CN106254391A - A kind of intranet and extranet communication and data distribution systems and method - Google Patents
A kind of intranet and extranet communication and data distribution systems and method Download PDFInfo
- Publication number
- CN106254391A CN106254391A CN201610858365.7A CN201610858365A CN106254391A CN 106254391 A CN106254391 A CN 106254391A CN 201610858365 A CN201610858365 A CN 201610858365A CN 106254391 A CN106254391 A CN 106254391A
- Authority
- CN
- China
- Prior art keywords
- server
- data
- file
- intranet
- request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0209—Architectural arrangements, e.g. perimeter networks or demilitarized zones
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/06—Asset management; Financial planning or analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/06—Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
- H04L9/3239—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Finance (AREA)
- Accounting & Taxation (AREA)
- Development Economics (AREA)
- Game Theory and Decision Science (AREA)
- Entrepreneurship & Innovation (AREA)
- Human Resources & Organizations (AREA)
- Operations Research (AREA)
- Economics (AREA)
- Marketing (AREA)
- Strategic Management (AREA)
- Technology Law (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Computer And Data Communications (AREA)
Abstract
The present invention relates to a kind of intranet and extranet communication and data distribution systems, it includes multiple business halls server, web server, multiple data server and multiple back end server, wherein said multiple business halls server and multiple back end server are arranged in Intranet, the plurality of data server is arranged in outer net, and described web server is connected with the plurality of business hall server, multiple data server and multiple back end server respectively.The plurality of business hall server sends checking request command to described web server.Described web server receives checking request command, and sends to the plurality of data server.The plurality of data server carries out checking and authorizes this solicited message, after having verified, the result is sent the plurality of business hall server;The plurality of business hall server when receiving the result being proved to be successful, request data in the plurality of back end server.
Description
Technical field
The present invention relates to computer realm, particularly a kind of intranet and extranet communication and data distributing method and system.
Background technology
Computer networking technology is increasingly faster in development in recent years, thus the kind of safety problem and type occurs also
More and more, therefore the safety precaution of computer network becomes the operation must practiced together.
Wherein, as funshares, the network information security is particularly important, so funshares are throughout the country
Sales department's network be all to walk in-house network.But the sales department of funshares all parts of the country needs to receive number with outbound communication
According to mode just cannot realize.Existing technology generally uses the mode of proxy server, by the computer of Intranet by this generation
Reason server is to outer net request data.
And owing to, in funshares, being required for carrying out transmission and the renewal of mass data every day, and if the most a large amount of
External request data, do not only take up a large amount of network bandwidth, and efficiency of transmission be the most slow.
Summary of the invention
It is an object of the invention to the shortcoming overcoming prior art with not enough, it is provided that a kind of intranet and extranet communication and data are divided
The system and method sent out.
The present invention realizes especially by following technical scheme: a kind of intranet and extranet communication and data distribution systems, it includes
Multiple business halls server, web server, multiple data server and multiple back end server, wherein said multiple battalion
Industry Room server and multiple back end server are arranged in Intranet, and the plurality of data server is arranged in outer net, institute
State web server to be connected with the plurality of business hall server, multiple data server and multiple back end server respectively;
The plurality of business hall server is respectively equipped with checking request receiver module, is used for sending checking request command extremely
Described web server;
Described web server includes a web application module, is used for receiving checking request command, to this checking request life
Solicited message in order is identified, and after being identified by, the information of request is packaged encryption, and sends to the plurality of
Data server;
The plurality of data server includes a checking authorization module, is used for receiving solicited message, and to this solicited message
Carry out checking to authorize, after having verified, the result is sent to web server, web server be forwarded to the plurality of
In the checking request receiver module of business hall server;
The plurality of business hall server is when receiving the result being proved to be successful, in the plurality of back end server
Request data;
The plurality of back end server is for after the request receiving described business hall server, to described many
Individual business hall server distributes described packet.
As a further improvement on the present invention, described web server also includes the first preservation module, for by local data
Bag is saved in the first row list file of this locality, and this first row list file records title and the MD5 check code of each file bag;
The plurality of data server also includes the second preservation module, for the packet of server end is saved in service
In device end secondary series list file, this server end listing file records title and the MD5 check code of each file bag;
Described web server sends a request to obtain in the plurality of data server server end second after authorizing
Listing file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, and is lacked this locality
Packet is downloaded in this locality, and is distributed to the plurality of back end server.
As a further improvement on the present invention, the plurality of back end server includes the 3rd preservation module, is used for
Packet in server is saved in the 3rd listing file, the 3rd listing file record each file bag title and
MD5 check code;
The plurality of business hall server includes the 4th preservation module, for the packet in server is saved in the
In four listing files, the 4th listing file records title and the MD5 check code of each file bag;
The plurality of back end server, after the request of data receiving the plurality of business hall server, obtains the
Four listing files, carry out differentiation by the 3rd listing file and the 4th listing file and compare, by disappearance in the 4th listing file
In packet delivery extremely the plurality of business hall server.
As a further improvement on the present invention, described web application module includes that parameter format checks submodule, is used for docking
The solicited message received carries out parameter format inspection;Described format checking mode includes: field length inspection, numerical range inspection
Look into, js step injects inspection, Boolean condition judges.
As a further improvement on the present invention, described web application module also includes depth content filtering module, for right
Solicited message carries out depth-type filtration, and the content of depth-type filtration includes: specific field and url filtering.
As a further improvement on the present invention, described Web application module includes handover module, in request wherein
In the proof procedure of one data server, during if it find that this request cannot respond to, automatically switch to another data, services
Device makes requests on verification.
Present invention also offers a kind of intranet and extranet communication and data distributing method, by multiple business halls server and many numbers
It is arranged in Intranet according to node server, multiple data servers are arranged in outer net, make web server many with described respectively
Individual business hall server, multiple data server and multiple back end server connect;
Comprise the following steps in communication and data distribution:
S1: the plurality of business hall server sends checking request command to described web server.
S2: described web server includes a web application module, is used for receiving checking request command, asks this checking
Solicited message in order is identified, and after being identified by, the information of request is packaged encryption, and sends to described many
Individual data server.
S3: the plurality of data server receives solicited message, and this solicited message carries out checking mandate, and checking completes
Afterwards the result is sent to web server, web server be forwarded to the plurality of business hall server.
S4: the plurality of business hall server, when receiving the result being proved to be successful, services to the plurality of back end
Request data in device.
S5: after the plurality of back end server receives the request of described business hall server, to the plurality of
Business hall server distributes described packet.
As a further improvement on the present invention, in step s3, further comprise the steps of:
Local packets is saved in the first row list file of this locality by S31: described web server, this first list literary composition
Part records title and the MD5 check code of each file bag;
S32: the packet of the plurality of Data Server service device end is saved in server end secondary series list file, should
Server end listing file records title and the MD5 check code of each file bag;
S33: described web server sends a request to obtain in the plurality of data server server end after authorizing
Secondary series list file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, lacked this locality
The packet lost is downloaded in this locality, and is distributed to the plurality of back end server.
As a further improvement on the present invention, in described step S5, specifically include step:
S51: be saved in the 3rd listing file by the packet in server in the plurality of back end server, should
3rd listing file records title and the MD5 check code of each file bag;
S52: be saved in the 4th listing file by the packet in server in the server of the plurality of business hall, this is years old
Four listing files record title and the MD5 check code of each file bag;
S53: the plurality of back end server, after the request of data receiving the plurality of business hall server, obtains
Take the 4th listing file, the 3rd listing file and the 4th listing file are carried out differentiation and compares, will the 4th listing file lack
In the packet delivery lost extremely the plurality of business hall server.
As a further improvement on the present invention, in described step S2, also include step S21: described web application module docks
The solicited message received carries out parameter format inspection;Described format checking mode includes: field length inspection, numerical range inspection
Look into, js step injects inspection, Boolean condition judges.
As a further improvement on the present invention, in described step S2, also include step S22: right in described web application module
Solicited message carries out depth-type filtration, and the content of depth-type filtration includes: specific field and url filtering.
As a further improvement on the present invention, in described step S2, when described Web application module is to request wherein
In the proof procedure of data server, during if it find that this request cannot respond to, automatically switch to enter to another data server
Row request verification.
Compared to prior art, the present invention possesses following beneficial effect:
1, distributed by the data of Intranet, pressure and the bandwidth of data server on the Internet can be saved.Such as: as
Really all of sales department in the funshares whole nation decontrols outer net and asks reception data from data server, and that is accomplished by a lot
Platform data server carries out sharing bandwidth and accessing pressure.And present invention achieves and a little receive, then Intranet is distributed, greatly
Alleviate greatly the pressure of data server, such that it is able to reduce building of data server.
2, present invention achieves unified management and the authority distribution of all accounts, such as: the reception journey of all internal networks
Sequence is required for asking to verify on Web server, and verification is just had permission by person and is received data.
In order to be more fully understood that and implement, describe the present invention below in conjunction with the accompanying drawings in detail.
Accompanying drawing explanation
Fig. 1 is intranet and extranet of the present invention communication and the topological diagram of data distribution systems.
Fig. 2 is intranet and extranet communication and the flow chart of steps of data distribution of the present invention.
Detailed description of the invention
The present invention is in order to realize the communication connection of intranet and extranet, it is provided that a kind of for what intranet and extranet communication and data were distributed be
System and method.
Referring to Fig. 1, it is intranet and extranet communication and the topological diagram of data distribution systems of the present invention.The invention provides one
Planting intranet and extranet communication and data distribution systems, it includes multiple business halls server 1, web server 2, multiple data server 3
With multiple back end servers 4, wherein said multiple business halls server 1 and multiple back end server 4 are arranged on interior
In net, the plurality of data server 3 is arranged in outer net, described web server 2 respectively with the plurality of business hall server
1, multiple data servers 3 and multiple back end server 4 connect.
The plurality of business hall server 1 is respectively equipped with checking request receiver module, is used for sending checking request command
To described web server.
Described web server 2 includes a web application module, is used for receiving checking request command, to this checking request life
Solicited message in order is identified, and after being identified by, the information of request is packaged encryption, and sends to the plurality of
Data server.
Concrete, described web application module includes that parameter format checks submodule, for entering the solicited message received
Line parameter format checking;Described format checking mode includes: field length inspection, numerical range inspection, js step inject check,
Boolean condition judges.
Described web application module also includes depth content filtering module, for solicited message being carried out depth-type filtration, deeply
The content spending filter includes: specific field and url filtering.
Described Web application module includes handover module, authenticated at a request wherein data server
Cheng Zhong, during if it find that this request cannot respond to, automatically switches and makes requests on verification to another data server.If it find that
This request cannot respond to, and this data server machine of delaying possible causes, and web application can automatically switch to another number of units according to clothes
Business device makes requests on verification.The problem that the most so can ensure that separate unit data server to delay after machine to cannot be carried out verification.
The plurality of data server 3 includes a checking authorization module, is used for receiving solicited message, and to this solicited message
Carry out checking to authorize, after having verified, the result is sent to web server, web server be forwarded to the plurality of
In the checking request receiver module of business hall server.
The plurality of business hall server 1 is when receiving the result being proved to be successful, to the plurality of back end server 4
Middle request data.
The plurality of back end server 4 is for after the request receiving described business hall server, to described
Multiple business halls server distributes described packet.
Further, described web server also includes the first preservation module, for local packets is saved in the of this locality
In one listing file, this first row list file records title and the MD5 check code of each file bag.
The plurality of data server also includes the second preservation module, for the packet of server end is saved in service
In device end secondary series list file, this server end listing file records title and the MD5 check code of each file bag.
Described web server sends a request to obtain in the plurality of data server server end second after authorizing
Listing file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, and is lacked this locality
Packet is downloaded in this locality, and is distributed to the plurality of back end server.
Concrete, by multithreading, packet can be downloaded in the present invention, packet be carried out MD5 school simultaneously
Test, it is judged that whether this packet is complete, finally carry out data decompression filing and the filename that completes is written to listed files, thus
Complete the distribution of data.
Further, the plurality of back end server includes the 3rd preservation module, for by the data in server
Bag is saved in the 3rd listing file, and the 3rd listing file records title and the MD5 check code of each file bag.
The plurality of business hall server includes the 4th preservation module, for the packet in server is saved in the
In four listing files, the 4th listing file records title and the MD5 check code of each file bag.
The plurality of back end server, after the request of data receiving the plurality of business hall server, obtains the
Four listing files, carry out differentiation by the 3rd listing file and the 4th listing file and compare, by disappearance in the 4th listing file
In packet delivery extremely the plurality of business hall server.
Intranet and extranet communication of the invention below introduced below and the use process of data distribution systems:
The present invention includes that two parts, a part are to realize in Intranet how the main frame of business hall is to outer net request data, separately
A part is how data are distributed.
First, it is assumed that some business hall needs to ask outer network data, need first to obtain mandate.And obtain the mode of mandate
For: send checking request to web server.After being verified by this web server, send the data server requests to outer net
Authorize, and return Authorization result meeting business hall server.After the server of business hall is authorized, just can take to back end
Business device request data.
And about being updated to of data in back end server: please by web server data server in outer net
Seek data.Wherein, by the way of listed files, carry out diversity comparison, the data lacked in web server be downloaded,
And it is distributed to each back end.
Therefore, the present invention is distributed by the data of Intranet, can save pressure and the band of data server on the Internet
Wide.Meanwhile, unified management and the authority distribution of all accounts are also achieved.
It addition, refer to Fig. 2, it is intranet and extranet communication and the flow chart of steps of data distribution of the present invention.The present invention is also
Provide a kind of intranet and extranet communication and data distributing method, multiple business halls server and multiple back end server are arranged
In Intranet, multiple data servers are arranged in outer net, make web server respectively with the plurality of business hall server,
Multiple data servers and multiple back end server connect.
When comprising the following steps in communication and data distribution:
S1: the plurality of business hall server sends checking request command to described web server.
S2: described web server includes a web application module, is used for receiving checking request command, asks this checking
Solicited message in order is identified, and after being identified by, the information of request is packaged encryption, and sends to described many
Individual data server.Concrete, in this step S2, if when described Web application module is in a request wherein data, services
In the proof procedure of device, during if it find that this request cannot respond to, automatically switch and make requests on school to another data server
Test.
Further, in described step S2, also include step S21: the solicited message received is entered by described web application module
Line parameter format checking;Described format checking mode includes: field length inspection, numerical range inspection, js step inject check,
Boolean condition judges.
In described step S2, also include step S22: described web application module carries out depth-type filtration to solicited message, deeply
The content spending filter includes: specific field and url filtering.
S3: the plurality of data server receives solicited message, and this solicited message carries out checking mandate, and checking completes
Afterwards the result is sent to web server, web server be forwarded to the plurality of business hall server.
As a further improvement on the present invention, in step s3, further comprise the steps of:
Local packets is saved in the first row list file of this locality by S31: described web server, this first list literary composition
Part records title and the MD5 check code of each file bag;
S32: the packet of the plurality of Data Server service device end is saved in server end secondary series list file, should
Server end listing file records title and the MD5 check code of each file bag;
S33: described web server sends a request to obtain in the plurality of data server server end after authorizing
Secondary series list file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, lacked this locality
The packet lost is downloaded in this locality, and is distributed to the plurality of back end server.
S4: the plurality of business hall server, when receiving the result being proved to be successful, services to the plurality of back end
Request data in device.
S5: after the plurality of back end server receives the request of described business hall server, to the plurality of
Business hall server distributes described packet.
Further, in described step S5, specifically include step:
S51: be saved in the 3rd listing file by the packet in server in the plurality of back end server, should
3rd listing file records title and the MD5 check code of each file bag;
S52: be saved in the 4th listing file by the packet in server in the server of the plurality of business hall, this is years old
Four listing files record title and the MD5 check code of each file bag;
S53: the plurality of back end server, after the request of data receiving the plurality of business hall server, obtains
Take the 4th listing file, the 3rd listing file and the 4th listing file are carried out differentiation and compares, will the 4th listing file lack
In the packet delivery lost extremely the plurality of business hall server.
Compared to prior art, the present invention possesses following beneficial effect:
1, distributed by the data of Intranet, pressure and the bandwidth of data server on the Internet can be saved.Such as: as
Really all of sales department in the funshares whole nation decontrols outer net and asks reception data from data server, and that is accomplished by a lot
Platform data server carries out sharing bandwidth and accessing pressure.And present invention achieves and a little receive, then Intranet is distributed, greatly
Alleviate greatly the pressure of data server, such that it is able to reduce building of data server.
2, present invention achieves unified management and the authority distribution of all accounts, such as: the reception journey of all internal networks
Sequence is required for asking to verify on Web server, and verification is just had permission by person and is received data.
The invention is not limited in above-mentioned embodiment, if various changes or deformation to the present invention are without departing from the present invention
Spirit and scope, if these are changed and within the scope of deformation belongs to claim and the equivalent technologies of the present invention, then this
Bright being also intended to comprises these changes and deformation.
Claims (12)
1. an intranet and extranet communication and data distribution systems, it is characterised in that: include multiple business halls server, web server,
Multiple data servers and multiple back end server, wherein said multiple business halls server and multiple back end service
Device is arranged in Intranet, and the plurality of data server is arranged in outer net, described web server respectively with the plurality of business
Room server, multiple data server and multiple back end server connect;
The plurality of business hall server is respectively equipped with checking request receiver module, is used for sending checking request command to described
Web server;
Described web server includes a web application module, is used for receiving checking request command, in this checking request command
Solicited message be identified, after being identified by, the information of request is packaged encryption, and sends to the plurality of data
Server;
The plurality of data server includes a checking authorization module, is used for receiving solicited message, and carries out this solicited message
Checking authorizes, and after having verified, the result is sent to web server, web server is forwarded to the plurality of business
In the checking request receiver module of Room server;
The plurality of business hall server, when receiving the result being proved to be successful, is asked in the plurality of back end server
Data;
The plurality of back end server is for after the request receiving described business hall server, to the plurality of battalion
Industry Room server distributes described packet.
Intranet and extranet communication and data distribution systems the most according to claim 1, it is characterised in that: described web server is also wrapped
Include the first preservation module, in the first row list file that local packets is saved in this locality, this first row list file record
The title of each file bag and MD5 check code;
The plurality of data server also includes the second preservation module, for the packet of server end is saved in server end
In secondary series list file, this server end listing file records title and the MD5 check code of each file bag;
Described web server sends a request to obtain in the plurality of data server server end the second list after authorizing
File, carries out differentiation by this locality first row list file with server end secondary series list file and compares, the data lacked this locality
Bag is downloaded in this locality, and is distributed to the plurality of back end server.
Intranet and extranet communication and data distribution systems the most according to claim 2, it is characterised in that: the plurality of back end takes
Business device includes the 3rd preservation module, for being saved in the 3rd listing file by the packet in server, the 3rd list
The title of file record each file bag and MD5 check code;
The plurality of business hall server includes the 4th preservation module, for the packet in server is saved in the 4th row
In list file, the 4th listing file records title and the MD5 check code of each file bag;
The plurality of back end server, after the request of data receiving the plurality of business hall server, obtains the 4th row
List file, carries out differentiation by the 3rd listing file and the 4th listing file and compares, by the data of disappearance in the 4th listing file
Bag is distributed in the server of the plurality of business hall.
Intranet and extranet communication and data distribution systems the most according to claim 1, it is characterised in that: described web application module bag
Include parameter format and check submodule, for the solicited message received is carried out parameter format inspection;Described format checking mode
Including: field length inspection, numerical range inspection, js step inject inspection, Boolean condition judgement.
Intranet and extranet communication and data distribution systems the most according to claim 4, it is characterised in that: in described web application module
Also including that depth content filters submodule, for solicited message is carried out depth-type filtration, the content of depth-type filtration includes: designated word
Section and url filtering.
Intranet and extranet communication and data distribution systems the most according to claim 1, it is characterised in that: in described Web application module
Including handover module, in the proof procedure at a request wherein data server, if it find that this request cannot ring
At once, automatic switchover makes requests on verification to another data server.
7. an intranet and extranet communication and data distributing method, it is characterised in that: by multiple business halls server and multiple data section
Point server is arranged in Intranet, is arranged in outer net by multiple data servers, make web server respectively with the plurality of battalion
Industry Room server, multiple data server and multiple back end server connect;
Comprise the following steps in communication and data distribution:
S1: the plurality of business hall server sends checking request command to described web server;
S2: described web server includes a web application module, is used for receiving checking request command, to this checking request command
In solicited message be identified, after being identified by, the information of request is packaged encryption, and sends to the plurality of number
According to server;
S3: the plurality of data server receives solicited message, and this solicited message carries out checking mandate, has verified rear
The result sends to web server, web server be forwarded to the plurality of business hall server;
S4: the plurality of business hall server is when receiving the result being proved to be successful, in the plurality of back end server
Request data;
S5: after the plurality of back end server receives the request of described business hall server, to the plurality of business
Room server distributes described packet.
Intranet and extranet communication and data distributing method the most according to claim 7, it is characterised in that: in step s3, also include
Step:
Local packets is saved in the first row list file of this locality by S31: described web server, and this first row list file is remembered
Record title and the MD5 check code of each file bag;
S32: the packet of the plurality of Data Server service device end is saved in server end secondary series list file, this service
Device end listing file records title and the MD5 check code of each file bag;
S33: described web server sends a request to obtain in the plurality of data server server end second after authorizing
Listing file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, and is lacked this locality
Packet is downloaded in this locality, and is distributed to the plurality of back end server.
Intranet and extranet communication and data distributing method the most according to claim 8, it is characterised in that: in described step S5, specifically
Including step:
S51: in the plurality of back end server, the packet in server is saved in the 3rd listing file, the 3rd
Listing file records title and the MD5 check code of each file bag;
S52: in the server of the plurality of business hall, the packet in server is saved in the 4th listing file, the 4th row
List file records title and the MD5 check code of each file bag;
S53: the plurality of back end server, after the request of data receiving the plurality of business hall server, obtains the
Four listing files, carry out differentiation by the 3rd listing file and the 4th listing file and compare, by disappearance in the 4th listing file
In packet delivery extremely the plurality of business hall server.
Intranet and extranet communication and data distributing method the most according to claim 7, it is characterised in that: in described step S2, also wrap
Include step S21: the described web application module solicited message to receiving carries out parameter format inspection;Described format checking mode
Including: field length inspection, numerical range inspection, js step inject inspection, Boolean condition judgement.
11. intranet and extranet communication and data distributing methods according to claim 10, it is characterised in that: in described step S2, also
Including step S22: in described web application module, solicited message being carried out depth-type filtration, the content of depth-type filtration includes: designated word
Section and url filtering.
12. intranet and extranet communication and data distributing methods according to claim 7, it is characterised in that: in described step S2, work as institute
State Web application module in the proof procedure at a request wherein data server, during if it find that this request cannot respond to,
Automatically switch and make requests on verification to another data server.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610858365.7A CN106254391B (en) | 2016-09-28 | 2016-09-28 | A kind of inside and outside Network Communication and data dissemination system and method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610858365.7A CN106254391B (en) | 2016-09-28 | 2016-09-28 | A kind of inside and outside Network Communication and data dissemination system and method |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106254391A true CN106254391A (en) | 2016-12-21 |
CN106254391B CN106254391B (en) | 2018-03-23 |
Family
ID=57612191
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610858365.7A Active CN106254391B (en) | 2016-09-28 | 2016-09-28 | A kind of inside and outside Network Communication and data dissemination system and method |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106254391B (en) |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110231535A1 (en) * | 2010-03-18 | 2011-09-22 | Ian Charles Starnes | Wireless Sensor Network |
CN102255924A (en) * | 2011-08-29 | 2011-11-23 | 浙江中烟工业有限责任公司 | Multi-stage security interconnection platform based on trusted computing and processing flow thereof |
CN105357318A (en) * | 2015-12-08 | 2016-02-24 | 浪潮电子信息产业股份有限公司 | Design method of intranet patch distribution management system |
CN105631654A (en) * | 2015-12-25 | 2016-06-01 | 中国民航信息网络股份有限公司 | Self-service counter payment method and system |
-
2016
- 2016-09-28 CN CN201610858365.7A patent/CN106254391B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110231535A1 (en) * | 2010-03-18 | 2011-09-22 | Ian Charles Starnes | Wireless Sensor Network |
CN102255924A (en) * | 2011-08-29 | 2011-11-23 | 浙江中烟工业有限责任公司 | Multi-stage security interconnection platform based on trusted computing and processing flow thereof |
CN105357318A (en) * | 2015-12-08 | 2016-02-24 | 浪潮电子信息产业股份有限公司 | Design method of intranet patch distribution management system |
CN105631654A (en) * | 2015-12-25 | 2016-06-01 | 中国民航信息网络股份有限公司 | Self-service counter payment method and system |
Also Published As
Publication number | Publication date |
---|---|
CN106254391B (en) | 2018-03-23 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106850580B (en) | A kind of automobile account system and account automatic verification method | |
US20210329453A1 (en) | Blockchain based wireless access point password management | |
CN109670768A (en) | Right management method, device, platform and the readable storage medium storing program for executing in multi-service domain | |
US9197639B2 (en) | Method for sharing data of device in M2M communication and system therefor | |
CN102473229B (en) | Modification of access control lists | |
CN106488453A (en) | A kind of method and system of portal certification | |
CN109951485A (en) | SDN-based Internet of things access control method | |
CN102143492B (en) | Method for establishing virtual private network (VPN) connection, mobile terminal and server | |
CN106101054A (en) | The single-point logging method of a kind of multisystem and centralized management system | |
CN107689949A (en) | Data base authority management method and system | |
CN106982430B (en) | Portal authentication method and system based on user use habits | |
CN105933374A (en) | Mobile terminal data backup method, system and mobile terminal | |
CN108966216A (en) | A kind of method of mobile communication and device applied to power distribution network | |
CN108920919A (en) | Control method, device and system of interactive intelligent equipment | |
CN106127888A (en) | Smart lock operational approach and smart lock operating system | |
CN104796383A (en) | Method and device for preventing terminal information from being tempered | |
CN106454829A (en) | Authorized network access method and device | |
CN102045310B (en) | Industrial Internet intrusion detection as well as defense method and device | |
CN103065104B (en) | Movable storage device and the supervisory system formed thereof | |
KR101950856B1 (en) | System and method for managementing information using blockchain | |
CN101594615B (en) | Method, system and equipment for network management of terminal triple information security | |
CN104703183A (en) | Special line APN (Access Point Name) security-enhanced access method and device | |
CN105700905A (en) | WIFI (Wireless-Fidelity) upgrading method and apparatus for operation system of vehicle-mounted terminal | |
CN105471905B (en) | The realization method and system of AAA in a kind of stacking system | |
CN105681352B (en) | A kind of wireless network access safety management-control method and system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |