CN104967572A - Network access method, apparatus and equipment - Google Patents
Network access method, apparatus and equipment Download PDFInfo
- Publication number
- CN104967572A CN104967572A CN201510303326.6A CN201510303326A CN104967572A CN 104967572 A CN104967572 A CN 104967572A CN 201510303326 A CN201510303326 A CN 201510303326A CN 104967572 A CN104967572 A CN 104967572A
- Authority
- CN
- China
- Prior art keywords
- application
- routing table
- network access
- access request
- routing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/70—Admission control; Resource allocation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The disclosure relates to a network access method, apparatus and equipment, and belongs to the technical field of the Internet. The method comprises the steps of obtaining a network access request; determining a specified routing table matching the network access request in a first routing table indicating the network access via a public network and a second routing table indicating the network access via a VPN; obtaining path information corresponding to the network access request in the specified routing table; and transmitting the network access request based on the path information. The disclosure achieves separation of the public network and the VPN through the two routing tables, thereby being capable of preventing irrelevant applications from transmitting a network access request via the VPN and ensuring the efficiency and speed of network access via the VPN.
Description
Technical field
The disclosure relates to Internet technical field, particularly a kind of Network Access Method, device and equipment.
Background technology
VPN (Virtual Private Network, VPN (virtual private network)) is the dedicated network set up in common network, and for encryption communication, it is extensive application in enterprise network.VPN technologies belong to remote access technology, are exactly briefly to utilize common network to set up dedicated network.Such as, certain company personnel goes on business other places, and he wants the server resource of accessing corporate intranet, and this access just belongs to remote access.Vpn gateway is by realizing remote access to the encryption of packet and the conversion of data packet destination address.Had VPN technologies, no matter user is go on business in other places or handle official business at home, VPN just can be utilized to access Intranet resource as long as can connect the Internet.
When terminal equipment is linked into after in VPN, if a certain application sends network access request, then intermediate equipment obtains corresponding routing information by a unified routing table, carries out access to netwoks based on this routing information.Wherein, the routing information reaching each network service terminal is stored in this routing table.Be limited to the restriction of VPN access strategy, after terminal equipment is linked into VPN, often there will be uncorrelated application and send network access request by VPN, do not wish that the application limited by VPN is forbidden sending the situation of network access request etc. by VPN.
Summary of the invention
For overcoming Problems existing in correlation technique, the disclosure provides a kind of Network Access Method, device and equipment.
According to the first aspect of disclosure embodiment, provide a kind of Network Access Method, described method comprises:
Obtain network access request;
In the first routing table and secondary route table, determine the appointment routing table matched with described network access request, described first routing table instruction carries out access to netwoks by common network, and described secondary route table instruction carries out access to netwoks by VPN;
Routing information corresponding to described network access request is obtained in described appointment routing table;
Based on described routing information, send described network access request.
Alternatively, before described acquisition network access request, described method also comprises:
When terminal equipment accesses described common network, according to the white list pre-set, create described first routing table;
When described terminal equipment accesses described VPN, according to described white list, create described secondary route table.
Alternatively, before described first routing table of described establishment, described method also comprises:
Arrange white list, described white list comprises the application identities allowing the first application being carried out access to netwoks by described VPN;
Described first routing table of described establishment, comprising:
Determine other application except the first application that described white list comprises, obtain the second application;
For each application in described second application, obtain described application and send first routing information of network access request to network service terminal;
Based on application identities and described first routing information of described second application, create described first routing table.
Alternatively, the described secondary route table of described establishment, comprising:
For each application in described first application, obtain described application and send second routing information of described network access request to described network service terminal;
Based on application identities and described second routing information of described first application, create described secondary route table.
Alternatively, described in described first routing table and described secondary route table, determine the appointment routing table matched with described network access request, comprising:
Determine that the appointment matched with described network access request is applied;
Judge whether the described application identities of application of specifying is arranged in described first routing table;
When described application identities is arranged in described first routing table, described first routing table is defined as described appointment routing table;
When described application identities is not arranged in described first routing table, judge whether described application identities is arranged in described secondary route table, when described application identities is arranged in described secondary route table, described secondary route table is defined as described appointment routing table.
According to the second aspect of disclosure embodiment, provide a kind of network access device, described device comprises:
Access request acquisition module, for obtaining network access request;
Routing table determination module, for in the first routing table and secondary route table, determine the appointment routing table matched with described network access request, described first routing table instruction carries out access to netwoks by common network, and described secondary route table instruction carries out access to netwoks by VPN;
Routing information acquisition module, for obtaining routing information corresponding to described network access request in described appointment routing table;
Access request sending module, for based on described routing information, sends described network access request.
Alternatively, described device also comprises:
Routing table creation module, for when terminal equipment accesses described common network, according to the white list pre-set, creates described first routing table; When described terminal equipment accesses described VPN, according to described white list, create described secondary route table.
Alternatively, described device also comprises:
White list arranges module, and for arranging white list, described white list comprises the application identities allowing the first application being carried out access to netwoks by described VPN;
Described routing table creation module, for determining other application except the first application that described white list comprises, obtains the second application; For each application in described second application, obtain described application and send first routing information of network access request to network service terminal; Based on application identities and described first routing information of described second application, create described first routing table.
Alternatively, described routing table creation module, for for each application in described first application, obtains described application and sends second routing information of described network access request to described network service terminal; Based on application identities and described second routing information of described first application, create described secondary route table.
Alternatively, described routing table determination module, for determining that the appointment matched with described network access request is applied; Judge whether the described application identities of application of specifying is arranged in described first routing table; When described application identities is arranged in described first routing table, described first routing table is defined as described appointment routing table; When described application identities is not arranged in described first routing table, judge whether described application identities is arranged in described secondary route table, when described application identities is arranged in described secondary route table, described secondary route table is defined as described appointment routing table.
According to the third aspect of disclosure embodiment, a kind of network access device is provided, it is characterized in that, comprising:
Processor;
For the memory of storage of processor executable instruction;
Wherein, described processor is configured to: obtain network access request; In the first routing table and secondary route table, determine the appointment routing table matched with described network access request, described first routing table instruction carries out access to netwoks by common network, and described secondary route table instruction carries out access to netwoks by VPN; Routing information corresponding to described network access request is obtained in described appointment routing table; Based on described routing information, send described network access request.
The technical scheme that embodiment of the present disclosure provides can comprise following beneficial effect:
After getting network access request, undertaken in access to netwoks secondary route table with instruction by VPN indicating first routing table of being carried out access to netwoks by common network, determine the appointment routing table matched with network access request, and obtain routing information corresponding to this network access request based on appointment routing table, this network access request is sent according to this routing information, owing to being achieved the separation by common network and VPN by two cover routing tables, so uncorrelated application can be avoided to send network access request by VPN, ensure that efficiency and the speed of being carried out access to netwoks by VPN.
Should be understood that, it is only exemplary and explanatory that above general description and details hereinafter describe, and can not limit the disclosure.
Accompanying drawing explanation
Accompanying drawing to be herein merged in specification and to form the part of this specification, shows embodiment according to the invention, and is used from specification one and explains principle of the present invention.
Fig. 1 is the flow chart of a kind of Network Access Method according to an exemplary embodiment.
Fig. 2 is the flow chart of a kind of Network Access Method according to an exemplary embodiment.
Fig. 3 is the block diagram of the first network access device according to an exemplary embodiment.
Fig. 4 is the block diagram of the second network access device according to an exemplary embodiment.
Fig. 5 is the block diagram of the third network access device according to an exemplary embodiment.
Fig. 6 is the block diagram of a kind of network access device according to an exemplary embodiment.
Embodiment
Here will be described exemplary embodiment in detail, its sample table shows in the accompanying drawings.When description below relates to accompanying drawing, unless otherwise indicated, the same numbers in different accompanying drawing represents same or analogous key element.Execution mode described in following exemplary embodiment does not represent all execution modes consistent with the present invention.On the contrary, they only with as in appended claims describe in detail, the example of apparatus and method that aspects more of the present invention are consistent.
Fig. 1 is the flow chart of a kind of Network Access Method according to an exemplary embodiment, and as shown in Figure 1, the method is used for, in network access device, comprising the following steps.
In a step 101, network access request is obtained.
In a step 102, in the first routing table and secondary route table, determine the appointment routing table matched with network access request, the first routing table instruction carries out access to netwoks by common network, and the instruction of secondary route table carries out access to netwoks by VPN.
In step 103, in appointment routing table, routing information corresponding to network access request is obtained.
At step 104, based on routing information, send network access request.
The method that disclosure embodiment provides, undertaken in access to netwoks secondary route table with instruction by VPN indicating first routing table of being carried out access to netwoks by common network, determine the appointment routing table matched with network access request, and obtain routing information corresponding to this network access request based on appointment routing table, this network access request is sent according to this routing information, owing to being achieved the separation by common network and VPN by two cover routing tables, so uncorrelated application can be avoided to send network access request by VPN, ensure that efficiency and the speed of being carried out access to netwoks by VPN.
Alternatively, before obtaining network access request, the method also comprises:
When terminal equipment access common network, according to the white list pre-set, create the first routing table;
As terminal equipment access VPN, according to this white list, create secondary route table.
Alternatively, before creating the first routing table, the method also comprises:
Arrange white list, white list comprises the application identities allowing the first application being carried out access to netwoks by VPN;
Create the first routing table, comprising:
Determine other application except the first application that white list comprises, obtain the second application;
For each application in the second application, obtain application and send first routing information of network access request to network service terminal;
Based on application identities and first routing information of the second application, create the first routing table.
Alternatively, create secondary route table, comprising:
For each application in the first application, obtain application and send second routing information of network access request to network service terminal;
Based on application identities and second routing information of the first application, create secondary route table.
Alternatively, in the first routing table and secondary route table, determine the appointment routing table matched with network access request, comprising:
Determine that the appointment matched with network access request is applied;
Judge to specify the application identities of application whether to be arranged in the first routing table;
When application identities is arranged in the first routing table, the first routing table is defined as specify routing table;
When application identities is not arranged in the first routing table, judge whether application identities is arranged in secondary route table, when application identities is arranged in secondary route table, secondary route table is defined as specify routing table.
Above-mentioned all alternatives, can adopt and combine arbitrarily formation embodiment of the present disclosure, this is no longer going to repeat them.
Fig. 2 is the flow chart of a kind of Network Access Method according to an exemplary embodiment, and as shown in Figure 2, the method is used for, in network access device, comprising the following steps.
In step 201, white list is set.
In the disclosed embodiments, white list comprises the application identities allowing the first application being carried out access to netwoks by VPN.Wherein, VPN can set up dedicated network in common network, is encrypted communication.Be widely used in enterprise network.Vpn gateway is by realizing remote access to the encryption of packet and the conversion of data packet destination address.VPN has multiple mode classification, mainly classifies by agreement.VPN realizes by various ways such as server, hardware, softwares.It is low that VPN has cost, wieldy feature.Give an example, had VPN technologies, no matter user is go on business in other places or handle official business at home, VPN technologies just can be utilized to access the Intranet resource of enterprise as long as can go up the Internet.
Wherein, allow the first application being carried out access to netwoks by VPN can be arranged voluntarily by user, or selected the first application voluntarily according to implied terms by network access device, disclosure embodiment does not specifically limit this.Wherein, the first application is only a general designation, can comprise multiple application, refer to access to netwoks is carried out in all permissions application by VPN, and the first application is the mounted application of the terminal equipments such as smart mobile phone.Wherein, allow the application being carried out access to netwoks by VPN, be generally and need to carry out remote access application.In addition, application identities can be the icon, title, numbering etc. of application, and disclosure embodiment does not specifically limit this.Wherein, network access device can take the form of such as following table 1 to safeguard white list.
Table 1
In step 202., when terminal equipment access common network, according to the white list pre-set, the first routing table is created; As terminal equipment access VPN, according to the white list pre-set, create secondary route table.
Wherein, common network refers to that Internet Service Provider builds, for the communication network of common user.The communication line of common network shares to common user and uses.VPN is the dedicated network utilizing common network to set up.When creating the first routing table according to the white list pre-set, following manner can be taked to realize:
Determine other application except the first application that white list comprises, obtain the second application; For each application in the second application, obtain application and send first routing information of network access request to network service terminal; Based on application identities and first routing information of the second application, create the first routing table.
Wherein, the second application refers to except the first application, and terminal equipment other application mounted.Such as, installing terminal equipment application 1 to application 6, the first application in white list comprises application 1, application 5 and application 6, then the second application comprises application 2, application 3 and application 4.Wherein, network service terminal comprises terminal equipment Internet resources to be visited, and after the network access request that terminal equipment is initiated reaches network service terminal, network service terminal feeds back the Internet resources mated with this network access request.Wherein, the concrete transmission path that network access request arrives network service terminal needs to determine based on routing table, so also need to create routing table.
When creating secondary route table according to the white list pre-set, following manner can be taked to realize:
For each application in the first application that white list comprises, obtain application and send second routing information of network access request to network service terminal; Based on application identities and second routing information of the first application, create secondary route table.
In the disclosed embodiments, due to based on access to netwoks could be carried out by VPN, the application of installing terminal equipment is classified, and the link paths of different network type exists different, so establish two cover routing tables for different network types.Wherein, the first routing table instruction carries out access to netwoks by common network, and the instruction of secondary route table carries out access to netwoks by VPN.And the routing table each packet that can be through network access device finds a best transmission path, and these data are sent to object website effectively.Wherein, according to the first routing information and the second routing information, after creating the first routing table and secondary route table, can upgrade the first routing table and secondary route table according to the situation of network system operation in subsequent process.Such as, the function that network access device can provide according to routing protocol, automatic learning and memory network ruuning situation, the optimal path of calculated data transmission automatically when needed.Wherein, the first routing information and the second routing information can preset according to the configuring condition of network, and disclosure embodiment does not specifically limit this.
In step 203, network access request is obtained.
In the disclosed embodiments, access equipment in networking can refer to the routing device setting up wired connection or wireless connections with the terminal equipment such as smart mobile phone.Like this, the network access request that network access device gets just comes from terminal equipment, terminal equipment is when initiating network access request, first this network access request is sent to the routing device connected with it, arrived the link paths of object website corresponding to this network access request again by this routing device according to the routing table lookup that self stores, determine down hop.
In step 204, in the first routing table and secondary route table, determine the appointment routing table matched with network access request.
In the disclosed embodiments, when determining the appointment routing table matched with network access request, following manner can be taked to realize:
Determine that the appointment matched with network access request is applied; Judge to specify the application identities of application whether to be arranged in the first routing table; When application identities is arranged in the first routing table, the first routing table is defined as specify routing table; When application identities is not arranged in the first routing table, judge whether application identities is arranged in secondary route table, when application identities is arranged in secondary route table, secondary route table is defined as specify routing table.
Corresponding, terminal equipment, when sending network access request, also can carry the application identities of the application initiating this access request, applies with the appointment making clear and definite and this network access request of network access device match.If specify the application identities of application to appear in the first routing table, then illustrate that this network access request may be not remote access request to a great extent, do not allow to carry out access to netwoks by VPN, only carry out access to netwoks by common network.If specify the application identities of application to appear in secondary route table, then illustrate that this network access request may be remote access request to a great extent, allow to carry out access to netwoks by VPN.
In step 205, in appointment routing table, routing information corresponding to network access request is obtained.
Wherein, the link paths arriving various network service terminal is stored in routing table.Therefore, according to the network address etc. of network service terminal, routing information corresponding to network access request can be obtained in appointment routing table.If the link paths of non-this network service terminal of memory access in appointment routing table, then can be defined as the routing information corresponding with this network access request by default route path.
In step 206, based on routing information, send network access request.
This network access request, after getting the routing information corresponding with this network access request, just according to this routing information by common network or VPN, can be sent to corresponding network service terminal, and then get access to netwoks resource by network access device.
The method that disclosure embodiment provides, undertaken in access to netwoks secondary route table with instruction by VPN indicating first routing table of being carried out access to netwoks by common network, determine the appointment routing table matched with network access request, and obtain routing information corresponding to this network access request based on appointment routing table, this network access request is sent according to this routing information, owing to being achieved the separation by common network and VPN by two cover routing tables, so uncorrelated application can be avoided to send network access request by VPN, ensure that efficiency and the speed of being carried out access to netwoks by VPN.
Fig. 3 is the block diagram of a kind of network access device according to an exemplary embodiment.With reference to Fig. 3, this device comprises access request acquisition module 301, routing table determination module 302, routing information acquisition module 303, access request sending module 304.
Wherein, access request acquisition module 301 is connected with routing table determination module 302, for obtaining network access request; Routing table determination module 302 is connected with routing information acquisition module 303, for in the first routing table and secondary route table, determine the appointment routing table matched with network access request, first routing table instruction carries out access to netwoks by common network, and the instruction of secondary route table carries out access to netwoks by VPN; Routing information acquisition module 303 is connected with access request sending module 304, for obtaining routing information corresponding to network access request in appointment routing table; Access request sending module 304, for based on routing information, sends network access request.
See Fig. 4, this device also comprises:
Routing table creation module 305, for when terminal equipment accesses common network, according to the white list pre-set, creates the first routing table; As terminal equipment access VPN, according to this white list, create secondary route table.
See Fig. 5, this device also comprises:
White list arranges module 306, and for arranging white list, white list comprises the application identities allowing the first application being carried out access to netwoks by VPN;
Routing table creation module, for determining other application except the first application that white list comprises, obtains the second application; For each application in the second application, obtain application and send first routing information of network access request to network service terminal; Based on application identities and first routing information of the second application, create the first routing table.
Alternatively, routing table creation module, for for each application in the first application, obtains application and sends second routing information of network access request to network service terminal; Based on application identities and second routing information of the first application, create secondary route table.
Alternatively, routing table determination module, for determining that the appointment matched with network access request is applied; Judge to specify the application identities of application whether to be arranged in the first routing table; When application identities is arranged in the first routing table, the first routing table is defined as specify routing table; When application identities is not arranged in the first routing table, judge whether application identities is arranged in secondary route table, when application identities is arranged in secondary route table, secondary route table is defined as specify routing table.
The device that disclosure embodiment provides, undertaken in access to netwoks secondary route table with instruction by VPN indicating first routing table of being carried out access to netwoks by common network, determine the appointment routing table matched with network access request, and obtain routing information corresponding to this network access request based on appointment routing table, this network access request is sent according to this routing information, owing to being achieved the separation by common network and VPN by two cover routing tables, so uncorrelated application can be avoided to send network access request by VPN, ensure that efficiency and the speed of being carried out access to netwoks by VPN.
About the device in above-described embodiment, wherein the concrete mode of modules executable operations has been described in detail in about the embodiment of the method, will not elaborate explanation herein.
Fig. 6 is the block diagram of a kind of equipment 600 for access to netwoks according to an exemplary embodiment.Such as, equipment 600 may be provided in a server.With reference to Fig. 6, equipment 600 comprises processing components 622, and it comprises one or more processor further, and the memory resource representated by memory 632, can such as, by the instruction of the execution of processing components 622, application program for storing.The application program stored in memory 632 can comprise each module corresponding to one group of instruction one or more.In addition, processing components 622 is configured to perform instruction, to perform the above method embodiment.
Equipment 600 can also comprise the power management that a power supply module 626 is configured to actuating equipment 600, and a wired or wireless network interface 650 is configured to equipment 600 to be connected to network, and input and output (I/O) interface 658.Equipment 600 can operate the operating system based on being stored in memory 632, such as Windows Server
tM, Mac OS X
tM, Unix
tM, Linux
tM, FreeBSD
tMor it is similar.
A kind of non-transitory computer-readable recording medium, when the instruction in described storage medium is performed by the processor of network access device, make network access device can perform a kind of Network Access Method, the method comprises:
Obtain network access request;
In the first routing table and secondary route table, determine the appointment routing table matched with network access request, the first routing table instruction carries out access to netwoks by common network, and the instruction of secondary route table carries out access to netwoks by VPN;
Routing information corresponding to network access request is obtained in appointment routing table;
Based on routing information, send network access request.
Alternatively, before obtaining network access request, the method also comprises:
When terminal equipment access common network, according to the white list pre-set, create the first routing table;
As terminal equipment access VPN, according to this white list, create secondary route table.
Alternatively, before creating the first routing table, the method also comprises:
Arrange white list, white list comprises the application identities allowing the first application being carried out access to netwoks by VPN;
Create the first routing table, comprising:
Determine other application except the first application that white list comprises, obtain the second application;
For each application in the second application, obtain application and send first routing information of network access request to network service terminal;
Based on application identities and first routing information of the second application, create the first routing table.
Alternatively, create secondary route table, comprising:
For each application in the first application, obtain application and send second routing information of network access request to network service terminal;
Based on application identities and second routing information of the first application, create secondary route table.
Alternatively, in the first routing table and secondary route table, determine the appointment routing table matched with network access request, comprising:
Determine that the appointment matched with network access request is applied;
Judge to specify the application identities of application whether to be arranged in the first routing table;
When application identities is arranged in the first routing table, the first routing table is defined as specify routing table;
When application identities is not arranged in the first routing table, judge whether application identities is arranged in secondary route table, when application identities is arranged in secondary route table, secondary route table is defined as specify routing table.
The non-transitory computer-readable recording medium that disclosure embodiment provides, undertaken in access to netwoks secondary route table with instruction by VPN indicating first routing table of being carried out access to netwoks by common network, determine the appointment routing table matched with network access request, and obtain routing information corresponding to this network access request based on appointment routing table, this network access request is sent according to this routing information, owing to being achieved the separation by common network and VPN by two cover routing tables, so uncorrelated application can be avoided to send network access request by VPN, ensure that efficiency and the speed of being carried out access to netwoks by VPN.
Those skilled in the art, at consideration specification and after putting into practice invention disclosed herein, will easily expect other embodiment of the present invention.The application is intended to contain any modification of the present invention, purposes or adaptations, and these modification, purposes or adaptations are followed general principle of the present invention and comprised the undocumented common practise in the art of the disclosure or conventional techniques means.Specification and embodiment are only regarded as exemplary, and true scope of the present invention and spirit are pointed out by claim below.
Should be understood that, the present invention is not limited to precision architecture described above and illustrated in the accompanying drawings, and can carry out various amendment and change not departing from its scope.Scope of the present invention is only limited by appended claim.
Claims (11)
1. a Network Access Method, is characterized in that, described method comprises:
Obtain network access request;
In the first routing table and secondary route table, determine the appointment routing table matched with described network access request, described first routing table instruction carries out access to netwoks by common network, and described secondary route table instruction carries out access to netwoks by VPN (virtual private network) VPN;
Routing information corresponding to described network access request is obtained in described appointment routing table;
Based on described routing information, send described network access request.
2. method according to claim 1, is characterized in that, before described acquisition network access request, described method also comprises:
When terminal equipment accesses described common network, according to the white list pre-set, create described first routing table;
When described terminal equipment accesses described VPN, according to described white list, create described secondary route table.
3. method according to claim 2, is characterized in that, before described first routing table of described establishment, described method also comprises:
Arrange white list, described white list comprises the application identities allowing the first application being carried out access to netwoks by described VPN;
Described first routing table of described establishment, comprising:
Determine other application except the first application that described white list comprises, obtain the second application;
For each application in described second application, obtain described application and send first routing information of network access request to network service terminal;
Based on application identities and described first routing information of described second application, create described first routing table.
4. method according to claim 3, is characterized in that, the described secondary route table of described establishment, comprising:
For each application in described first application, obtain described application and send second routing information of described network access request to described network service terminal;
Based on application identities and described second routing information of described first application, create described secondary route table.
5. method according to claim 1, is characterized in that, described in described first routing table and described secondary route table, determines the appointment routing table matched with described network access request, comprising:
Determine that the appointment matched with described network access request is applied;
Judge whether the described application identities of application of specifying is arranged in described first routing table;
When described application identities is arranged in described first routing table, described first routing table is defined as described appointment routing table;
When described application identities is not arranged in described first routing table, judge whether described application identities is arranged in described secondary route table, when described application identities is arranged in described secondary route table, described secondary route table is defined as described appointment routing table.
6. a network access device, is characterized in that, described device comprises:
Access request acquisition module, for obtaining network access request;
Routing table determination module, for in the first routing table and secondary route table, determine the appointment routing table matched with described network access request, described first routing table instruction carries out access to netwoks by common network, and described secondary route table instruction carries out access to netwoks by VPN (virtual private network) VPN;
Routing information acquisition module, for obtaining routing information corresponding to described network access request in described appointment routing table;
Access request sending module, for based on described routing information, sends described network access request.
7. device according to claim 6, is characterized in that, described device also comprises:
Routing table creation module, for when terminal equipment accesses described common network, according to the white list pre-set, creates described first routing table; When described terminal equipment accesses described VPN, according to described white list, create described secondary route table.
8. device according to claim 7, is characterized in that, described device also comprises:
White list arranges module, and for arranging white list, described white list comprises the application identities allowing the first application being carried out access to netwoks by described VPN;
Described routing table creation module, for determining other application except the first application that described white list comprises, obtains the second application; For each application in described second application, obtain described application and send first routing information of network access request to network service terminal; Based on application identities and described first routing information of described second application, create described first routing table.
9. device according to claim 8, is characterized in that, described routing table creation module, for for each application in described first application, obtains described application and sends second routing information of described network access request to described network service terminal; Based on application identities and described second routing information of described first application, create described secondary route table.
10. device according to claim 6, is characterized in that, described routing table determination module, for determining that the appointment matched with described network access request is applied; Judge whether the described application identities of application of specifying is arranged in described first routing table; When described application identities is arranged in described first routing table, described first routing table is defined as described appointment routing table; When described application identities is not arranged in described first routing table, judge whether described application identities is arranged in described secondary route table, when described application identities is arranged in described secondary route table, described secondary route table is defined as described appointment routing table.
11. 1 kinds of network access devices, is characterized in that, comprising:
Processor;
For the memory of storage of processor executable instruction;
Wherein, described processor is configured to: obtain network access request; In the first routing table and secondary route table, determine the appointment routing table matched with described network access request, described first routing table instruction carries out access to netwoks by common network, and described secondary route table instruction carries out access to netwoks by VPN (virtual private network) VPN; Routing information corresponding to described network access request is obtained in described appointment routing table; Based on described routing information, send described network access request.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510303326.6A CN104967572B (en) | 2015-06-05 | 2015-06-05 | Network Access Method, device and equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510303326.6A CN104967572B (en) | 2015-06-05 | 2015-06-05 | Network Access Method, device and equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104967572A true CN104967572A (en) | 2015-10-07 |
| CN104967572B CN104967572B (en) | 2019-04-12 |
Family
ID=54221519
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510303326.6A Active CN104967572B (en) | 2015-06-05 | 2015-06-05 | Network Access Method, device and equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104967572B (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106789530A (en) * | 2016-12-16 | 2017-05-31 | 广东欧珀移动通信有限公司 | A kind of method for connecting network, device and mobile terminal |
| CN107547221A (en) * | 2016-06-27 | 2018-01-05 | 上海连尚网络科技有限公司 | A kind of method and apparatus for being used to provide log information |
| CN107979627A (en) * | 2016-10-25 | 2018-05-01 | 北京国双科技有限公司 | A kind of processing method and processing device of network request |
| CN108390808A (en) * | 2017-02-03 | 2018-08-10 | 阿里巴巴集团控股有限公司 | Communication processing method and device |
| CN114025412A (en) * | 2021-11-03 | 2022-02-08 | 中国联合网络通信集团有限公司 | Service access method, system, device and storage medium |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050286519A1 (en) * | 2004-06-29 | 2005-12-29 | Damaka, Inc | System and method for peer-to peer hybrid communications |
| CN101030977A (en) * | 2006-02-28 | 2007-09-05 | 株式会社日立制作所 | Device for protection against illegal communications and network system thereof |
| CN101562574A (en) * | 2009-06-04 | 2009-10-21 | 杭州华三通信技术有限公司 | Method for updating routing list and device thereof |
| CN102035727A (en) * | 2010-11-17 | 2011-04-27 | 杭州华三通信技术有限公司 | Method and equipment for processing routing |
| CN102664811A (en) * | 2012-05-04 | 2012-09-12 | 杭州华三通信技术有限公司 | Message forwarding method and device |
| CN103618661A (en) * | 2013-12-12 | 2014-03-05 | 四川迅游网络科技股份有限公司 | Data separation method and system |
-
2015
- 2015-06-05 CN CN201510303326.6A patent/CN104967572B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050286519A1 (en) * | 2004-06-29 | 2005-12-29 | Damaka, Inc | System and method for peer-to peer hybrid communications |
| CN101030977A (en) * | 2006-02-28 | 2007-09-05 | 株式会社日立制作所 | Device for protection against illegal communications and network system thereof |
| CN101562574A (en) * | 2009-06-04 | 2009-10-21 | 杭州华三通信技术有限公司 | Method for updating routing list and device thereof |
| CN102035727A (en) * | 2010-11-17 | 2011-04-27 | 杭州华三通信技术有限公司 | Method and equipment for processing routing |
| CN102664811A (en) * | 2012-05-04 | 2012-09-12 | 杭州华三通信技术有限公司 | Message forwarding method and device |
| CN103618661A (en) * | 2013-12-12 | 2014-03-05 | 四川迅游网络科技股份有限公司 | Data separation method and system |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107547221A (en) * | 2016-06-27 | 2018-01-05 | 上海连尚网络科技有限公司 | A kind of method and apparatus for being used to provide log information |
| CN107979627A (en) * | 2016-10-25 | 2018-05-01 | 北京国双科技有限公司 | A kind of processing method and processing device of network request |
| CN106789530A (en) * | 2016-12-16 | 2017-05-31 | 广东欧珀移动通信有限公司 | A kind of method for connecting network, device and mobile terminal |
| CN106789530B (en) * | 2016-12-16 | 2019-07-16 | Oppo广东移动通信有限公司 | A kind of method for connecting network, device and mobile terminal |
| CN108390808A (en) * | 2017-02-03 | 2018-08-10 | 阿里巴巴集团控股有限公司 | Communication processing method and device |
| CN108390808B (en) * | 2017-02-03 | 2021-09-14 | 阿里巴巴集团控股有限公司 | Communication processing method and device |
| CN114025412A (en) * | 2021-11-03 | 2022-02-08 | 中国联合网络通信集团有限公司 | Service access method, system, device and storage medium |
| CN114025412B (en) * | 2021-11-03 | 2024-03-26 | 中国联合网络通信集团有限公司 | Service access method, system, device and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104967572B (en) | 2019-04-12 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11483418B2 (en) | Plugin management for internet of things (IoT) network optimization | |
| EP3750283B1 (en) | Stitching enterprise virtual private networks (vpns) with cloud virtual private clouds (vpcs) | |
| CN113950816A (en) | System and method for providing multi-cloud micro-service gateway using sidecar agency | |
| CN111736955B (en) | Data storage method, device and equipment and readable storage medium | |
| US9876757B2 (en) | Systems and methods for dynamic network address modification | |
| CN104967572A (en) | Network access method, apparatus and equipment | |
| CN104994073A (en) | Cell phone terminal, server and account-device linking control and executing method | |
| CN104158883A (en) | Method, device, equipment and system for carrying out user login through cross-terminal equipment | |
| EP2223549B1 (en) | Enabling provider network inter-working with mobile access | |
| CN104902532A (en) | A method and system for automatically accessing wireless local area network | |
| WO2019134595A1 (en) | Configuration system, client device, embedded device configuration method, and storage medium | |
| US10999243B2 (en) | Sharing media among remote access clients in a universal plug and play environment | |
| CN105979022A (en) | UPnP (universal plug and play) protocol-based NAT (network address translation) traversal method and system | |
| CN109450905A (en) | Transmit the method and apparatus and system of data | |
| US20130064250A1 (en) | Remotely accessing and controlling user equipment in a private network | |
| CN103634214A (en) | Route information generating method and device | |
| US10177973B2 (en) | Communication apparatus, communication method, and communication system | |
| JP2019519146A (en) | Routing establishment, packet transmission | |
| CN103688516A (en) | Methods providing public reachability and related systems and devices | |
| CN107659930A (en) | A kind of AP connection control methods and device | |
| CN109788528B (en) | Access point and method and system for opening internet access service thereof | |
| US20220124071A1 (en) | Routing network traffic using router-terminated virtual private network (vpn) client sessions | |
| US20150047009A1 (en) | Access control method, access control system and access control device | |
| US10805260B2 (en) | Method for transmitting at least one IP data packet, related system and computer program product | |
| CN105743891A (en) | Networking method and device, server and router |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |