CN106254391A - A kind of intranet and extranet communication and data distribution systems and method - Google Patents

A kind of intranet and extranet communication and data distribution systems and method Download PDF

Info

Publication number
CN106254391A
CN106254391A CN201610858365.7A CN201610858365A CN106254391A CN 106254391 A CN106254391 A CN 106254391A CN 201610858365 A CN201610858365 A CN 201610858365A CN 106254391 A CN106254391 A CN 106254391A
Authority
CN
China
Prior art keywords
server
data
file
intranet
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201610858365.7A
Other languages
Chinese (zh)
Other versions
CN106254391B (en
Inventor
杨胜
吴万强
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hainan Macao Information Industry Ltd By Share Ltd
Original Assignee
Hainan Macao Information Industry Ltd By Share Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hainan Macao Information Industry Ltd By Share Ltd filed Critical Hainan Macao Information Industry Ltd By Share Ltd
Priority to CN201610858365.7A priority Critical patent/CN106254391B/en
Publication of CN106254391A publication Critical patent/CN106254391A/en
Application granted granted Critical
Publication of CN106254391B publication Critical patent/CN106254391B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0209Architectural arrangements, e.g. perimeter networks or demilitarized zones
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/06Asset management; Financial planning or analysis
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3239Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Finance (AREA)
  • Accounting & Taxation (AREA)
  • Development Economics (AREA)
  • Game Theory and Decision Science (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Human Resources & Organizations (AREA)
  • Operations Research (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Strategic Management (AREA)
  • Technology Law (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer And Data Communications (AREA)

Abstract

The present invention relates to a kind of intranet and extranet communication and data distribution systems, it includes multiple business halls server, web server, multiple data server and multiple back end server, wherein said multiple business halls server and multiple back end server are arranged in Intranet, the plurality of data server is arranged in outer net, and described web server is connected with the plurality of business hall server, multiple data server and multiple back end server respectively.The plurality of business hall server sends checking request command to described web server.Described web server receives checking request command, and sends to the plurality of data server.The plurality of data server carries out checking and authorizes this solicited message, after having verified, the result is sent the plurality of business hall server;The plurality of business hall server when receiving the result being proved to be successful, request data in the plurality of back end server.

