CN106060048A - Network resource access method and network resource access device - Google Patents

Network resource access method and network resource access device Download PDF

Info

Publication number
CN106060048A
CN106060048A CN201610379985.2A CN201610379985A CN106060048A CN 106060048 A CN106060048 A CN 106060048A CN 201610379985 A CN201610379985 A CN 201610379985A CN 106060048 A CN106060048 A CN 106060048A
Authority
CN
China
Prior art keywords
access
self
server
threshold value
connection status
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610379985.2A
Other languages
Chinese (zh)
Inventor
徐勇刚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hangzhou H3C Technologies Co Ltd
Original Assignee
Hangzhou H3C Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou H3C Technologies Co Ltd filed Critical Hangzhou H3C Technologies Co Ltd
Priority to CN201610379985.2A priority Critical patent/CN106060048A/en
Publication of CN106060048A publication Critical patent/CN106060048A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network-specific arrangements or communication protocols supporting networked applications
    • H04L67/02Network-specific arrangements or communication protocols supporting networked applications involving the use of web-based technology, e.g. hyper text transfer protocol [HTTP]

Abstract

The invention provides a network resource access method and a network resource access device. The method comprises steps: whether the connection state between the self and a second access device is in a disconnection state is detected; or whether the utilization ratio of the self ACL resource exceeds a set threshold is detected; or whether the unreachable times between the self and any server in multiple servers for providing network resources for user equipment reach a set times threshold; if yes, Portal authentication is closed to enable the user equipment to directly access to the network resource. When the first access device is an access controller, the second access device is an access point; and when the first access device is an access point, the second access device is an access controller. The problem that the user can not normally access to the network resource can be solved.

Description

A kind of network resource access method and device
Technical field
The application relates to Internet technical field, particularly relates to a kind of network resource access method and dress Put.
Background technology
Portal certification (that is, gate verification) is also commonly referred to as web authentication, typically by Portal certification Website is referred to as portal website.During unauthenticated user online, pressure user is signed in ad hoc networks by access device Standing, user can be with the Internet resources in free access specific website.When user needs to access more network During resource, it is necessary to be authenticated in portal website, only certification is provided by the rear network of relation that just can access Source.
But, in actual application scenarios, it will usually because of all kinds of abnormal problems, (e.g., network connects different Often or server exception etc.) cause Portal authentification failure, if abnormal problem now cannot be detected, still Continue access device is carried out Portal certification, it will cause new user to reach the standard grade, the most online Portal certification user cannot normally be rolled off the production line, and causes user cannot normally access Internet resources.
Summary of the invention
Technical problems to be solved in this application are to provide a kind of network resource access method and device, to solve The problem that certainly user cannot normally access Internet resources.
In order to solve the problems referred to above, this application discloses a kind of network resource access method, described method should For the first access device, described method includes:
Detect whether the connection status between self and the second access device is off;Or
Whether the utilization rate of the access control list ACL resource detecting self exceedes setting threshold value;Or
Detect self with for subscriber equipment provide Internet resources multiple servers in any server it Between unreachable number of times whether reach set point number threshold value;
When testing result is for being, close Portal certification, so that described subscriber equipment directly accesses described Internet resources;
Wherein, when described first access device is access controller, described second access device is for accessing Point;When described first access device is access point, described second access device is access controller.
Correspondingly, disclosed herein as well is a kind of network resource accession device, described device is applied to first Access device, described device includes:
Whether detection module, be in disconnection for the connection status detected between self and the second access device State;Or, whether the utilization rate of the access control list ACL resource detecting self exceedes setting threshold Value;Or, detect self and the arbitrary service in multiple servers that Internet resources are provided for subscriber equipment Whether the unreachable number of times between device reaches set point number threshold value;
First closes module, for when the testing result of described detection module is for being, closes Portal and recognizes Card, so that described subscriber equipment directly accesses described Internet resources;
Wherein, when described first access device is access controller, described second access device is for accessing Point;When described first access device is access point, described second access device is access controller.
Compared with prior art, the application has the advantage that
In the embodiment of the present application, can be between self (the first access device) and the second access device Connection status whether be off or whether the utilization rate of ACL resource of self exceedes setting Threshold value or self and for subscriber equipment provide Internet resources multiple servers in any server between Unreachable number of times whether reach set point number threshold value and detect, when testing result is for being, close Portal certification, so that described subscriber equipment directly accesses described Internet resources.Visible, pass through the application Scheme described in embodiment can detect that the exception that Portal certification exists in actual applications is asked in time Topic, and Portal certification is closed in time when abnormal problem occurs, it is ensured that user is to Internet resources just Frequentation is asked, effectively prevent the impact brought because of abnormal problem to user.
Secondly, detect self with server up to number of times time, can be specifically to carry for subscriber equipment Multiple servers for Internet resources detect, and reach at the unreachable number of times detecting any server During to set point number threshold value, close Portal certification, it is ensured that Portal certification close accuracy and can By property.
Accompanying drawing explanation
Fig. 1 is the flow chart of steps of a kind of network resource access method in the embodiment of the present application;
Fig. 2 is the flow chart of steps of another network resource access method in the embodiment of the present application;
Fig. 3 is the flow chart of steps of a kind of network resource access method in the embodiment of the present application;
Fig. 4 is the flow chart of steps of another kind of network resource access method in the embodiment of the present application;
Fig. 5 is the flow chart of steps of one of which network resource access method in the embodiment of the present application;
Fig. 6 is the flow chart of steps of wherein another network resource access method in the embodiment of the present application;
Fig. 7 is the flow chart of steps of wherein another kind of network resource access method in the embodiment of the present application;
Fig. 8 is the flow chart of steps of a kind of network resource access method in the embodiment of the present application;
Fig. 9 is the flow chart of steps of the embodiment of the present application wherein another network resource access method;
Figure 10 is the structured flowchart of a kind of network resource accession device in the embodiment of the present application;
Figure 11 is the structured flowchart of another network resource accession device in the embodiment of the present application.
Detailed description of the invention
Understandable, below in conjunction with the accompanying drawings for enabling the above-mentioned purpose of the application, feature and advantage to become apparent from With detailed description of the invention, the application is described in further detail.
Network resource access method disclosed in the present application specifically can apply to the first access device, wherein, When described first access device is access controller (AC, Access Controller), following Two access devices can be access point (AP, Access Point), is primarily adapted for use in concentration and forwards;Work as institute Stating the first access device when being access point, the second following access device can be access controller, mainly It is applicable to local forwarding.
With reference to Fig. 1, it is shown that the flow chart of steps of a kind of network resource access method in the embodiment of the present application. In the present embodiment, described network resource access method includes:
Step 102, detects whether the connection status between self and the second access device is off; Or, whether the utilization rate of the access control list ACL resource detecting self exceedes setting threshold value;Or Person, detect self and for subscriber equipment provide Internet resources multiple servers in any server between Unreachable number of times whether reach set point number threshold value.
In the present embodiment, in order to accurately judge that can the first access device normally perform Portal certification, Can be by the connection status between self (the first access device) and the second access device or right Self the utilization rate of access control list ACL (Access Control List) resource or right Self and for subscriber equipment provide Internet resources multiple servers in any server between can not Reach number of times to detect.Testing result according to above-mentioned detection may determine that whether system abnormal asking occurs Topic, whether the first access device can guarantee that the normal execution of Portal certification.
Such as, if the connection status detected between self and the second access device is off, this Time the first access device Portal certification cannot be provided, following step 104 can be performed.
The most such as, if detecting, the utilization rate of the ACL resource of self exceedes setting threshold value, and now first Access device cannot receive the Portal certification request of more users, that is, Portal certification cannot be provided, Following step 104 can be performed.
The most such as, if detecting self and appointing in the multiple servers providing Internet resources for subscriber equipment Unreachable number of times between one server reaches set point number threshold value, namely has the end of at least one server Mouth is disabled, will be unable to carry out Portal certification, can perform following step 104.
For large-scale application currently for offer cloud service, web-server has LB (Load Balance, LB, load balancing) function, the load balancing of multiple application can be carried out, various networks provide Source can arrive multiple different server respectively, and such as, the resource of a certain page can leave in different In server device: static images resource is placed on server 1, icon resource is placed on server 2, and video provides Source is placed on server 3 etc.;When this page is opened in user's request, can obtain each from different servers Class resource.In the present embodiment, by the way of any one is suitable, whether each server can may be used Reach and detect, it may for example comprise but be not limited only to by the way of sending detection message to each server Determine each server whether up to.Wherein, server is up to being: current server can carry For Portal certification;Server is unreachable it is to be understood that current server is not provided that Portal certification.
Wherein, when determining that any server is unreachable, following step 104 can be performed.Need explanation , described determine that any server is unreachable and specifically refer to: this any server and the first access device Unreachable read-around ratio reach set point number threshold value.
Step 104, closes Portal certification, so that described subscriber equipment directly accesses described Internet resources.
In the present embodiment, can close when the arbitrary testing result in above-mentioned multiple detection is for being Portal certification, decontrols the restriction of the certification to customer access network that is, interim, and subscriber equipment can lead to Cross server and directly access network resource, it is ensured that the user's normal use to network, it is to avoid occurring Still force to carry out the user that Portal certification causes during abnormal problem and cannot normally access asking of Internet resources Topic.
In sum, in the present embodiment, can be to the connection status between self and the second access device Whether be off or self the utilization rate of ACL resource whether exceed setting threshold value or from Body and for subscriber equipment provide Internet resources multiple servers in any server between unreachable Whether number of times reaches set point number threshold value is detected, and when testing result is for being, closes Portal certification, So that described subscriber equipment directly accesses described Internet resources.Visible, by the method described in the present embodiment The abnormal problem that Portal certification exists in actual applications can be detected in time, and abnormal asking is occurring Close Portal certification during topic in time, it is ensured that the user's normal access to Internet resources, effectively prevent The impact brought to user because of abnormal problem.
Secondly, detect self with server up to number of times time, can be specifically to carry for subscriber equipment Multiple servers for Internet resources detect, and reach at the unreachable number of times detecting any server During to set point number threshold value, close Portal certification, it is ensured that Portal certification close accuracy and can By property.
In conjunction with above-described embodiment, in the present embodiment, can but be not limited only in terms of following three carry out Detection, to determine whether to close Portal certification, makes subscriber equipment can directly access described Internet resources: Connection status between first access device and the second access device, the ACL resource of the first access device Utilization rate.
In the present embodiment, described network resource access method may include that
Step one, detects whether the connection status between self and the second access device is off; Or, whether the utilization rate of the ACL resource detecting self exceedes setting threshold value;Or, detect self And unreachable time between any server in multiple servers of Internet resources is provided for subscriber equipment Whether number reaches set point number threshold value.
In the present embodiment, can at connection status, the utilization rate of ACL resource and server up to shape When arbitrary testing result in state is for being, perform following step two.
Step 2, closes Portal certification, so that described subscriber equipment directly accesses described Internet resources.
Illustrate (that is, to detect self and the second access device in testing result for being by above-mentioned steps Between connection status be off;Or, detect that the utilization rate of the ACL resource of self surpasses Cross setting threshold value;Or, detect in self and the multiple servers for subscriber equipment offer Internet resources Any server between unreachable number of times reach set point number threshold value) time concrete operations flow process (i.e., Close Portal certification), the situation being no to testing result below illustrates respectively.
One preferably, is in the connection status detected between self with described second access device and is connected During state, described method can also include: the utilization rate in the ACL resource detecting self exceedes and sets That determines between threshold value, or any server in detecting self and the plurality of server is unreachable When number of times reaches set point number threshold value, close Portal certification.
In the present embodiment, it is in the connection status detected between self and described second access device During connection status, it is also possible to continue the utilization rate of the ACL resource to self or self is with the plurality of Unreachable number of times between any server in server detects, and is detecting the ACL of self The utilization rate of resource exceedes setting threshold value, or is detecting self arbitrary with the plurality of server When unreachable number of times between server reaches set point number threshold value, close Portal certification.
Another is preferred, when detecting the utilization rate of ACL resource of self not less than setting threshold value, Described method can also include: at the connection status detected between self and described second access device Between off-state, or any server in detecting self and the plurality of server not When reaching set point number threshold value up to number of times, close Portal certification.
In the present embodiment, when detecting the utilization rate of ACL resource of self not less than setting threshold value, Can also continue to the connection status between self and described second access device or self is with described many Unreachable number of times between any server in individual server detects, and is detecting that self is with described Connection status between second access device is off or is detecting that self is with the plurality of When unreachable number of times between any server in server reaches set point number threshold value, close Portal Certification.
Another preferably, detect between self and the plurality of server all up to time, described method Can also include: be in disconnection shape in the connection status detected between self and described second access device State, or when detecting that the utilization rate of ACL resource of self exceedes setting threshold value, close Portal Certification.
In the present embodiment, detect between self and the plurality of server all up to time, it is also possible to Continue making the connection status between self and described second access device or the ACL resource of self Detect by rate, detect that the connection status between self and described second access device is in disconnection shape State, or when detecting that the utilization rate of ACL resource of self exceedes setting threshold value, close Portal Certification.
Further, in the present embodiment, after closing Portal certification, described method can also be wrapped Include following steps:
Step 3, is in connection status in the connection status detected between self and the second access device, And detect that the utilization rate of ACL resource of self, not less than setting threshold value, and detects that self is with described Between multiple servers all up to time, start Portal certification so that described subscriber equipment is passing through Portal Described Internet resources are accessed after certification.
It should be noted that in the present embodiment, can be according to the company between self and the second access device Connect state, the utilization rate of ACL resource of self and self provide Internet resources many with for subscriber equipment At least one or more in unreachable number of times between any server in individual server determines No closedown Portal certification.Wherein, if select the connection status between self and the second access device this Individual condition determines whether to close Portal certification, then when again recovering to start Portal certification, can Only to determine whether to open according to this condition of the connection status between self and the second access device Portal certification.In other words, the condition closing Portal certification and unlatching Portal certification can be phase Corresponding, the present embodiment illustrates the most one by one.
In sum, in the present embodiment, can be to the connection status between self and the second access device Whether be off or self the utilization rate of ACL resource whether exceed setting threshold value or from Body and for subscriber equipment provide Internet resources multiple servers in any server between unreachable Whether number of times reaches set point number threshold value is detected, and when testing result is for being, closes Portal certification, So that described subscriber equipment directly accesses described Internet resources.Visible, by the method described in the present embodiment The abnormal problem that Portal certification exists in actual applications can be detected in time, and abnormal asking is occurring Close Portal certification during topic in time, it is ensured that the user's normal access to Internet resources, effectively prevent The impact brought to user because of abnormal problem.
Secondly, detect self with server up to number of times time, can be specifically to carry for subscriber equipment Multiple servers for Internet resources detect, and reach at the unreachable number of times detecting any server During to set point number threshold value, close Portal certification, it is ensured that Portal certification close accuracy and can By property.
In conjunction with above-described embodiment, the present embodiment with the multiple feasible combination of three kinds of detection modes is Example, is described in detail to described network resource access method.
When one, using a kind of detection mode:
One preferably, with reference to Fig. 2, it is shown that another network resource access method in the embodiment of the present application Flow chart of steps.Described network resource access method, including:
Step 202, detects whether the connection status between self and the second access device is off.
In the present embodiment, detect whether the connection status between self and the second access device is in disconnection State namely: detection AP and AC connection status whether be off.
Wherein it is possible to but be not limited only to by adding " tracking CAPWAP (Control And Provisioning of Wireless Access Points Protocol Specification, the control of WAP System and configuration protocol) tunnel " configure the judgement realizing the connection status to AP Yu AC.Such as, In AP side, in the case of Collective qualification this locality forwards, " follow the tracks of CAPWAP tunnel if be configured with Road (track CAPWAP tunnel) ", then can check the state of CAPWAP after expiration of the timer, State according to CAPWAP determines the connection status of AP Yu AC, if the state of CAPWAP is Up, Then AP with AC is connected normally;If the state of CAPWAP is Down, then AP with AC is connected disconnected Open.Wherein, the judgement to the connection status of AP with AC can realize passing through by AP AC realizes, and this is not restricted by the present embodiment.
Step 204, is off in the connection status detected between self and the second access device Time, close Portal certification, so that described subscriber equipment directly accesses described Internet resources.
Another preferably, with reference to Fig. 3, it is shown that a kind of network resource accession side in the embodiment of the present application The flow chart of steps of method.Described network resource access method, including:
Step 302, whether the utilization rate of the ACL resource detecting self exceedes setting threshold value.
In the present embodiment, can but be not limited only to by add " follow the tracks of system resource (track system Resource) " configuration realizes the acquisition of the system asset information to self.Wherein, system resource is concrete Described ACL resource can be included.
Step 304, when detecting that the utilization rate of ACL resource of self exceedes setting threshold value, closes Portal certification, so that described subscriber equipment directly accesses described Internet resources.
Another is preferred, with reference to Fig. 4, it is shown that another kind of network resource accession side in the embodiment of the present application The flow chart of steps of method.Described network resource access method, including:
Step 402, detect self with for subscriber equipment provide Internet resources multiple servers in arbitrary Whether the unreachable number of times between server reaches set point number threshold value.
Step 404, in detecting self and the multiple servers for subscriber equipment offer Internet resources When unreachable number of times between any server reaches set point number threshold value, close Portal certification, so that Described subscriber equipment directly accesses described Internet resources.
When two, using two kinds of detection modes:
One preferably, with reference to Fig. 5, it is shown that one of which network resource accession side in the embodiment of the present application The flow chart of steps of method.Described network resource access method, including:
Step 502, detects whether the connection status between self and the second access device is off.
In the present embodiment, it is in disconnection in the connection status detected between self and the second access device During state, step 504 can be performed;Otherwise, step 506 is performed.
Step 504, closes Portal certification, so that described subscriber equipment directly accesses described Internet resources.
Step 506, whether the utilization rate of the ACL resource detecting self exceedes setting threshold value.
In the present embodiment, when detecting that the utilization rate of ACL resource of self exceedes setting threshold value, Perform step 604;Otherwise, Portal certification is not processed.
Wherein, above-mentioned steps 502 and step 506 do not have the sequencing of certainty upon execution, it is also possible to First carrying out step 506 and perform step 502 again, this is not restricted by the present embodiment.
Another preferably, with reference to Fig. 6, it is shown that in the embodiment of the present application, wherein another Internet resources is visited Ask the flow chart of steps of method.Described network resource access method, including:
Step 602, detects whether the connection status between self and the second access device is off.
In the present embodiment, it is in disconnection in the connection status detected between self and the second access device During state, step 604 can be performed;Otherwise, step 606 is performed.
Step 604, closes Portal certification, so that described subscriber equipment directly accesses described Internet resources.
Step 606, detect self with for subscriber equipment provide Internet resources multiple servers in arbitrary Whether the unreachable number of times between server reaches set point number threshold value.
In the present embodiment, self and multiple servers that Internet resources are provided are being detected for subscriber equipment In any server between unreachable number of times when reaching set point number threshold value, perform step 604;No Then, Portal certification is not processed.
Wherein, above-mentioned steps 602 and step 606 do not have the sequencing of certainty upon execution, it is also possible to First carrying out step 606 and perform step 602 again, this is not restricted by the present embodiment.
Another is preferred, with reference to Fig. 7, it is shown that in the embodiment of the present application, wherein another kind of Internet resources are visited Ask the flow chart of steps of method.Described network resource access method, including:
Step 702, whether the utilization rate of the ACL resource detecting self exceedes setting threshold value.
In the present embodiment, when detecting that the utilization rate of ACL resource of self exceedes setting threshold value, Step 704 can be performed;Otherwise, step 706 is performed.
Step 704, closes Portal certification, so that described subscriber equipment directly accesses described Internet resources.
Step 706, detect self with for subscriber equipment provide Internet resources multiple servers in arbitrary Whether the unreachable number of times between server reaches set point number threshold value.
In the present embodiment, self and multiple servers that Internet resources are provided are being detected for subscriber equipment In any server between unreachable number of times when reaching set point number threshold value, perform step 704;No Then, Portal certification is not processed.
Wherein, above-mentioned steps 702 and step 706 do not have the sequencing of certainty upon execution, it is also possible to First carrying out step 706 and perform step 702 again, this is not restricted by the present embodiment.
When three, using three kinds of detection modes:
With reference to Fig. 8, it is shown that the step of a kind of network resource access method in the embodiment of the present application Flow chart.Described network resource access method, including:
Step 802, detects whether the connection status between self and the second access device is off.
In the present embodiment, it is in disconnection in the connection status detected between self and the second access device During state, step 804 can be performed;Otherwise, step 806 is performed.
Step 804, closes Portal certification, so that described subscriber equipment directly accesses described Internet resources.
Step 806, whether the utilization rate of the ACL resource detecting self exceedes setting threshold value.
In the present embodiment, the utilization rate in the ACL resource detecting self exceedes setting threshold value, can To perform step 804;Otherwise, step 808 is performed.
Step 808, detect self with for subscriber equipment provide Internet resources multiple servers in arbitrary Whether the unreachable number of times between server reaches set point number threshold value.
In the present embodiment, self and multiple servers that Internet resources are provided are being detected for subscriber equipment In any server between unreachable number of times when reaching set point number threshold value, step 804 can be performed; Otherwise, Portal certification is not processed.
Wherein, above-mentioned steps 802, do not have between step 806 and step 808 certainty sequencing, Step 802, step 806 and step 808 can perform according to the most feasible order, such as, first hold Row step 806 performs step 802 and step 808 again, and the present embodiment illustrates the most one by one at this.
In sum, in the present embodiment, connection status detection, the utilization rate detection kimonos of ACL resource Business three kinds of detection modes of the unreachable detection of device can be according to practical situation flexible configuration, it is achieved that detection mode Variation, adapt to all kinds of actual scene.
Secondly, the flexible combination of Through Several Survey Measure, can detect that Portal certification should in reality in time Abnormal problem present in, and Portal certification is closed in time when abnormal problem occurs, it is ensured that use The family normal access to Internet resources, effectively prevent the impact brought because of abnormal problem to user.
Additionally, detect self with server up to number of times time, can be specifically to carry for subscriber equipment Multiple servers for Internet resources detect, and reach at the unreachable number of times detecting any server During to set point number threshold value, close Portal certification, further ensure the accurate of Portal certification closedown Property and reliability.
In conjunction with above-described embodiment, the present embodiment provides Internet resources many to detect self with for subscriber equipment Unreachable number of times between any server in individual server is right as a example by whether reaching set point number threshold value Described network resource access method is described in detail.
With reference to Fig. 9, it is shown that the step stream of the embodiment of the present application wherein another network resource access method Cheng Tu.Described network resource access method includes:
Step 902, being defined as subscriber equipment according to the multiple server address being pre-configured with provides network money Multiple servers in source.
In the present embodiment, server address can be pre-configured with, wherein, and described server address Can collect in advance.For example, it is possible to be collected as subscriber equipment in advance to provide multiple clothes of Internet resources The server address of business device.Certainly, for subscriber equipment provide Internet resources server can also actively by Respective address reports access device, and this is not restricted by the present embodiment.
It should be noted that in the present embodiment, described server address specifically may include that IP (Internet Protocol, the agreement of interconnection between network) address and port (port) number.Such as:
The address of the server depositing picture resource is: IP 192.168.0.1port 8080;
The address of the server depositing video resource is: IP 192.168.0.1port 8082;
The address of the server depositing icon resource is: IP 192.168.0.1port 8088.
That is, in the present embodiment, following server address can be pre-configured with: IP 192.168.0.1port 8080, IP 192.168.0.1port 8082 and IP 192.168.0.1port 8088.According to " IP 192.168.0.1 Port 8080, IP 192.168.0.1port 8082 and IP 192.168.0.1port 8088 " may determine that needs The server carrying out detecting is: " IP 192.168.0.1port 8080, IP 192.168.0.1port 8082 He IP 192.168.0.1port 8088 " each self-corresponding server.Certainly, those skilled in the art should be bright , above-mentioned server address is merely illustrative, and should not be used as the restriction to the present embodiment.
Multiple servers are carried out up to detection, determine the unreachable of each server by step 904 respectively Number of times.
In the present embodiment, can but be not limited only to realize in the following way to each server up to Detection: send detection message to each server the most respectively, receiving portion or all server return The response message for responding described detection message returned;Statistics does not receives the corresponding of each server return The number of times of response message.Wherein, if the read-around ratio not receiving the response message that a certain server returns is big In set point number threshold value, it is determined that the unreachable number of times of described a certain server reaches set point number threshold value.
It should be noted that in the present embodiment, the unreachable number of times of a certain server reaches set point number Threshold value specifically refers to: the continuous unreachable number of times of described a certain server reaches set point number threshold value.Institute State the continuous unreachable number of times of a certain server when being not up to set point number threshold value, if wherein one-time detection Go out described a certain server up to, then need to be zeroed out processing to unreachable number of times cumulative before, weight Newly start to add up continuous unreachable number of times.
Also, it should be noted in the present embodiment, described detection message includes but are not limited to: TCP (Transmission Control Protocol, transmission control protocol) connection request message or heartbeat detection Message.
Separately below to using TCP connection request message carry out state-detection and use heartbeat detection message Carry out state-detection to illustrate:
1, the idiographic flow using TCP connection request message to carry out state-detection can be such that
Detection HTTP (Hyper Text Transfer Protocol, HTML (Hypertext Markup Language)) connects: the One access device is periodically initiated TCP to the HTTP service port of different servers and is connected.If connecting It is successfully established, represents that the HTTP service of this server has turned on, then it represents that this server is this time up to inspection Surveying result is that this time detects successfully up to (Up);If connection failure, this server is this time up to detection Result is unreachable (Down), and this time detects unsuccessfully.
2, use heartbeat detection message to carry out the idiographic flow of state-detection to can be such that
Detection Portal heartbeat message: server and the first access device send out heartbeat message mutually.If first connects Enter equipment receive within the cycle specified server send heartbeat message, then it is assumed that this server up to (Up), this time detects successfully;Otherwise it is assumed that this server unreachable (Down), this detection is lost Lose.
Step 906, when determining that any one server reaches set point number threshold value up to number of times, closes Portal certification, so that described subscriber equipment directly accesses network resource by the plurality of server.
In the present embodiment, after certain terminates up to detection, each server can be traveled through, When determining that the unreachable number of times having any one server reaches set point number threshold value, close Portal and recognize Card, so that described subscriber equipment directly accesses network resource by the plurality of server.
In sum, in the present embodiment, can respectively the unreachable number of times of multiple servers be examined Survey, close Portal when the unreachable number of times determining any one server reaches set point number threshold value and recognize Card so that subscriber equipment can directly access network resource, it is ensured that user when server failure to net The normal access of network resource, effectively prevent the impact brought because of server failure to customer service.
Wherein, in the present embodiment, can reach to set at the unreachable number of times determining any one server Determine to close Portal certification during frequency threshold value, for the detection judgement of single server, root Determine whether to carry out the closedown of Portal certification according to the detection of number of times unreachable to multiple servers, it is ensured that The accuracy that Portal certification is closed, it is to avoid the generation of Portal certification leakage closedown situation, further Improve Consumer's Experience, it is ensured that new user and logged-in user normally use network, access network money Source.
It should be noted that for aforesaid embodiment of the method, in order to be briefly described, therefore it is all stated For a series of combination of actions, but those skilled in the art should know, the application is not by described The restriction of sequence of movement because according to the application, some step can use other orders or simultaneously Carry out.Secondly, those skilled in the art also should know, embodiment described in this description belongs to Preferred embodiment, necessary to involved action not necessarily the application.
Up on the basis of method embodiment, with reference to Figure 10, it is shown that a kind of network in the embodiment of the present application The structured flowchart of resource access device.In the present embodiment, described network resource accession device can be applied In the first access device.Wherein, when described first access device is access controller, described second connects Entering equipment is access point;When described first access device is access point, described second access device is for connecing Enter controller.
Described network resource accession device specifically may include that
Whether detection module 1002, be in for the connection status detected between self and the second access device Off-state;Or, whether the utilization rate of the ACL resource detecting self exceedes setting threshold value;Or, Detect self and for subscriber equipment provide Internet resources multiple servers in any server between Whether unreachable number of times reaches set point number threshold value.
First closes module 1004, for when arbitrary testing result of described detection module is for being, closes Portal certification, so that described subscriber equipment directly accesses described Internet resources.
Visible, can detect that Portal certification is applied in reality in time by the device described in the present embodiment Present in abnormal problem, and close Portal certification in time when abnormal problem occurs, it is ensured that user Normal access to Internet resources, effectively prevent the impact brought because of abnormal problem to user.
In a preferred version of the present embodiment, with reference to Figure 11, it is shown that in the embodiment of the present application another The structured flowchart of network resource accession device.
One preferably, detects between self and described second access device at described detection module 1002 Connection status when being in connection status, described device also includes:
Second closes module 1006, exceedes setting for the utilization rate in the ACL resource detecting self Threshold value, and/or, unreachable between any server in detecting self and the plurality of server When number of times reaches set point number threshold value, close Portal certification.
Another preferably, detect the utilization rate of ACL resource of self at described detection module 1002 not When exceeding setting threshold value, described device also includes:
SAN GUAN mold closing block 1008, in the connection detected between self and described second access device State is off, and/or, detecting self and any server in the plurality of server Between unreachable number of times when reaching set point number threshold value, close Portal certification.
Another is preferred, detects between self and the plurality of server at described detection module 1002 All up to time, described device also includes:
4th closes module 1010, in the connection detected between self and described second access device State is off, and/or, the utilization rate in the ACL resource detecting self exceedes setting threshold During value, close Portal certification.
It should be noted that in the present embodiment, after closing Portal certification, described device also wraps Include:
Start module 1012, for being in the connection status detected between self and the second access device Connection status, and detect that the utilization rate of ACL resource of self, not less than setting threshold value, and detects Between self and the plurality of server all up to time, start Portal certification, so that described subscriber equipment Described Internet resources are accessed after by Portal certification.
In sum, in the present embodiment, can be to the connection status between self and the second access device Whether be off or self the utilization rate of ACL resource whether exceed setting threshold value or from Body and for subscriber equipment provide Internet resources multiple servers in any server between unreachable Whether number of times reaches set point number threshold value is detected, and when testing result is for being, closes Portal certification, So that described subscriber equipment directly accesses described Internet resources.Visible, by the device described in the present embodiment The abnormal problem that Portal certification exists in actual applications can be detected in time, and abnormal asking is occurring Close Portal certification during topic in time, it is ensured that the user's normal access to Internet resources, effectively prevent The impact brought to user because of abnormal problem.
Secondly, detect self with server up to number of times time, can be specifically to carry for subscriber equipment Multiple servers for Internet resources detect, and reach at the unreachable number of times detecting any server During to set point number threshold value, close Portal certification, it is ensured that Portal certification close accuracy and can By property.
Each embodiment in this specification all uses the mode gone forward one by one to describe, and each embodiment stresses Be all the difference with other embodiments, between each embodiment, identical similar part sees mutually ?.For device embodiment, due to itself and embodiment of the method basic simlarity, so the ratio described Relatively simple, relevant part sees the part of embodiment of the method and illustrates.
Those skilled in the art it should be appreciated that embodiments herein can be provided as method, system or Computer program.Therefore, the application can use complete hardware embodiment, complete software implementation, Or combine the form of embodiment in terms of software and hardware.And, the application can use one or more The computer-usable storage medium wherein including computer usable program code (includes but not limited to disk Memorizer, CD-ROM, optical memory etc.) form of the upper computer program implemented.
The application is with reference to method, equipment (system) and the computer program according to the embodiment of the present application The flow chart of product and/or block diagram describe.It should be understood that flow process can be realized by computer program instructions Stream in each flow process in figure and/or block diagram and/or square frame and flow chart and/or block diagram Journey and/or the combination of square frame.These computer program instructions can be provided to general purpose computer, dedicated computing The processor of machine, Embedded Processor or other programmable data processing device, to produce a machine, makes Must be produced for real by the instruction that the processor of computer or other programmable data processing device performs Now one flow process of flow chart or multiple flow process and/or one square frame of block diagram or multiple square frame are specified The device of function.
These computer program instructions may be alternatively stored in and computer or other programmable datas can be guided to process In the computer-readable memory that equipment works in a specific way so that be stored in the storage of this computer-readable Instruction in device produces the manufacture including command device, and this command device realizes in one flow process of flow chart Or the function specified in multiple flow process and/or one square frame of block diagram or multiple square frame.
These computer program instructions also can be loaded in computer or other programmable data processing device, Make on computer or other programmable devices, perform sequence of operations step to realize to produce computer Process, thus on computer or other programmable devices perform instruction provide for realize in flow process The function specified in one flow process of figure or multiple flow process and/or one square frame of block diagram or multiple square frame Step.
Although having been described for the preferred embodiment of the application, but those skilled in the art once knowing Basic creative concept, then can make other change and amendment to these embodiments.So, appended power Profit requires to be intended to be construed to include preferred embodiment and fall into all changes and the amendment of the application scope.
Above a kind of network resource access method provided herein and device are described in detail, Principle and the embodiment of the application are set forth by specific case used herein, above example Explanation be only intended to help and understand the present processes and core concept thereof;Simultaneously for this area Those skilled in the art, according to the thought of the application, the most all have and change In place of change, in sum, this specification content should not be construed as the restriction to the application.

Claims (10)

1. a network resource access method, it is characterised in that described method is applied to the first access and sets Standby, described method includes:
Detect whether the connection status between self and the second access device is off;Or
Whether the utilization rate of the access control list ACL resource detecting self exceedes setting threshold value;Or
Detect self with for subscriber equipment provide Internet resources multiple servers in any server it Between unreachable number of times whether reach set point number threshold value;
When testing result is for being, close Portal certification, so that described subscriber equipment directly accesses described Internet resources;
Wherein, when described first access device is access controller, described second access device is for accessing Point;When described first access device is access point, described second access device is access controller.
Method the most according to claim 1, it is characterised in that detecting that self is with described the When connection status between two access devices is in connection status, described method also includes:
Utilization rate in the ACL resource detecting self exceedes setting threshold value, or is detecting self And when the unreachable number of times between any server in the plurality of server reaches set point number threshold value, Close Portal certification.
Method the most according to claim 1, it is characterised in that provide at the ACL detecting self The utilization rate in source is not less than when setting threshold value, and described method also includes:
It is off in the connection status detected between self and described second access device, or The unreachable number of times between any server in detecting self and the plurality of server reaches to set When determining frequency threshold value, close Portal certification.
Method the most according to claim 1, it is characterised in that detecting that self is with described many Between individual server all up to time, described method also includes:
It is off in the connection status detected between self and described second access device, or When detecting that the utilization rate of ACL resource of self exceedes setting threshold value, close Portal certification.
5. according to the method according to any one of claim 1-4, it is characterised in that closing Portal After certification, described method also includes:
It is in connection status in the connection status detected between self and the second access device, and detects The utilization rate of the ACL resource of self is not less than setting threshold value, and detects self and the plurality of service Between device all up to time, start Portal certification so that described subscriber equipment by Portal certification it The described Internet resources of rear access.
6. a network resource accession device, it is characterised in that described device is applied to the first access and sets Standby, described device includes:
Whether detection module, be in disconnection for the connection status detected between self and the second access device State;Or, whether the utilization rate of the access control list ACL resource detecting self exceedes setting threshold Value;Or, detect self and the arbitrary service in multiple servers that Internet resources are provided for subscriber equipment Whether the unreachable number of times between device reaches set point number threshold value;
First closes module, for when the testing result of described detection module is for being, closes Portal and recognizes Card, so that described subscriber equipment directly accesses described Internet resources;
Wherein, when described first access device is access controller, described second access device is for accessing Point;When described first access device is access point, described second access device is access controller.
Device the most according to claim 6, it is characterised in that detect at described detection module When connection status between self and described second access device is in connection status, described device also wraps Include:
Second closes module, exceedes setting threshold value for the utilization rate in the ACL resource detecting self, Or, the unreachable number of times between any server in detecting self and the plurality of server reaches During to set point number threshold value, close Portal certification.
Device the most according to claim 6, it is characterised in that detect at described detection module The utilization rate of the ACL resource of self is not less than when setting threshold value, and described device also includes:
SAN GUAN mold closing block, in the connection status detected between self and described second access device It is off, or between any server in detecting self and the plurality of server When unreachable number of times reaches set point number threshold value, close Portal certification.
Device the most according to claim 6, it is characterised in that detect at described detection module Between self and the plurality of server all up to time, described device also includes:
4th closes module, in the connection status detected between self and described second access device It is off, or when detecting that the utilization rate of ACL resource of self exceedes setting threshold value, Close Portal certification.
10. according to the device according to any one of claim 6-9, it is characterised in that closing Portal After certification, described device also includes:
Start module, be connected for being in the connection status detected between self with the second access device State, and detect that the utilization rate of ACL resource of self, not less than setting threshold value, and detects self And between the plurality of server all up to time, start Portal certification, so that described subscriber equipment is logical Described Internet resources are accessed after crossing Portal certification.
CN201610379985.2A 2016-05-31 2016-05-31 Network resource access method and network resource access device Pending CN106060048A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610379985.2A CN106060048A (en) 2016-05-31 2016-05-31 Network resource access method and network resource access device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610379985.2A CN106060048A (en) 2016-05-31 2016-05-31 Network resource access method and network resource access device

Publications (1)

Publication Number Publication Date
CN106060048A true CN106060048A (en) 2016-10-26

Family

ID=57173120

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610379985.2A Pending CN106060048A (en) 2016-05-31 2016-05-31 Network resource access method and network resource access device

Country Status (1)

Country Link
CN (1) CN106060048A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107360173A (en) * 2017-07-25 2017-11-17 成都西加云杉科技有限公司 Resource access method and device
CN107547550A (en) * 2017-09-06 2018-01-05 新华三技术有限公司 Authentication method and device
CN108769016A (en) * 2018-05-29 2018-11-06 新华三信息安全技术有限公司 A kind of processing method and processing device of service message

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102148838A (en) * 2011-05-12 2011-08-10 福建星网锐捷网络有限公司 Web authentication method, network equipment and Web authentication system
CN102318314A (en) * 2011-07-29 2012-01-11 华为技术有限公司 Method and devices for handling access authorities
CN105188059A (en) * 2015-09-30 2015-12-23 上海斐讯数据通信技术有限公司 Authentication method based on Portal server abnormity, and wireless access point

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102148838A (en) * 2011-05-12 2011-08-10 福建星网锐捷网络有限公司 Web authentication method, network equipment and Web authentication system
CN102318314A (en) * 2011-07-29 2012-01-11 华为技术有限公司 Method and devices for handling access authorities
CN105188059A (en) * 2015-09-30 2015-12-23 上海斐讯数据通信技术有限公司 Authentication method based on Portal server abnormity, and wireless access point

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107360173A (en) * 2017-07-25 2017-11-17 成都西加云杉科技有限公司 Resource access method and device
CN107360173B (en) * 2017-07-25 2019-08-13 成都西加云杉科技有限公司 Resource access method and device
CN107547550A (en) * 2017-09-06 2018-01-05 新华三技术有限公司 Authentication method and device
CN107547550B (en) * 2017-09-06 2020-03-06 新华三技术有限公司 Authentication method and device
CN108769016A (en) * 2018-05-29 2018-11-06 新华三信息安全技术有限公司 A kind of processing method and processing device of service message

Similar Documents

Publication Publication Date Title
CN104519032B (en) A kind of security strategy and system of internet account number
CN104113551B (en) A kind of platform authorization method, platform service end and applications client and system
CN106060048A (en) Network resource access method and network resource access device
US10997063B1 (en) System testing from production transactions
US20140282046A1 (en) Dashboard notifications on management console during a remote control session
CN105933266A (en) Verification method and server
WO2016150153A1 (en) Software release method and device
CN107248995A (en) Account verification method and device
CN106375150A (en) Disconnection control method and device for server
CN103873488A (en) Internet surfing control method based on router plug-in
CN103281221B (en) Fire-fighting Internet of things system method of testing
CN103995901B (en) A kind of method for determining back end failure
CN107070752B (en) Testing method and testing system for long connection capacity
CN106406975A (en) Test method and device of desktop cloud system
CN105188059A (en) Authentication method based on Portal server abnormity, and wireless access point
CN112235300A (en) Cloud virtual network vulnerability detection method, system and device and electronic equipment
JP6301936B2 (en) Location-based social networking system and method
CN104363265A (en) Proxy internet surfing detecting method and proxy internet surfing detecting device
CN106465113A (en) Venue-specific wi-fi connectivity notifications
CN107274222A (en) Advertisement placement method and device
CN106878336A (en) A kind of data interactive method and device
CN107026758A (en) For the information processing method of CDN processing business and updates, information processing system and server
CN106302519A (en) The method of a kind of internet security management and terminal
CN106209918A (en) The method of a kind of internet security management and terminal
CN106027284A (en) Network fault diagnosis method and device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
CB02 Change of applicant information
CB02 Change of applicant information

Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No.

Applicant after: Xinhua three Technology Co., Ltd.

Address before: 310053 Hangzhou science and Technology Development Zone, Zhejiang high tech park, No. six and road, No. 310

Applicant before: Huasan Communication Technology Co., Ltd.

Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No.

Applicant after: Xinhua three Technology Co., Ltd.

Address before: 310053 Hangzhou science and Technology Development Zone, Zhejiang high tech park, No. six and road, No. 310

Applicant before: Huasan Communication Technology Co., Ltd.

RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20161026