CN105791208A - System for realizing signaling firewall based on non-signaling point access technology - Google Patents
System for realizing signaling firewall based on non-signaling point access technology Download PDFInfo
- Publication number
- CN105791208A CN105791208A CN201410789142.0A CN201410789142A CN105791208A CN 105791208 A CN105791208 A CN 105791208A CN 201410789142 A CN201410789142 A CN 201410789142A CN 105791208 A CN105791208 A CN 105791208A
- Authority
- CN
- China
- Prior art keywords
- signaling
- message
- gating
- link
- management server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a system for realizing a signaling firewall based on non-signaling point access technology. The system is composed of a plurality of message processor devices accessed to a signaling network and a management server, the message processor devices are serially connected in a signaling link where gating and filtering should be performed on a signaling message in a non-signaling point encoding mode, and when the signaling message flows through the device, a gating and filtering operation on the signaling message is executed to achieve the function of the signaling firewall. The message processor devices in the invention can be serially connected in the signaling link of the signaling network to which a business processing signaling point is accessed without perception, without changing a logic connection relation of the business processing signaling point and the signaling network, so regular transmission of the signaling message is realized, an abnormal signaling message is prevented from entering the signaling network, and the safe operation of the signaling network is guaranteed.
Description
Technical field
The present invention relates to a kind of based on the system realizing signaling fire wall without signalling point access technology, by signaling message being processed device serial connection in the signaling link of Business Processing signalling point institute access signaling net, specification to realize signaling message is transmitted, reach the purpose preventing exceptional signaling message from entering signaling network, ensure the safe operation of signaling network.
Background technology
In fixing and mobile radio communication, it is achieved Service control it is crucial that signaling, signaling network is the core support net of telecommunications network, the introducing of each call and major part new business, all be unable to do without the support of signaling network.
The offer of business is usually the platform of the business of will provide for and is connected to signaling network as a signalling point of signaling network through signaling link, importance due to the multiformity of business platform and signaling network, need between business platform and signaling network, arrange signaling fire wall, this signaling fire wall can adopt the mode of signalling point to work, as the agent equipment of signaling message communications between business platform and signaling network in signaling work mode, this agent equipment realizes the gating to signaling message and filtration, due to based on there being signalling point mode, be equivalent to add one-level signal switching function, firewall box accesses complexity, need coordinating of business platform and signaling network, realizability is poor.
The applicant to be on October 15th, 2003, application number be the applying date 200310107935.1 application for a patent for invention in provide " at the Signaling System Number 7 chain circuit function layer identifying processing method to signaling data and device ", that is: between Signaling System Number 7 chain circuit function layer, introduce signaling message content services device, for implementing specific transactions, this device coupling is serially connected in signaling link, when message flows through this device, complete specific message processing service.For how to realize communication network Service control and the value-added concrete system and method for signaling always for one of content of the applicant's research based on signaling method.
Summary of the invention
It is an object of the invention to overcome the defect of prior art to provide a kind of system realizing signaling fire wall, can when traffic signaling point access signaling net, the Network Security Vulnerabilities preventing abnormal signaling message from entering signaling network and to cause, need signaling message to be carried out in the gating signaling link with filtration to be serially connected with without signaling point code mode by Message Processing machine, perform the gating to signaling message and filter operation when signaling message flows through this device, reach the effect of signaling fire wall.
A kind of based on the system realizing signaling fire wall without signalling point access technology, it connects, based on by signaling link, the signaling network that several signalling points form, signalling point includes Business Processing signalling point, it is characterized in that: this system includes at least one stylobate in the Message Processing machine accessed without signalling point and a management server, wherein:
Message Processing machine, built-in signaling message gating and filtering rule data, to be serially connected in the signaling link of described Business Processing signalling point institute access signaling net without signaling point code mode, and be connected with described management server, this device is according to signaling message gating or filtering rule, the signaling message flowed through is analyzed in real time, perform gating or the filtering function of signaling message, report state to management server, perform business rule data modification order and the system management command of Self management server;
Management server, is connected with each Message Processing machine, including signaling message gating and filtering rule data, is responsible for message gating and the filtering rule management of Message Processing machine and equipment control.
The interface of described Message Processing machine access signaling link includes the IP data link of 64Kb/s normal rate signaling link, 2Mb/s two-forty signaling link, carrying transmission signaling message, and the mixing of three uses.
Accompanying drawing explanation
Fig. 1 be one of the present invention based on the system group network schematic diagram realizing signaling fire wall without signalling point access technology.
Specific embodiment
Below in conjunction with accompanying drawing, the invention will be further described.
As shown in Figure 1, there is shown a kind of based on the system realizing signaling fire wall without signalling point access technology of one of the present invention, it connects, based on by signaling link, the signaling network 12 that several signalling points form, signalling point includes Business Processing signalling point 11, this system includes at least one stylobate in the Message Processing machine (MPM) 21 accessed without signalling point and a management server 22, wherein:
Message Processing machine 21, adopt the system group network that the signaling fire wall pattern without signaling point code works, built-in signaling message gating and filtering rule data, to be serially connected in the signaling link of 11 access signaling nets 12 of Business Processing signalling point without signaling point code mode, and be connected with management server 22 by data link, this device is according to signaling message gating or filtering rule, the signaling message flowed through is analyzed in real time, perform gating or the filtering function of signaling message, report state to management server 22, perform business rule data modification order and the system management command of Self management server 22;
Management server 22, is connected with each Message Processing machine 21, including signaling message gating and filtering rule data, is responsible for message gating and the filtering rule management of Message Processing machine and equipment control.
The interface of Message Processing machine 21 access signaling link includes the IP data link of 64Kb/s normal rate signaling link, 2Mb/s two-forty signaling link, carrying transmission signaling message, and the mixing of three uses.
Claims (2)
1. one kind based on the system realizing signaling fire wall without signalling point access technology, it connects, based on by signaling link, the signaling network that several signalling points form, signalling point includes Business Processing signalling point, it is characterized in that: this system includes at least one stylobate in the Message Processing machine accessed without signalling point and a management server, wherein:
Message Processing machine, built-in signaling message gating and filtering rule data, to be serially connected in the signaling link of described Business Processing signalling point institute access signaling net without signaling point code mode, and be connected with described management server, this device is according to signaling message gating or filtering rule, the signaling message flowed through is analyzed in real time, perform gating or the filtering function of signaling message, report state to management server, perform business rule data modification order and the system management command of Self management server;
Management server, is connected with each Message Processing machine, including signaling message gating and filtering rule data, is responsible for message gating and the filtering rule management of Message Processing machine and equipment control.
2. according to claim 1 based on the system realizing signaling fire wall without signalling point access technology, it is characterized in that: the interface of described Message Processing machine access signaling link includes the IP data link of 64Kb/s normal rate signaling link, 2Mb/s two-forty signaling link, carrying transmission signaling message, and the mixing of three uses.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410789142.0A CN105791208A (en) | 2014-12-19 | 2014-12-19 | System for realizing signaling firewall based on non-signaling point access technology |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410789142.0A CN105791208A (en) | 2014-12-19 | 2014-12-19 | System for realizing signaling firewall based on non-signaling point access technology |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105791208A true CN105791208A (en) | 2016-07-20 |
Family
ID=56375001
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410789142.0A Pending CN105791208A (en) | 2014-12-19 | 2014-12-19 | System for realizing signaling firewall based on non-signaling point access technology |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105791208A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114710337A (en) * | 2022-03-24 | 2022-07-05 | 北京旷通科技有限责任公司 | Signaling firewall processing method, device, system, equipment and medium based on SCTP |
-
2014
- 2014-12-19 CN CN201410789142.0A patent/CN105791208A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114710337A (en) * | 2022-03-24 | 2022-07-05 | 北京旷通科技有限责任公司 | Signaling firewall processing method, device, system, equipment and medium based on SCTP |
| CN114710337B (en) * | 2022-03-24 | 2022-12-13 | 北京旷通科技有限责任公司 | Signaling firewall processing method, device, system, equipment and medium based on SCTP |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102255903B (en) | Safety isolation method for virtual network and physical network of cloud computing | |
| CN104243010B (en) | A kind of intermediate station wireless interconnected method, system and intermediate station | |
| CN109104461A (en) | A kind of data processing system and its method based on Internet of things middleware | |
| CN109963320A (en) | The control method and equipment of service access | |
| CN107770826A (en) | A kind of network section system of selection and relevant device | |
| CN108112011A (en) | The methods, devices and systems of the universal embedded integrated circuit card of remote management | |
| CN104320472A (en) | Distributed short message gateway architecture system and design method thereof | |
| CN104394073B (en) | A kind of routing of data and its control method and equipment | |
| CN104283801A (en) | Method and system for processing service data | |
| CN101827283A (en) | System and method for realizing signaling firewall based on signaling point-free access technology | |
| CN107241274A (en) | A kind of integrated service wireless router of Internet of Things and system | |
| CN104639437A (en) | Forwarding method and apparatus of broadcast messages in stack system | |
| CN107969017A (en) | Realize the method and system of network section | |
| CN105049403A (en) | Power distribution network control system safety protection method and system | |
| CN105791208A (en) | System for realizing signaling firewall based on non-signaling point access technology | |
| CN103858458A (en) | Method and device for monitoring a mobile radio interface on mobile terminals | |
| CN105763515A (en) | Signaling point-free access technology-based signaling firewall realization method | |
| CN103944759A (en) | Fault warning system of communication transmission network management part of power communication network | |
| CN108271226B (en) | A kind of SOT state of termination across RAT determines method and the network equipment | |
| CN207947768U (en) | A kind of semaphore network communication device | |
| CN107547444B (en) | Traffic statistical method and switching equipment | |
| CN103812681A (en) | Processing method and communication system for EMS and LMT to access to network element | |
| CN108574964B (en) | A kind of jamming control method and device controlling face data | |
| CN104836692A (en) | Network equipment alarm automatic filtering system and filtering method thereof | |
| CN107466023A (en) | More card flow application methods, mobile terminal and the device with store function |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20160720 |
|
| WD01 | Invention patent application deemed withdrawn after publication |