Description

A kind of intranet and extranet communication and data distribution systems and method
Technical field
The present invention relates to computer realm, particularly a kind of intranet and extranet communication and data distributing method and system.
Background technology
Computer networking technology is increasingly faster in development in recent years, thus the kind of safety problem and type occurs also More and more, therefore the safety precaution of computer network becomes the operation must practiced together.
Wherein, as funshares, the network information security is particularly important, so funshares are throughout the country Sales department's network be all to walk in-house network.But the sales department of funshares all parts of the country needs to receive number with outbound communication According to mode just cannot realize.Existing technology generally uses the mode of proxy server, by the computer of Intranet by this generation Reason server is to outer net request data.
And owing to, in funshares, being required for carrying out transmission and the renewal of mass data every day, and if the most a large amount of External request data, do not only take up a large amount of network bandwidth, and efficiency of transmission be the most slow.
Summary of the invention
It is an object of the invention to the shortcoming overcoming prior art with not enough, it is provided that a kind of intranet and extranet communication and data are divided The system and method sent out.
The present invention realizes especially by following technical scheme: a kind of intranet and extranet communication and data distribution systems, it includes Multiple business halls server, web server, multiple data server and multiple back end server, wherein said multiple battalion Industry Room server and multiple back end server are arranged in Intranet, and the plurality of data server is arranged in outer net, institute State web server to be connected with the plurality of business hall server, multiple data server and multiple back end server respectively;
The plurality of business hall server is respectively equipped with checking request receiver module, is used for sending checking request command extremely Described web server;
Described web server includes a web application module, is used for receiving checking request command, to this checking request life Solicited message in order is identified, and after being identified by, the information of request is packaged encryption, and sends to the plurality of Data server;
The plurality of data server includes a checking authorization module, is used for receiving solicited message, and to this solicited message Carry out checking to authorize, after having verified, the result is sent to web server, web server be forwarded to the plurality of In the checking request receiver module of business hall server;
The plurality of business hall server is when receiving the result being proved to be successful, in the plurality of back end server Request data;
The plurality of back end server is for after the request receiving described business hall server, to described many Individual business hall server distributes described packet.
As a further improvement on the present invention, described web server also includes the first preservation module, for by local data Bag is saved in the first row list file of this locality, and this first row list file records title and the MD5 check code of each file bag;
The plurality of data server also includes the second preservation module, for the packet of server end is saved in service In device end secondary series list file, this server end listing file records title and the MD5 check code of each file bag;
Described web server sends a request to obtain in the plurality of data server server end second after authorizing Listing file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, and is lacked this locality Packet is downloaded in this locality, and is distributed to the plurality of back end server.
As a further improvement on the present invention, the plurality of back end server includes the 3rd preservation module, is used for Packet in server is saved in the 3rd listing file, the 3rd listing file record each file bag title and MD5 check code;
The plurality of business hall server includes the 4th preservation module, for the packet in server is saved in the In four listing files, the 4th listing file records title and the MD5 check code of each file bag;
The plurality of back end server, after the request of data receiving the plurality of business hall server, obtains the Four listing files, carry out differentiation by the 3rd listing file and the 4th listing file and compare, by disappearance in the 4th listing file In packet delivery extremely the plurality of business hall server.
As a further improvement on the present invention, described web application module includes that parameter format checks submodule, is used for docking The solicited message received carries out parameter format inspection;Described format checking mode includes: field length inspection, numerical range inspection Look into, js step injects inspection, Boolean condition judges.
As a further improvement on the present invention, described web application module also includes depth content filtering module, for right Solicited message carries out depth-type filtration, and the content of depth-type filtration includes: specific field and url filtering.
As a further improvement on the present invention, described Web application module includes handover module, in request wherein In the proof procedure of one data server, during if it find that this request cannot respond to, automatically switch to another data, services Device makes requests on verification.
Present invention also offers a kind of intranet and extranet communication and data distributing method, by multiple business halls server and many numbers It is arranged in Intranet according to node server, multiple data servers are arranged in outer net, make web server many with described respectively Individual business hall server, multiple data server and multiple back end server connect;
Comprise the following steps in communication and data distribution:
S1: the plurality of business hall server sends checking request command to described web server.
S2: described web server includes a web application module, is used for receiving checking request command, asks this checking Solicited message in order is identified, and after being identified by, the information of request is packaged encryption, and sends to described many Individual data server.
S3: the plurality of data server receives solicited message, and this solicited message carries out checking mandate, and checking completes Afterwards the result is sent to web server, web server be forwarded to the plurality of business hall server.
S4: the plurality of business hall server, when receiving the result being proved to be successful, services to the plurality of back end Request data in device.
S5: after the plurality of back end server receives the request of described business hall server, to the plurality of Business hall server distributes described packet.
As a further improvement on the present invention, in step s3, further comprise the steps of:
Local packets is saved in the first row list file of this locality by S31: described web server, this first list literary composition Part records title and the MD5 check code of each file bag;
S32: the packet of the plurality of Data Server service device end is saved in server end secondary series list file, should Server end listing file records title and the MD5 check code of each file bag;
S33: described web server sends a request to obtain in the plurality of data server server end after authorizing Secondary series list file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, lacked this locality The packet lost is downloaded in this locality, and is distributed to the plurality of back end server.
As a further improvement on the present invention, in described step S5, specifically include step:
S51: be saved in the 3rd listing file by the packet in server in the plurality of back end server, should 3rd listing file records title and the MD5 check code of each file bag;
S52: be saved in the 4th listing file by the packet in server in the server of the plurality of business hall, this is years old Four listing files record title and the MD5 check code of each file bag;
S53: the plurality of back end server, after the request of data receiving the plurality of business hall server, obtains Take the 4th listing file, the 3rd listing file and the 4th listing file are carried out differentiation and compares, will the 4th listing file lack In the packet delivery lost extremely the plurality of business hall server.
As a further improvement on the present invention, in described step S2, also include step S21: described web application module docks The solicited message received carries out parameter format inspection;Described format checking mode includes: field length inspection, numerical range inspection Look into, js step injects inspection, Boolean condition judges.
As a further improvement on the present invention, in described step S2, also include step S22: right in described web application module Solicited message carries out depth-type filtration, and the content of depth-type filtration includes: specific field and url filtering.
As a further improvement on the present invention, in described step S2, when described Web application module is to request wherein In the proof procedure of data server, during if it find that this request cannot respond to, automatically switch to enter to another data server Row request verification.
Compared to prior art, the present invention possesses following beneficial effect:
1, distributed by the data of Intranet, pressure and the bandwidth of data server on the Internet can be saved.Such as: as Really all of sales department in the funshares whole nation decontrols outer net and asks reception data from data server, and that is accomplished by a lot Platform data server carries out sharing bandwidth and accessing pressure.And present invention achieves and a little receive, then Intranet is distributed, greatly Alleviate greatly the pressure of data server, such that it is able to reduce building of data server.
2, present invention achieves unified management and the authority distribution of all accounts, such as: the reception journey of all internal networks Sequence is required for asking to verify on Web server, and verification is just had permission by person and is received data.
In order to be more fully understood that and implement, describe the present invention below in conjunction with the accompanying drawings in detail.
Accompanying drawing explanation
Fig. 1 is intranet and extranet of the present invention communication and the topological diagram of data distribution systems.
Fig. 2 is intranet and extranet communication and the flow chart of steps of data distribution of the present invention.
Detailed description of the invention
The present invention is in order to realize the communication connection of intranet and extranet, it is provided that a kind of for what intranet and extranet communication and data were distributed be System and method.
Referring to Fig. 1, it is intranet and extranet communication and the topological diagram of data distribution systems of the present invention.The invention provides one Planting intranet and extranet communication and data distribution systems, it includes multiple business halls server 1, web server 2, multiple data server 3 With multiple back end servers 4, wherein said multiple business halls server 1 and multiple back end server 4 are arranged on interior In net, the plurality of data server 3 is arranged in outer net, described web server 2 respectively with the plurality of business hall server 1, multiple data servers 3 and multiple back end server 4 connect.
The plurality of business hall server 1 is respectively equipped with checking request receiver module, is used for sending checking request command To described web server.
Described web server 2 includes a web application module, is used for receiving checking request command, to this checking request life Solicited message in order is identified, and after being identified by, the information of request is packaged encryption, and sends to the plurality of Data server.
Concrete, described web application module includes that parameter format checks submodule, for entering the solicited message received Line parameter format checking;Described format checking mode includes: field length inspection, numerical range inspection, js step inject check, Boolean condition judges.
Described web application module also includes depth content filtering module, for solicited message being carried out depth-type filtration, deeply The content spending filter includes: specific field and url filtering.
Described Web application module includes handover module, authenticated at a request wherein data server Cheng Zhong, during if it find that this request cannot respond to, automatically switches and makes requests on verification to another data server.If it find that This request cannot respond to, and this data server machine of delaying possible causes, and web application can automatically switch to another number of units according to clothes Business device makes requests on verification.The problem that the most so can ensure that separate unit data server to delay after machine to cannot be carried out verification.
The plurality of data server 3 includes a checking authorization module, is used for receiving solicited message, and to this solicited message Carry out checking to authorize, after having verified, the result is sent to web server, web server be forwarded to the plurality of In the checking request receiver module of business hall server.
The plurality of business hall server 1 is when receiving the result being proved to be successful, to the plurality of back end server 4 Middle request data.
The plurality of back end server 4 is for after the request receiving described business hall server, to described Multiple business halls server distributes described packet.
Further, described web server also includes the first preservation module, for local packets is saved in the of this locality In one listing file, this first row list file records title and the MD5 check code of each file bag.
The plurality of data server also includes the second preservation module, for the packet of server end is saved in service In device end secondary series list file, this server end listing file records title and the MD5 check code of each file bag.
Described web server sends a request to obtain in the plurality of data server server end second after authorizing Listing file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, and is lacked this locality Packet is downloaded in this locality, and is distributed to the plurality of back end server.
Concrete, by multithreading, packet can be downloaded in the present invention, packet be carried out MD5 school simultaneously Test, it is judged that whether this packet is complete, finally carry out data decompression filing and the filename that completes is written to listed files, thus Complete the distribution of data.
Further, the plurality of back end server includes the 3rd preservation module, for by the data in server Bag is saved in the 3rd listing file, and the 3rd listing file records title and the MD5 check code of each file bag.
The plurality of business hall server includes the 4th preservation module, for the packet in server is saved in the In four listing files, the 4th listing file records title and the MD5 check code of each file bag.
The plurality of back end server, after the request of data receiving the plurality of business hall server, obtains the Four listing files, carry out differentiation by the 3rd listing file and the 4th listing file and compare, by disappearance in the 4th listing file In packet delivery extremely the plurality of business hall server.
Intranet and extranet communication of the invention below introduced below and the use process of data distribution systems:
The present invention includes that two parts, a part are to realize in Intranet how the main frame of business hall is to outer net request data, separately A part is how data are distributed.
First, it is assumed that some business hall needs to ask outer network data, need first to obtain mandate.And obtain the mode of mandate For: send checking request to web server.After being verified by this web server, send the data server requests to outer net Authorize, and return Authorization result meeting business hall server.After the server of business hall is authorized, just can take to back end Business device request data.
And about being updated to of data in back end server: please by web server data server in outer net Seek data.Wherein, by the way of listed files, carry out diversity comparison, the data lacked in web server be downloaded, And it is distributed to each back end.
Therefore, the present invention is distributed by the data of Intranet, can save pressure and the band of data server on the Internet Wide.Meanwhile, unified management and the authority distribution of all accounts are also achieved.
It addition, refer to Fig. 2, it is intranet and extranet communication and the flow chart of steps of data distribution of the present invention.The present invention is also Provide a kind of intranet and extranet communication and data distributing method, multiple business halls server and multiple back end server are arranged In Intranet, multiple data servers are arranged in outer net, make web server respectively with the plurality of business hall server, Multiple data servers and multiple back end server connect.
When comprising the following steps in communication and data distribution:
S1: the plurality of business hall server sends checking request command to described web server.
S2: described web server includes a web application module, is used for receiving checking request command, asks this checking Solicited message in order is identified, and after being identified by, the information of request is packaged encryption, and sends to described many Individual data server.Concrete, in this step S2, if when described Web application module is in a request wherein data, services In the proof procedure of device, during if it find that this request cannot respond to, automatically switch and make requests on school to another data server Test.
Further, in described step S2, also include step S21: the solicited message received is entered by described web application module Line parameter format checking;Described format checking mode includes: field length inspection, numerical range inspection, js step inject check, Boolean condition judges.
In described step S2, also include step S22: described web application module carries out depth-type filtration to solicited message, deeply The content spending filter includes: specific field and url filtering.
S3: the plurality of data server receives solicited message, and this solicited message carries out checking mandate, and checking completes Afterwards the result is sent to web server, web server be forwarded to the plurality of business hall server.
As a further improvement on the present invention, in step s3, further comprise the steps of:
Local packets is saved in the first row list file of this locality by S31: described web server, this first list literary composition Part records title and the MD5 check code of each file bag;
S32: the packet of the plurality of Data Server service device end is saved in server end secondary series list file, should Server end listing file records title and the MD5 check code of each file bag;
S33: described web server sends a request to obtain in the plurality of data server server end after authorizing Secondary series list file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, lacked this locality The packet lost is downloaded in this locality, and is distributed to the plurality of back end server.
S4: the plurality of business hall server, when receiving the result being proved to be successful, services to the plurality of back end Request data in device.
S5: after the plurality of back end server receives the request of described business hall server, to the plurality of Business hall server distributes described packet.
Further, in described step S5, specifically include step:
S51: be saved in the 3rd listing file by the packet in server in the plurality of back end server, should 3rd listing file records title and the MD5 check code of each file bag;
S52: be saved in the 4th listing file by the packet in server in the server of the plurality of business hall, this is years old Four listing files record title and the MD5 check code of each file bag;
S53: the plurality of back end server, after the request of data receiving the plurality of business hall server, obtains Take the 4th listing file, the 3rd listing file and the 4th listing file are carried out differentiation and compares, will the 4th listing file lack In the packet delivery lost extremely the plurality of business hall server.
Compared to prior art, the present invention possesses following beneficial effect:
1, distributed by the data of Intranet, pressure and the bandwidth of data server on the Internet can be saved.Such as: as Really all of sales department in the funshares whole nation decontrols outer net and asks reception data from data server, and that is accomplished by a lot Platform data server carries out sharing bandwidth and accessing pressure.And present invention achieves and a little receive, then Intranet is distributed, greatly Alleviate greatly the pressure of data server, such that it is able to reduce building of data server.
2, present invention achieves unified management and the authority distribution of all accounts, such as: the reception journey of all internal networks Sequence is required for asking to verify on Web server, and verification is just had permission by person and is received data.
The invention is not limited in above-mentioned embodiment, if various changes or deformation to the present invention are without departing from the present invention Spirit and scope, if these are changed and within the scope of deformation belongs to claim and the equivalent technologies of the present invention, then this Bright being also intended to comprises these changes and deformation.

Claims (12)

1. an intranet and extranet communication and data distribution systems, it is characterised in that: include multiple business halls server, web server, Multiple data servers and multiple back end server, wherein said multiple business halls server and multiple back end service Device is arranged in Intranet, and the plurality of data server is arranged in outer net, described web server respectively with the plurality of business Room server, multiple data server and multiple back end server connect;
The plurality of business hall server is respectively equipped with checking request receiver module, is used for sending checking request command to described Web server;
Described web server includes a web application module, is used for receiving checking request command, in this checking request command Solicited message be identified, after being identified by, the information of request is packaged encryption, and sends to the plurality of data Server;
The plurality of data server includes a checking authorization module, is used for receiving solicited message, and carries out this solicited message Checking authorizes, and after having verified, the result is sent to web server, web server is forwarded to the plurality of business In the checking request receiver module of Room server;
The plurality of business hall server, when receiving the result being proved to be successful, is asked in the plurality of back end server Data;
The plurality of back end server is for after the request receiving described business hall server, to the plurality of battalion Industry Room server distributes described packet.
Intranet and extranet communication and data distribution systems the most according to claim 1, it is characterised in that: described web server is also wrapped Include the first preservation module, in the first row list file that local packets is saved in this locality, this first row list file record The title of each file bag and MD5 check code;
The plurality of data server also includes the second preservation module, for the packet of server end is saved in server end In secondary series list file, this server end listing file records title and the MD5 check code of each file bag;
Described web server sends a request to obtain in the plurality of data server server end the second list after authorizing File, carries out differentiation by this locality first row list file with server end secondary series list file and compares, the data lacked this locality Bag is downloaded in this locality, and is distributed to the plurality of back end server.
Intranet and extranet communication and data distribution systems the most according to claim 2, it is characterised in that: the plurality of back end takes Business device includes the 3rd preservation module, for being saved in the 3rd listing file by the packet in server, the 3rd list The title of file record each file bag and MD5 check code;
The plurality of business hall server includes the 4th preservation module, for the packet in server is saved in the 4th row In list file, the 4th listing file records title and the MD5 check code of each file bag;
The plurality of back end server, after the request of data receiving the plurality of business hall server, obtains the 4th row List file, carries out differentiation by the 3rd listing file and the 4th listing file and compares, by the data of disappearance in the 4th listing file Bag is distributed in the server of the plurality of business hall.
Intranet and extranet communication and data distribution systems the most according to claim 1, it is characterised in that: described web application module bag Include parameter format and check submodule, for the solicited message received is carried out parameter format inspection;Described format checking mode Including: field length inspection, numerical range inspection, js step inject inspection, Boolean condition judgement.
Intranet and extranet communication and data distribution systems the most according to claim 4, it is characterised in that: in described web application module Also including that depth content filters submodule, for solicited message is carried out depth-type filtration, the content of depth-type filtration includes: designated word Section and url filtering.
Intranet and extranet communication and data distribution systems the most according to claim 1, it is characterised in that: in described Web application module Including handover module, in the proof procedure at a request wherein data server, if it find that this request cannot ring At once, automatic switchover makes requests on verification to another data server.
7. an intranet and extranet communication and data distributing method, it is characterised in that: by multiple business halls server and multiple data section Point server is arranged in Intranet, is arranged in outer net by multiple data servers, make web server respectively with the plurality of battalion Industry Room server, multiple data server and multiple back end server connect;
Comprise the following steps in communication and data distribution:
S1: the plurality of business hall server sends checking request command to described web server;
S2: described web server includes a web application module, is used for receiving checking request command, to this checking request command In solicited message be identified, after being identified by, the information of request is packaged encryption, and sends to the plurality of number According to server;
S3: the plurality of data server receives solicited message, and this solicited message carries out checking mandate, has verified rear The result sends to web server, web server be forwarded to the plurality of business hall server;
S4: the plurality of business hall server is when receiving the result being proved to be successful, in the plurality of back end server Request data;
S5: after the plurality of back end server receives the request of described business hall server, to the plurality of business Room server distributes described packet.
Intranet and extranet communication and data distributing method the most according to claim 7, it is characterised in that: in step s3, also include Step:
Local packets is saved in the first row list file of this locality by S31: described web server, and this first row list file is remembered Record title and the MD5 check code of each file bag;
S32: the packet of the plurality of Data Server service device end is saved in server end secondary series list file, this service Device end listing file records title and the MD5 check code of each file bag;
S33: described web server sends a request to obtain in the plurality of data server server end second after authorizing Listing file, carries out differentiation by this locality first row list file with server end secondary series list file and compares, and is lacked this locality Packet is downloaded in this locality, and is distributed to the plurality of back end server.
Intranet and extranet communication and data distributing method the most according to claim 8, it is characterised in that: in described step S5, specifically Including step:
S51: in the plurality of back end server, the packet in server is saved in the 3rd listing file, the 3rd Listing file records title and the MD5 check code of each file bag;
S52: in the server of the plurality of business hall, the packet in server is saved in the 4th listing file, the 4th row List file records title and the MD5 check code of each file bag;
S53: the plurality of back end server, after the request of data receiving the plurality of business hall server, obtains the Four listing files, carry out differentiation by the 3rd listing file and the 4th listing file and compare, by disappearance in the 4th listing file In packet delivery extremely the plurality of business hall server.
Intranet and extranet communication and data distributing method the most according to claim 7, it is characterised in that: in described step S2, also wrap Include step S21: the described web application module solicited message to receiving carries out parameter format inspection;Described format checking mode Including: field length inspection, numerical range inspection, js step inject inspection, Boolean condition judgement.
11. intranet and extranet communication and data distributing methods according to claim 10, it is characterised in that: in described step S2, also Including step S22: in described web application module, solicited message being carried out depth-type filtration, the content of depth-type filtration includes: designated word Section and url filtering.
12. intranet and extranet communication and data distributing methods according to claim 7, it is characterised in that: in described step S2, work as institute State Web application module in the proof procedure at a request wherein data server, during if it find that this request cannot respond to, Automatically switch and make requests on verification to another data server.
CN201610858365.7A 2016-09-28 2016-09-28 A kind of inside and outside Network Communication and data dissemination system and method Active CN106254391B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610858365.7A CN106254391B (en) 2016-09-28 2016-09-28 A kind of inside and outside Network Communication and data dissemination system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610858365.7A CN106254391B (en) 2016-09-28 2016-09-28 A kind of inside and outside Network Communication and data dissemination system and method

Publications (2)

Publication Number Publication Date
CN106254391A true CN106254391A (en) 2016-12-21
CN106254391B CN106254391B (en) 2018-03-23

Family

ID=57612191

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610858365.7A Active CN106254391B (en) 2016-09-28 2016-09-28 A kind of inside and outside Network Communication and data dissemination system and method

Country Status (1)

Country Link
CN (1) CN106254391B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20110231535A1 (en) * 2010-03-18 2011-09-22 Ian Charles Starnes Wireless Sensor Network
CN102255924A (en) * 2011-08-29 2011-11-23 浙江中烟工业有限责任公司 Multi-stage security interconnection platform based on trusted computing and processing flow thereof
CN105357318A (en) * 2015-12-08 2016-02-24 浪潮电子信息产业股份有限公司 Design method of intranet patch distribution management system
CN105631654A (en) * 2015-12-25 2016-06-01 中国民航信息网络股份有限公司 Self-service counter payment method and system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20110231535A1 (en) * 2010-03-18 2011-09-22 Ian Charles Starnes Wireless Sensor Network
CN102255924A (en) * 2011-08-29 2011-11-23 浙江中烟工业有限责任公司 Multi-stage security interconnection platform based on trusted computing and processing flow thereof
CN105357318A (en) * 2015-12-08 2016-02-24 浪潮电子信息产业股份有限公司 Design method of intranet patch distribution management system
CN105631654A (en) * 2015-12-25 2016-06-01 中国民航信息网络股份有限公司 Self-service counter payment method and system

Also Published As

Publication number Publication date
CN106254391B (en) 2018-03-23

Similar Documents

Publication Publication Date Title
CN106850580B (en) A kind of automobile account system and account automatic verification method
US20210329453A1 (en) Blockchain based wireless access point password management
CN109670768A (en) Right management method, device, platform and the readable storage medium storing program for executing in multi-service domain
US9197639B2 (en) Method for sharing data of device in M2M communication and system therefor
CN102473229B (en) Modification of access control lists
CN106488453A (en) A kind of method and system of portal certification
CN109951485A (en) SDN-based Internet of things access control method
CN102143492B (en) Method for establishing virtual private network (VPN) connection, mobile terminal and server
CN106101054A (en) The single-point logging method of a kind of multisystem and centralized management system
CN107689949A (en) Data base authority management method and system
CN106982430B (en) Portal authentication method and system based on user use habits
CN105933374A (en) Mobile terminal data backup method, system and mobile terminal
CN108966216A (en) A kind of method of mobile communication and device applied to power distribution network
CN108920919A (en) Control method, device and system of interactive intelligent equipment
CN106127888A (en) Smart lock operational approach and smart lock operating system
CN104796383A (en) Method and device for preventing terminal information from being tempered
CN106454829A (en) Authorized network access method and device
CN102045310B (en) Industrial Internet intrusion detection as well as defense method and device
CN103065104B (en) Movable storage device and the supervisory system formed thereof
KR101950856B1 (en) System and method for managementing information using blockchain
CN101594615B (en) Method, system and equipment for network management of terminal triple information security
CN104703183A (en) Special line APN (Access Point Name) security-enhanced access method and device
CN105700905A (en) WIFI (Wireless-Fidelity) upgrading method and apparatus for operation system of vehicle-mounted terminal
CN105471905B (en) The realization method and system of AAA in a kind of stacking system
CN105681352B (en) A kind of wireless network access safety management-control method and system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant