL that this wireless router allows non-privileged users access.
In the present embodiment, described free URL table comprises the webpage URL that other trade companies self such as the advertisement webpage URL of trade company are arranged.
S5.2, whether the wireless router accesses network domain name of searching in the DNS request message of mobile terminal is present in free URL table; When the accesses network domain name of described mobile terminal is free URL, jump to step S8; As the non-free URL of accesses network domain name, perform described step S6.
S6, wireless router judges whether mobile terminal is authenticated user; This step S6 comprises following steps:
S6.1, setting authentication subscriber's meter in wireless router, described authenticated user table comprises the MAC Address of all authenticated user, certification initial time and certification usage time interval.
Such as, the MAC Address of one of them authenticated user that authenticated user table comprises is: 00:88:44:33:22:88, and certification initial time is: xxxx.yy.zz (xxxx yy month zz day), certification usage time interval is: 3hours.
S6.2, the MAC Address of described mobile terminal is mated with the MAC Address in described authenticated user table by described wireless router; When the MAC Address of described mobile terminal is mated with the MAC Address in described authenticated user table, perform step S6.3; When the MAC Address of this mobile terminal is not mated with the MAC Address in described authenticated user table, jump to described step S7.
S6.3, wireless router, according to certification initial time corresponding to the MAC Address in described authenticated user table and certification usage time interval, calculates and judges whether this mobile terminal has exceeded authenticated time section; When exceeding, jump to described step S7; When not exceeding, jump to described step S8.
In above-described embodiment, MAC Address in the MAC Address of mobile terminal and described authenticated user table matches, but after the time that this mobile terminal is connected into the wireless router of this trade company has again exceeded 3 hours, wireless router is by the advertisement page display with authentication information to mobile terminal, and this mobile terminal needs by certification again.
S7, wireless router controls mobile terminal and carries out forcible authentication; This step S7 comprises following steps:
S7.1, the advertisement page display of this wireless router that far-end Cloud Server arranges by wireless router is to described mobile terminal; This advertisement page comprises user authentication information.
In the present embodiment, mobile terminal shows the advertisement page of this trade company, and the user authentication information simultaneously in this advertisement page comprises: the phone number of mobile phone users, the information such as identifying code.
S7.2, the authentication information required in mobile terminal input advertisement page carries out certification.
After authenticated, wireless router resets authenticated user table; Namely the MAC Address of this mobile terminal, certification initial time and certification usage time interval are saved in authenticated user table by wireless router.
S8, wireless router by with name server communication, by the accession page of mobile terminal display to this mobile terminal.This step S8 comprises following steps:
S8.1, the accesses network domain name that wireless router resolves described mobile terminal DNS request message is sent to domain name server.
S8.2, name server generates the IP address of above-mentioned accesses network domain name, and described access web page is returned display to described mobile terminal.
Finally, IP address be the mobile terminal of 192.168.1.xx through certification, access network domain is called the website of www.xxx.com.
Although content of the present invention has done detailed introduction by above preferred embodiment, will be appreciated that above-mentioned description should not be considered to limitation of the present invention.After those skilled in the art have read foregoing, for multiple amendment of the present invention and substitute will be all apparent.Therefore, protection scope of the present invention should be limited to the appended claims.
Claims (12)
1. for a system for the forced gate certification of wireless router, it is characterized in that, described system comprises:
Mobile terminal, for generating the DNS request message of this mobile terminal;
Wireless router, receives the online connection request that described mobile terminal sends; Described wireless router comprises:
Communication unit, for receiving the DNS request message of described mobile terminal;
Comparing unit, for judging that described mobile terminal is the need of forcible authentication;
Control unit, carries out forcible authentication for controlling described mobile terminal;
Far-end Cloud Server, carries out communication with described wireless router, and provides the information meeting online connection request to this wireless router;
Name server, carries out communication with described wireless router, resolves the domain names of described mobile terminal input.
2., for a forced gate authentication method for wireless router, it is characterized in that, the method comprises following steps:
S1, mobile terminal and wireless router carry out communication, and described wireless router receives the DNS request message that described mobile terminal sends; The communication unit of described wireless router, receives the DNS request message of described mobile terminal; Described DNS request message comprises the IP address of described mobile terminal and the domain names of mobile terminal accessing;
S2, the comparison rules set in this mobile terminal request information and this wireless router is compared by the comparing unit of described wireless router;
S3, to not meeting described comparing unit, the control unit of described wireless router requires that the mobile terminal of comparison rules carries out forcible authentication;
S4, described wireless router by with name server communication, by the display of the accession page of described mobile terminal to not needing the mobile terminal of forcible authentication or the mobile terminal after forcible authentication.
3. as claimed in claim 2 for the forced gate authentication method of wireless router, it is characterized in that, before described step S1, also need to perform following steps:
Described wireless router and described far-end Cloud Server carry out communication, and obtain the user profile that this far-end Cloud Server arranges described wireless router;
This user profile comprises: the advertisement page of described wireless router and the MAC Address of superuser.
4., as claimed in claim 2 for the forced gate authentication method of wireless router, it is characterized in that, described step S1 comprises following steps:
S1.1, described wireless router is by carrying out communication with the identical communications protocol that described mobile terminal has;
S1.2, the communication unit of described wireless router receives described mobile terminal DNS request message according to described communications protocol.
5., as claimed in claim 2 for the forced gate authentication method of wireless router, it is characterized in that, in described step S2, comprise following any one comparison rules, or the combination in any of following some comparison rules:
First comparison rules makes described comparing unit judge the communication modes of this mobile terminal and described wireless router according to described DNS request message; When described comparing unit judges described mobile terminal and described wireless router is wireless telecommunications, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit;
Second comparison rules, be described comparing unit is judged whether this mobile terminal is superuser; When described comparing unit judges that described mobile terminal is not superuser, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit;
3rd comparison rules, be described comparing unit is judged whether the domain name of mobile terminal network visiting is free URL; When the domain name that described comparing unit judges described mobile terminal network visiting is not free URL, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit;
4th comparison rules, be described comparing unit is judged whether described mobile terminal is authenticated user; When described comparing unit judges that described mobile terminal is not authenticated user, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
6., as claimed in claim 5 for the forced gate authentication method of wireless router, it is characterized in that, when described comparing unit judges the communication modes of this mobile terminal and described wireless router:
Described wireless router inside arranges ARP table, and described ARP table arranges MAC Address corresponding to each IP address of mobile terminal and Device field;
Carry out the mobile terminal of communication to wireless router, described comparing unit, according to the IP address of mobile terminal in described DNS request message, is searched Device field corresponding in ARP table, when Device field list shows wire communication, is jumped to step S4;
When Device field represents wireless telecommunications, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
7., as claimed in claim 5 for the forced gate authentication method of wireless router, it is characterized in that, when described comparing unit judges whether this mobile terminal is superuser:
Described comparing unit, according to the IP address of mobile terminal in the corresponding DNS request message of described mobile terminal, searches MAC Address corresponding in ARP table;
The MAC Address that the MAC Address of described mobile terminal and described far-end Cloud Server arrange the superuser of this wireless router user profile is mated by described comparing unit;
When the MAC Address of described mobile terminal is mated with the MAC Address of the superuser of described wireless router, jump to step S4;
When the MAC Address of this mobile terminal is not mated with the MAC Address of the superuser of described wireless router, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
8., as claimed in claim 5 for the forced gate authentication method of wireless router, it is characterized in that, when whether the domain name that described comparing unit judges mobile terminal network visiting is free URL:
Establish free URL to show in described wireless router, this free URL table comprises all free URL that this wireless router allows non-privileged users access;
Whether the described comparing unit accesses network domain name of searching in the DNS request message of described mobile terminal is present in described free URL table; When the accesses network domain name of described mobile terminal is free URL, jump to step S4;
As the non-free URL of accesses network domain name, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
9., as claimed in claim 5 for the forced gate authentication method of wireless router, it is characterized in that, when described comparing unit judges whether described mobile terminal is authenticated user:
Setting authentication subscriber's meter in described wireless router, described authenticated user table comprises the MAC Address of all authenticated user, certification initial time and certification usage time interval;
The MAC Address of described mobile terminal is mated with the MAC Address in described authenticated user table by described comparing unit; When the MAC Address of described mobile terminal is mated with the MAC Address in described authenticated user table, this comparing unit, according to certification initial time corresponding to the MAC Address in described authenticated user table and certification usage time interval, calculates and judges whether this mobile terminal has exceeded authenticated time section; When this mobile terminal does not exceed, jump to described step S4;
When the MAC Address of this mobile terminal is not mated with the MAC Address in described authenticated user table, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit;
When described comparing unit judges this mobile terminal authentication time-out, described control unit controls this mobile terminal and carries out forcible authentication; Or jump to other comparison rules, judged by described comparing unit.
10., as claimed in claim 2 for the forced gate authentication method of wireless router, it is characterized in that, when described wireless router control unit to do not meet described comparing unit require that the mobile terminal of comparison rules carries out forcible authentication time:
The advertisement page display of this wireless router that described far-end Cloud Server arranges by described control unit is to described mobile terminal; This advertisement page comprises user authentication information;
Described mobile terminal inputs the authentication information required in described advertisement page and carries out certification.
11. as claimed in claim 2 for the forced gate authentication method of wireless router, and it is characterized in that, described step S4 comprises following steps:
S4.1, the accesses network domain name that described wireless router resolves described mobile terminal DNS request message is sent to domain name server;
S4.2, domain name server generates the IP address of above-mentioned accesses network domain name, and described access web page is returned display to described mobile terminal.
12. 1 kinds of wireless routers, it is characterized in that, described wireless router comprises comparing unit, described comparing unit judges the communication modes of mobile terminal and described wireless router respectively according to the comparison rules of setting, whether described mobile terminal is superuser, whether the domain name of this mobile terminal network visiting is free URL, whether this mobile terminal is authenticated user, and then judges that described mobile terminal carries out forcible authentication the need of the control unit arranged by this wireless router; Described wireless router and name server carry out communication, to meeting the mobile terminal of setting rule or mobile terminal after forcible authentication provides the information meeting its online connection request to not meeting setting rule.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410590807.5A CN104283895A (en) | 2014-10-29 | 2014-10-29 | Compulsive portal authentication control system and method used for wireless router |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410590807.5A CN104283895A (en) | 2014-10-29 | 2014-10-29 | Compulsive portal authentication control system and method used for wireless router |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104283895A true CN104283895A (en) | 2015-01-14 |
Family
ID=52258377
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410590807.5A Pending CN104283895A (en) | 2014-10-29 | 2014-10-29 | Compulsive portal authentication control system and method used for wireless router |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104283895A (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104936259A (en) * | 2015-06-17 | 2015-09-23 | 杭州阿宅订网络科技有限公司 | Method and system for attracting customers for Internet of things |
| CN105005223A (en) * | 2015-06-17 | 2015-10-28 | 杭州阿宅订网络科技有限公司 | Method and system for attracting customers again through Internet of Things |
| CN105245461A (en) * | 2015-10-28 | 2016-01-13 | 青岛汇云无限物联网有限公司 | Router based on hardware local processing authentication request |
| CN105357125A (en) * | 2015-09-24 | 2016-02-24 | 上海斐讯数据通信技术有限公司 | System and method for acquiring online terminal list |
| CN105871727A (en) * | 2015-12-15 | 2016-08-17 | 乐视致新电子科技(天津)有限公司 | Method and apparatus for automatically connecting router |
| CN106357798A (en) * | 2016-10-14 | 2017-01-25 | 上海斐讯数据通信技术有限公司 | Method for storing and acquiring media files in Portal page, cloud controller and terminal |
| CN106789937A (en) * | 2016-11-29 | 2017-05-31 | 上海斐讯数据通信技术有限公司 | Application authentication method and its system in captive portals environment, wireless aps |
| CN106951308A (en) * | 2016-12-01 | 2017-07-14 | 广州高能计算机科技有限公司 | A kind of based on performance requirement and sequence cloud service system and construction method |
| CN109831403A (en) * | 2017-11-23 | 2019-05-31 | 电子科技大学中山学院 | Personal field behavior collection system and method |
| CN114401129A (en) * | 2022-01-04 | 2022-04-26 | 烽火通信科技股份有限公司 | Internet access behavior control method, DNS (Domain name Server), home gateway and storage medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101729568A (en) * | 2009-12-11 | 2010-06-09 | 北京交通大学 | Safety access system and method for guaranteeing source address authenticity by using token mechanism |
| CN102724172A (en) * | 2011-07-28 | 2012-10-10 | 北京天地互连信息技术有限公司 | System and method supporting rapid access authentication |
| CN103179554A (en) * | 2011-12-22 | 2013-06-26 | 中国移动通信集团广东有限公司 | Control method and device for wireless broadband network access and network equipment |
-
2014
- 2014-10-29 CN CN201410590807.5A patent/CN104283895A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101729568A (en) * | 2009-12-11 | 2010-06-09 | 北京交通大学 | Safety access system and method for guaranteeing source address authenticity by using token mechanism |
| CN102724172A (en) * | 2011-07-28 | 2012-10-10 | 北京天地互连信息技术有限公司 | System and method supporting rapid access authentication |
| CN103179554A (en) * | 2011-12-22 | 2013-06-26 | 中国移动通信集团广东有限公司 | Control method and device for wireless broadband network access and network equipment |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105005223A (en) * | 2015-06-17 | 2015-10-28 | 杭州阿宅订网络科技有限公司 | Method and system for attracting customers again through Internet of Things |
| CN104936259A (en) * | 2015-06-17 | 2015-09-23 | 杭州阿宅订网络科技有限公司 | Method and system for attracting customers for Internet of things |
| CN105357125B (en) * | 2015-09-24 | 2018-07-17 | 上海斐讯数据通信技术有限公司 | A kind of system and method obtaining online terminal list |
| CN105357125A (en) * | 2015-09-24 | 2016-02-24 | 上海斐讯数据通信技术有限公司 | System and method for acquiring online terminal list |
| CN105245461A (en) * | 2015-10-28 | 2016-01-13 | 青岛汇云无限物联网有限公司 | Router based on hardware local processing authentication request |
| CN105871727A (en) * | 2015-12-15 | 2016-08-17 | 乐视致新电子科技(天津)有限公司 | Method and apparatus for automatically connecting router |
| CN106357798A (en) * | 2016-10-14 | 2017-01-25 | 上海斐讯数据通信技术有限公司 | Method for storing and acquiring media files in Portal page, cloud controller and terminal |
| CN106789937A (en) * | 2016-11-29 | 2017-05-31 | 上海斐讯数据通信技术有限公司 | Application authentication method and its system in captive portals environment, wireless aps |
| CN106951308A (en) * | 2016-12-01 | 2017-07-14 | 广州高能计算机科技有限公司 | A kind of based on performance requirement and sequence cloud service system and construction method |
| CN106951308B (en) * | 2016-12-01 | 2020-08-14 | 广州高能计算机科技有限公司 | Parallel ordering cloud service system based on performance requirements and construction method |
| CN109831403A (en) * | 2017-11-23 | 2019-05-31 | 电子科技大学中山学院 | Personal field behavior collection system and method |
| CN114401129A (en) * | 2022-01-04 | 2022-04-26 | 烽火通信科技股份有限公司 | Internet access behavior control method, DNS (Domain name Server), home gateway and storage medium |
| CN114401129B (en) * | 2022-01-04 | 2024-02-13 | 烽火通信科技股份有限公司 | Internet surfing behavior control method, DNS server, home gateway and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104283895A (en) | Compulsive portal authentication control system and method used for wireless router | |
| EP2816827B1 (en) | Method and apparatus for distributing information, and network system | |
| US20110060838A1 (en) | Mobile communication device domain name system redirection | |
| WO2013008998A1 (en) | Wireless local area network access apparatus and operating method thereof | |
| EP2936881A2 (en) | Amethod and device to connect to a wireless network | |
| CN103809427B (en) | A kind of method and device for updating the mobile terminal time | |
| CN103780613B (en) | By the method and system that fixed network associates with mobile network user | |
| CN108390955A (en) | Domain Name acquisition method, Website access method and server | |
| CN104836812A (en) | Portal authentication method, device and system | |
| CN103368977A (en) | Network connection method and terminal equipment | |
| CN106060785A (en) | Method for judging WiFi Mac properties and carrying out directional information push | |
| CN103944942B (en) | A kind of data access method and device of more WEB environments | |
| CN105025484A (en) | Method and device for accessing Wi-Fi hotspot | |
| CN106330460A (en) | Short message interaction identity authentication method | |
| KR101506594B1 (en) | Method and system for subscriber to log in internet content provider(icp) website in identity/location separation network and login device thereof | |
| CN106921629A (en) | Application program login method and device | |
| CN105429880B (en) | The network equipment and its method for carrying out routing forwarding | |
| CN102467524A (en) | Method for obtaining and associating mobile phone user identifiers in personalized search | |
| CN101355530A (en) | System and method for publishing information based on wireless router | |
| CN102868539A (en) | Method and system for managing nationwide billing identification gateways | |
| CN105743891A (en) | Networking method and device, server and router | |
| CN106470252B (en) | The method and communication terminal of application program inquiry IP address | |
| CN105262767B (en) | Support the advertisement route system and its authentication method of multiple and different merchant advertisement push | |
| CN102025779A (en) | Method and equipment for establishing WAP (Wireless Application Protocol) site | |
| JP2013243674A (en) | Method for connection between terminals |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20150114 |
|
| WD01 | Invention patent application deemed withdrawn after publication |