CN106331215A - Data request processing system and processing method - Google Patents

Data request processing system and processing method Download PDF

Info

Publication number
CN106331215A
CN106331215A CN201610761633.3A CN201610761633A CN106331215A CN 106331215 A CN106331215 A CN 106331215A CN 201610761633 A CN201610761633 A CN 201610761633A CN 106331215 A CN106331215 A CN 106331215A
Authority
CN
China
Prior art keywords
domain name
address
server
request message
web server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610761633.3A
Other languages
Chinese (zh)
Inventor
钱钰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Changzhou Hualong Network Polytron Technologies Inc
Original Assignee
Changzhou Hualong Network Polytron Technologies Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Changzhou Hualong Network Polytron Technologies Inc filed Critical Changzhou Hualong Network Polytron Technologies Inc
Priority to CN201610761633.3A priority Critical patent/CN106331215A/en
Publication of CN106331215A publication Critical patent/CN106331215A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4505Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
    • H04L61/4511Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/1466Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks

Abstract

The invention provides a network data request processing method, comprising the steps of S1, generating an initial http request message, wherein the initial http request message comprises a target domain name; and S2, searching the target domain name and an ip (Internet Protocol) address bound with the target domain name from DNS (Domain Name System) cache. According to a network data request processing system, when the http request message is sent, the domain name in the message is preferentially replaced by the ip address searched from an DNS cache part, in this way, connection with a web server can be directly established, and the probability that a DNS is hijacked can be reduced; the response speed of a client will be reduced due to the domain name resolution time, so the customer experience is reduced, when the ip address is not found in the DNS cache part, a policy of directly sending the http request message to a Local DNS server is employed, meanwhile, the ip address is obtained from a Public DNS server with relatively high credibility, the ip address is stored in the DNS cache part for the http request of a next time for the same domain name, and the relatively high balance is realized from security and customer experience.

Description

The processing system of request of data and processing method thereof
Technical field
The present invention relates to network communication technology field, particularly relate to processing system and the process side thereof of a kind of request of data Method.
Background technology
In IP(Internet Protocol, Internet protocol) in network, domain name system (Domain Name System, DNS) it is one of the infrastructure service of the Internet most critical, provide essence to support for numerous network applications, it is main Function is that domain name (Domain Name) IP discernible with the network address being readily able to people's memory is changed.Domain name and IP ground Conversion between location is referred to as domain name mapping, and the network host performing domain name mapping is properly termed as dns server.Pass through domain name system The inquiry service of dns server, can find the entrance of required website or resource, and then conduct interviews website or resource.
When user is by client (PC, mobile phone, panel computer) browser access webpage, first it is to input net at address field Location, or click on content (website, picture, music, video etc.) link, the content that then browser is asked according to user can generate One http request message, now needs to set up a socket between client with web server and is connected, and socket connects Being the ip address by web server and port foundation, so also having the process of a domain name mapping before, inquiry http please Ask the ip address bound in the domain name in message.The work of domain name mapping is usually given the LocalDNS server of ISP and has been come Becoming, there is the biggest problem: ISP for the purpose of self in this, can carry out DNS abduction, so-called DNS kidnap refer to when user to When LocalDNS server removes the true ip asking certain domain name, LocalDNS server has replied a false website or content is delayed Deposit the ip address of server, ultimately result in user and access appearance extremely.It is therefore necessary to existing request of data system is carried out Improve, reduce the probability kidnapped by DNS.
Summary of the invention
The technical problem to be solved in the present invention is: in order to reduce the probability that client is kidnapped by DNS when browsing webpage, this Invention provides the processing system of a kind of request of data and processing method thereof to solve the problems referred to above.
The technical solution adopted for the present invention to solve the technical problems is: the processing method of a kind of network data request, bag Include following steps:
S1, generation initial http request message, comprise target domain name in described initial http request message;
S2, inquire about the ip address of described target domain name and binding thereof in the dns cache;
If S3 finds the ip address of described target domain name and binding thereof in the dns cache, then by initial http request message The target domain name of unified resource location replace to the ip address of its binding, and the Host in described initial http request message Field is bound described target domain name, seals into secondary http request message up for safekeeping, utilize its ip address bound to build with web server A vertical socket connects, after send described secondary http request message to web server;
If the most not finding the ip address of described target domain name and binding thereof, the most directly by described initial http Request message sends to the LocalDNS server of ISP, meanwhile, generates first object domain name mapping based on DNS Protocol Request message, comprises described target domain name in described first object domain name mapping request message, please by described first domain name mapping Ask message to send to PublicDNS server, then receive the first domain name mapping response that described PublicDNS server returns Message, finally obtains the ip address of the web server being included in described first domain name mapping response message, and by web services The ip address of device and the binding of target domain name are stored in described DNS cache.
As preferably, in step s3, by described first domain name mapping request message after PublicDNS server sends Start timer, if PublicDNS server does not return the first domain name mapping response message in Preset Time, then generate The second domain name mapping request message based on http agreement, comprises described target domain name in described second domain name mapping request message With the ip address of domain name resolution agent server, by the ip address of domain name resolution agent server and domain name resolution agent service Device is set up the 2nd socket and is connected, and is sent to domain name resolution agent server by described second domain name mapping request message, then Receive domain name and resolve the second domain name mapping response message that proxy server returns, finally obtain and be included in described second territory The ip address of the web server in name analysis response message, and ip address and the binding of target domain name of web server are stored in institute State in DNS cache.
As preferably, in step s3, described initial http request message is sent it to the LocalDNS server of ISP After, receive LocalDNS server and return to the ip address of leaving a question open of web server, by leave a question open ip address and the target of web server Domain name binding is stored in described DNS cache;
The processing method of described network data request is further comprising the steps of:
S4, benchmark life span is set for each domain name in described DNS cache;
S5, when the ip address of the web server in described first domain name mapping response message or the second domain name mapping response message Inconsistent with the ip address of leaving a question open of web server, then the ip address of leaving a question open of the web server in described DNS cache is replaced to The ip address of the web server in described first domain name mapping response message or the second domain name mapping response message, and described It is that this target domain name increases extra life span on the basis of life span.
As preferably, further comprising the steps of:
S6, when the ip address of the web server in described first domain name mapping response message or the second domain name mapping response message Inconsistent with the ip address of leaving a question open of web server, then it is assumed that the LocalDNS server of ISP can not to the process of this target domain name Letter, upper once for the http request of this target domain name time, if the most not finding this target domain name and tying up Fixed ip address, first passes through PublicDNS server or the ip address of domain name resolution agent server acquirement web server, Then this target domain name that the unified resource in initial http request message positions is replaced to the ip address of this web server, And the Host field in described initial http request message is bound this target domain name, seal into secondary http request message up for safekeeping, The ip address utilizing this web server is set up a described socket and is connected with this web server, this web server the most backward Send described secondary http request message;
When the web server in described first domain name mapping response message or the second domain name mapping response message ip address with The ip address of leaving a question open of web server is consistent, then it is assumed that the LocalDNS server of ISP is credible to the process of this target domain name, Time next time for the http request of this target domain name, if the most not finding this target domain name described and tying up Fixed ip address, then directly send described initial http request message to the LocalDNS server of ISP.
Present invention also offers the processing system of a kind of network data request, including
Message generating unit, is configurable to generate initial http request message, comprises aiming field in described initial http request message Name;
DNS cache portion, is configured to store the ip address of several domain names and binding thereof;
Inquiry unit, is configured in DNS cache portion inquire about target domain name and the ip address of binding thereof;
When described inquiry unit finds the ip address of described target domain name and binding thereof in DNS cache portion: described message generating unit It is additionally configured to the described target domain name that the unified resource in described initial http request message positions is replaced to its binding Ip address, and the Host field in described initial http request message are bound described target domain name, seals into secondary http up for safekeeping Request message;
Connecting portion, when described inquiry unit finds the ip address of described target domain name and binding thereof, described connection in DNS cache portion Portion is configured to, with the ip address of described target domain name binding and sets up a socket with web server and be connected;
Sending part, is configured to send described secondary http request message to described web server;
When described inquiry unit does not the most find the ip address of described target domain name and binding thereof: described connecting portion quilt Being configured to the foundation of the LocalDNS server with ISP be connected, the LocalDNS server that described sending part is configured to ISP is sent out Send described initial http request message;Described message generating unit is configurable to generate first object domain name solution based on DNS Protocol Analysis request message, comprises described target domain name in described first object domain name mapping request message, and described connecting portion is configured to Setting up with PublicDNS server and be connected, described sending part is configured to send described first to described PublicDNS server Domain name mapping request message;
Acceptance division, is configured to receive the first domain name mapping response message that described PublicDNS server returns;
Extraction deposited portion, is configured to obtain the ip ground of the web server being included in described first domain name mapping response message Location, and ip address and the binding of target domain name of web server are stored in described DNS cache.
As preferably, also include:
Storage part, is configured to store Preset Time and the ip address of domain name resolution agent server;
Timing unit, starts timing after being configured to send described first domain name mapping request message;
When PublicDNS server described in described Preset Time does not return the first domain name mapping response message:
Message generating unit is configurable to generate the second domain name mapping request message based on http agreement, described second domain name mapping Request message comprises described target domain name and the ip address of domain name parsing proxy server;
Described connecting portion is configured to domain name and resolves ip address and the domain name resolution agent server of proxy server Set up the 2nd socket to connect;
Described sending part is configured to send described second domain name mapping request message to domain name resolution agent server;
Described acceptance division is configured to receive domain name and resolves the second domain name mapping response message that proxy server returns;
Described extraction deposited portion is configured to obtain the ip of the web server being included in described second domain name mapping response message Address, and ip address and the binding of target domain name of web server are stored in described DNS cache.
As preferably, described receiving portion is additionally configured to receive LocalDNS server and returns the ip that leaves a question open of web server Address, described extraction deposited portion be configured to by web server leave a question open ip address and the binding of target domain name is stored in described DNS and delays In depositing;Described timing unit is additionally configured to arrange benchmark life span for each domain name in described DNS cache;
The processing system of described network data request also includes:
Comparing section, is configured to the first domain name mapping response message described in comparison or the web in the second domain name mapping response message The ip address of server is the most consistent with the ip address of leaving a question open of web server:
If inconsistent, described extraction deposited portion is configured to replace the ip address of leaving a question open of the web server in described DNS cache Change the ip address of web server in described first domain name mapping response message or the second domain name mapping response message into, described Timing unit is configured on the basis of described life span increase extra life span for this target domain name;
As preferably, also include:
Degree of belief judge portion, the web services in described first domain name mapping response message or the second domain name mapping response message When the ip address of device is inconsistent with the ip address of leaving a question open of web server, described degree of belief judge portion is configured to think ISP's LocalDNS server is insincere to the process of this target domain name, and upper once for the http request of this target domain name time, If not finding the ip address of this target domain name and binding thereof in described DNS cache portion, then stop described sending part to ISP LocalDNS server send described initial http request message;
When the web server in described first domain name mapping response message or the second domain name mapping response message ip address with When the ip address of leaving a question open of web server is consistent, described degree of belief judge portion is configured to think the LocalDNS server pair of ISP The process of this target domain name is credible, and upper once for the http request of this target domain name time, if do not had in DNS cache portion Have and find this target domain name described and the ip address of binding thereof, then allow described sending part to send out to the LocalDNS server of ISP Send described initial http request message.
The invention has the beneficial effects as follows, the processing system of this network data request is when sending http request message, excellent First look for ip address to the domain name replacing in message from DNS cache portion, so directly can set up with web server and be connected, and Connection is set up in the ip address of leaving a question open not returned by the LocalDNS server of ISP, reduces the probability that DNS is held as a hostage;Because The time of domain name mapping can reduce the response speed of client, causes customer experience to be deteriorated, so when DNS cache portion is not looked for During to ip address, the strategy taked is directly to send http request message to LocalDNS server, meanwhile from credibility Higher PublicDNS server obtains ip address, and is stored in DNS cache portion ip address, for next time for same territory The http request of name, thus in safety and customer experience, accomplish higher balance.
Accompanying drawing explanation
The present invention is further described with embodiment below in conjunction with the accompanying drawings.
Fig. 1 is the flow chart of the embodiment one of the processing method of the network data request of the present invention.
Fig. 2 is the flow chart of the embodiment two of the processing method of the network data request of the present invention.
Fig. 3 is the flow chart of the embodiment three of the processing method of the network data request of the present invention.
Fig. 4 is the structure chart of the optimum embodiment of the processing system of the network data request of the present invention.
Detailed description of the invention
Embodiments of the invention are described below in detail, and the example of described embodiment is shown in the drawings, the most from start to finish Same or similar label represents same or similar element or has the element of same or like function.Below with reference to attached The embodiment that figure describes is exemplary, is only used for explaining the present invention, and is not considered as limiting the invention.On the contrary, originally Inventive embodiment includes all changes in the range of the spirit falling into attached claims and intension, revises and be equal to Thing.
In describing the invention, it is to be understood that term " " center ", " longitudinally ", " laterally ", " length ", " width ", " thickness ", " on ", D score, "front", "rear", "left", "right", " vertically ", " level ", " top ", " end " " interior ", " outward ", " axially ", " radially ", the orientation of the instruction such as " circumferential " or position relationship be based on orientation shown in the drawings or position relationship, merely to just In describe the present invention and simplifying describe rather than instruction or the hint device of indication or element must have specific orientation, with Specific azimuth configuration and operation, be therefore not considered as limiting the invention.
Additionally, term " first ", " second " etc. are only used for describing purpose, and it is not intended that indicate or imply relatively important Property.In describing the invention, it should be noted that unless otherwise clearly defined and limited, term " is connected ", " connection " should It is interpreted broadly, connects for example, it may be fixing, it is also possible to be to removably connect, or be integrally connected;Can be that machinery connects Connect, it is also possible to be electrical connection;Can be to be joined directly together, it is also possible to be indirectly connected to by intermediary.Common for this area For technical staff, above-mentioned term concrete meaning in the present invention can be understood with concrete condition.Additionally, in description of the invention In, except as otherwise noted, " multiple " are meant that two or more.
In flow chart or at this, any process described otherwise above or method description are construed as, and expression includes One or more is for realizing the module of code, fragment or the portion of the executable instruction of the step of specific logical function or process Point, and the scope of the preferred embodiment of the present invention includes other realization, wherein can not by shown or discuss suitable Sequence, including according to involved function by basic mode simultaneously or in the opposite order, performs function, and this should be by the present invention Embodiment person of ordinary skill in the field understood.
The entity structure of this client, including CPU, ROM, RAM, input equipment, display and network interface, CPU electricity Connect ROM, RAM, input equipment, display and network interface, ROM storing initial http request message, secondary http request report Literary composition, the various numbers such as ip address of aiming field name analysis request message, DNS cache, Preset Time, domain name resolution agent server According to, for controlling the computer program of client, various setting, initial value etc., RAM is used as loading various computer program The memory area of working region or temporarily storage identification number.
CPU is inquiry unit, message generating unit, connecting portion, sending part, acceptance division, extraction deposited portion, timing unit, comparing section With the disposal subject in degree of belief judge portion, controlling each parts of client, in RAM, storage is read according to from ROM simultaneously Computer program;Network interface accesses the Internet as communication interface.
As it is shown in figure 1, embodiments of the invention one provide the processing method of a kind of network data request, including following step Rapid:
S101, generation initial http request message, comprise request row and request header in initial http request message, at request row URL(unified resource location) in be target domain name, Host field is positioned in request header;
S102, in the dns cache inquiry target domain name and the ip address of binding thereof;
If S103 finds the ip address of target domain name and binding thereof in the dns cache, then by initial http request message The target domain name of URL replaces to the ip address of its binding, and bound targets in the Host field in initial http request message Domain name, seals into secondary http request message up for safekeeping, utilizes its ip address bound to set up a socket with web server and is connected, Secondary http request message is sent to web server after;Walk around the LocalDNS server of ISP, by ip address directly with Web server connects, and substantially can ensure that DNS is not held as a hostage, it is ensured that absolute safety;
But, if the most not finding the ip address of target domain name and binding thereof, still it is intent on by reliably Ip address directly is set up with web server to be connected, it is necessary to by PublicDNS server or domain name resolution agent service Device carries out domain name mapping, and PublicDNS server refers to that 114DNS, OpenDNS, Google PublicDNS etc. is this credible Spending higher dns server, domain name resolution agent server refers to provide the HttpDNS private server of service, and client makes Make requests on to 80 ports of HttpDNS server with http protocol, replace traditional DNS Protocol 53 ends to dns server Mouthful make requests on, got around the Local DNS of operator, thus avoid the abduction using operator Local DNS to cause and Inter-network problem;It can thus be seen that when client's request data, if to carry out above-mentioned domain name mapping, that client gives visitor The reflection at family is stagnated exactly, this directly reduces the performance of browser, so the strategy used in the present embodiment is directly will just Beginning http request message sends to the LocalDNS server of ISP, keeps client to have a response speed faster, meanwhile, Generate first object domain name mapping request message based on DNS Protocol, first object domain name mapping request message comprises target Domain name, sends the first domain name mapping request message to PublicDNS server, then receives PublicDNS server and returns The first domain name mapping response message, finally obtain be included in the first domain name mapping response message web server ip ground Location, and ip address and the binding of target domain name of web server are stored in DNS cache, for next time for same domain name Http request;Above technical scheme is not to improve safety simply and stop the probability that DNS kidnaps, but in safety With accomplish higher balance in customer experience, ensureing that browser possesses faster on the premise of reflection speed, reducing as far as possible The probability that DNS kidnaps;From the point of view of for common customer, the frequency changing network environment is the highest, and conventional website is also taught It is fixing, so when the amount of storage in DNS cache is the most, and the probability of the LocalDNS server walking around ISP is the highest, then The request needing the LocalDNS server process of ISP will be little, and the LocalDNS server of ISP is also selectively to rob Holding the DNS of user, in the situation that request amount is little, the actual DNS occurred kidnaps will be little, so the request of this network data Processing method be a kind of safety and ensure the method that customer experience has both.
As in figure 2 it is shown, embodiment two provides the processing method of a kind of network data request, comprise the following steps:
S201, generation initial http request message, comprise request row and request header in initial http request message, at request row URL(unified resource location) in be target domain name, Host field is positioned in request header;
S202, in the dns cache inquiry target domain name and the ip address of binding thereof;
If S203 finds the ip address of target domain name and binding thereof in the dns cache, then by initial http request message The target domain name of URL replaces to the ip address of its binding, and bound targets in the Host field in initial http request message Domain name, seals into secondary http request message up for safekeeping, utilizes its ip address bound to set up a socket with web server and is connected, Secondary http request message is sent to web server after;
If the most not finding the ip address of target domain name and binding thereof, directly by initial http request message to The LocalDNS server of ISP sends, and keeps client to have response speed faster, meanwhile, generates based on DNS Protocol First object domain name mapping request message, comprises target domain name in first object domain name mapping request message, by the first domain name solution Analysis request message sends to PublicDNS server, then receives the first domain name mapping response that PublicDNS server returns Message, finally obtains the ip address of the web server being included in the first domain name mapping response message, and by web server Ip address and the binding of target domain name are stored in DNS cache;
S204, startup timer, if PublicDNS server does not return the first domain name mapping response report in Preset Time Literary composition, then generate the second domain name mapping request message based on http agreement, comprise aiming field in the second domain name mapping request message Name and the ip address of domain name resolution agent server, taken with domain name resolution agent by the ip address of domain name resolution agent server Business device is set up the 2nd socket and is connected, and is sent to domain name resolution agent server by the second domain name mapping request message, then connects Receive the second domain name mapping response message that domain name resolution agent server returns, finally obtain and be included in the second domain name mapping response The ip address of the web server in message, and ip address and the binding of target domain name of web server are stored in DNS cache.? In complicated network environment, it is used alone PublicDNS server or domain name resolution agent server carries out domain name mapping, all can Improve and resolve failed probability, using PublicDNS server high for stable degree of belief as mainly resolving means, domain name mapping generation Reason server, as auxiliary parsing means, dual preparation, improves the success rate resolved.
As it is shown on figure 3, embodiment three provides the processing method of a kind of network data request, comprise the following steps:
S301, generation initial http request message, comprise request row and request header in initial http request message, at request row URL(unified resource location) in be target domain name, Host field is positioned in request header;
S302, in the dns cache inquiry target domain name and the ip address of binding thereof;
If S303 finds the ip address of target domain name and binding thereof in the dns cache, then by initial http request message The target domain name of URL replaces to the ip address of its binding, and bound targets in the Host field in initial http request message Domain name, seals into secondary http request message up for safekeeping, utilizes its ip address bound to set up a socket with web server and is connected, Secondary http request message is sent to web server after;
If the most not finding the ip address of target domain name and binding thereof, directly by initial http request message to The LocalDNS server of ISP sends, and receives LocalDNS server and returns to the ip address of leaving a question open of web server, by web services Device leave a question open ip address and target domain name binding be stored in DNS cache, meanwhile, generate first object based on DNS Protocol Domain name mapping request message, comprises target domain name in first object domain name mapping request message, by the first domain name mapping request report Literary composition sends to PublicDNS server, then receives the first domain name mapping response message that PublicDNS server returns, Rear acquisition is included in the ip address of the web server in the first domain name mapping response message;
S304, startup timer, if PublicDNS server does not return the first domain name mapping response report in Preset Time Literary composition, then generate the second domain name mapping request message based on http agreement, comprise aiming field in the second domain name mapping request message Name and the ip address of domain name resolution agent server, taken with domain name resolution agent by the ip address of domain name resolution agent server Business device is set up the 2nd socket and is connected, and is sent to domain name resolution agent server by the second domain name mapping request message, then connects Receive the second domain name mapping response message that domain name resolution agent server returns, finally obtain and be included in the second domain name mapping response The ip address of the web server in message;
S304, arranging benchmark life span for each domain name in DNS cache, benchmark life span is set to 600s;
S306, when the web server in the first domain name mapping response message or the second domain name mapping response message ip address with The ip address of leaving a question open of web server is inconsistent, then the ip address of leaving a question open of the web server in DNS cache is replaced to the first territory The ip address of the web server in name analysis response message or the second domain name mapping response message, and on the basis of life span Upper is that this target domain name increases extra life span, and extra life span is set to 300s, as it is assumed that the first domain name mapping response The ip address of the web server in message or the second domain name mapping response message is more reliable, so when leaving a question open ip address With they inconsistent time, illustrate that DNS is kidnapped by the LocalDNS server of ISP, the ip address of leaving a question open in DNS cache is by reliably Ip address is replaced, it is contemplated that the LocalDNS server of ISP has carried out DNS abduction to this domain name, the possibility the most again kidnapped Property higher, so improving the life span of domain name after replacing, improve safety period for this domain name.
S307, when the web server in the first domain name mapping response message or the second domain name mapping response message ip ground Location is inconsistent with the ip address of leaving a question open of web server, then it is assumed that the LocalDNS server of ISP is to the process of this target domain name not Credible, upper once for the http request of this target domain name time, if the most do not find this target domain name and The ip address of binding, first passes through PublicDNS server or the ip ground of domain name resolution agent server acquirement web server Location, then replaces to the ip ground of this web server by this target domain name that the unified resource in initial http request message positions Location, and the Host field in initial http request message are bound this target domain name, seals into secondary http request message up for safekeeping, profit Set up a socket with the ip address of this web server with this web server to be connected, after send two to this web server Secondary http request message;Once assert that the LocalDNS server of ISP is insincere to the process of this target domain name, later for When this target domain name proposes http request again, although the reflection of browser may be caused to slow, but in order to ensure safety Property, the LocalDNS server that initial http request message cannot directly be issued SP carries out processing, and passes through PublicDNS server or domain name resolution agent server obtain the ip address of web server, and this technological means exists again Reasonably balance it is made that between the response speed of safety and client;
When the ip address of the web server in the first domain name mapping response message or the second domain name mapping response message takes with web Business device ip address of leaving a question open consistent, then it is assumed that the LocalDNS server of ISP is credible to the process of this target domain name, upper once During for the http request of this target domain name, if the most not finding the ip address of this target domain name and binding thereof, Then directly initial http request message is sent to the LocalDNS server of ISP.
As shown in Figure 4, present invention also offers the processing system of a kind of network data request, including
Message generating unit, is configurable to generate initial http request message, comprises target domain name in initial http request message;
DNS cache portion, is configured to store the ip address of several domain names and binding thereof;
Inquiry unit, is configured in DNS cache portion inquire about target domain name and the ip address of binding thereof;
When inquiry unit finds the ip address of target domain name and binding thereof in DNS cache portion: message generating unit be additionally configured to by The target domain name of the unified resource location in initial http request message replaces to the ip address of its binding, and please at initial http Seek bound targets domain name in the Host field in message, seal into secondary http request message up for safekeeping;
Connecting portion, when inquiry unit finds the ip address of target domain name and binding thereof in DNS cache portion, and connecting portion is configured to profit Set up a socket with the ip address of target domain name binding with web server to be connected;
Sending part, is configured to send secondary http request message to web server;
When inquiry unit does not the most find the ip address of target domain name and binding thereof: connecting portion is configured to ISP's LocalDNS server is set up and is connected, and sending part is configured to send initial http request report to the LocalDNS server of ISP Literary composition;Message generating unit is configurable to generate first object domain name mapping request message based on DNS Protocol, first object domain name solution Comprising target domain name in analysis request message, connecting portion is configured to set up with PublicDNS server be connected, and sending part is configured For sending the first domain name mapping request message to PublicDNS server;
Acceptance division, is configured to receive the first domain name mapping response message that PublicDNS server returns;
Extraction deposited portion, is configured to obtain the ip address of the web server being included in the first domain name mapping response message, and Ip address and the binding of target domain name of web server are stored in DNS cache.
Storage part, is configured to store Preset Time and the ip address of domain name resolution agent server;
Timing unit, starts timing after being configured to send the first domain name mapping request message;
When in Preset Time, PublicDNS server does not return the first domain name mapping response message:
Message generating unit is configurable to generate the second domain name mapping request message based on http agreement, the second domain name mapping request Message comprises the ip address of target domain name and domain name resolution agent server;
Connecting portion is configured to the ip address of domain name resolution agent server and sets up second with domain name resolution agent server Socket connects;
Sending part is configured to send the second domain name mapping request message to domain name resolution agent server;
Acceptance division is configured to receive the second domain name mapping response message that domain name resolution agent server returns;
Extraction deposited portion is configured to obtain the ip address of the web server being included in the second domain name mapping response message, and Ip address and the binding of target domain name of web server are stored in DNS cache.
Receiving portion is additionally configured to receive LocalDNS server and returns to the ip address of leaving a question open of web server, and extraction is stored in Portion be configured to by web server leave a question open ip address and target domain name binding be stored in DNS cache;Timing unit is additionally configured to For each domain name in DNS cache, benchmark life span is set;
The processing system of network data request also includes:
Comparing section, is configured to compare the web services in the first domain name mapping response message or the second domain name mapping response message The ip address of device is the most consistent with the ip address of leaving a question open of web server:
If inconsistent, extraction deposited portion is configured to the ip address of leaving a question open of the web server in DNS cache is replaced to first The ip address of the web server in domain name mapping response message or the second domain name mapping response message, timing unit is configured to It is that this target domain name increases extra life span on the basis of life span;
Degree of belief judge portion, when the web server in the first domain name mapping response message or the second domain name mapping response message When ip address is inconsistent with the ip address of leaving a question open of web server, degree of belief judge portion is configured to think that the LocalDNS of ISP takes Business device is insincere to the process of this target domain name, and upper once for the http request of this target domain name time, if delayed at DNS Deposit the ip address not finding this target domain name and binding thereof in portion, then stop sending part to be sent out to the LocalDNS server of ISP Send initial http request message;
When the ip address of the web server in the first domain name mapping response message or the second domain name mapping response message takes with web When the ip address of leaving a question open of business device is consistent, degree of belief judge portion is configured to think that the LocalDNS server of ISP is to this aiming field The process of name is credible, and upper once for the http request of this target domain name time, if not finding this in DNS cache portion The ip address of target domain name and binding thereof, then allow sending part to send initial http request report to the LocalDNS server of ISP Literary composition.
In the description of this specification, reference term " embodiment ", " some embodiments ", " example ", " specifically show Example " or the description of " some examples " etc. means to combine this embodiment or example describes specific features, structure, material or spy Point is contained at least one embodiment or the example of the present invention.In this manual, to the schematic representation of described term not Necessarily refer to identical embodiment or example.And, the specific features of description, structure, material or feature can be any One or more embodiments or example in combine in an appropriate manner.
With the above-mentioned desirable embodiment according to the present invention for enlightenment, by above-mentioned description, relevant staff is complete Entirely can carry out various change and amendment in the range of without departing from this invention technological thought.The technology of this invention The content that property scope is not limited in description, it is necessary to determine its technical scope according to right.

Claims (8)

1. the processing method of a network data request, it is characterised in that comprise the following steps:
S1, generation initial http request message, comprise target domain name in described initial http request message;
S2, inquire about the ip address of described target domain name and binding thereof in the dns cache;
If S3 finds the ip address of described target domain name and binding thereof in the dns cache, then by initial http request message The target domain name of unified resource location replace to the ip address of its binding, and the Host in described initial http request message Field is bound described target domain name, seals into secondary http request message up for safekeeping, utilize its ip address bound to build with web server A vertical socket connects, after send described secondary http request message to web server;
If the most not finding the ip address of described target domain name and binding thereof, the most directly by described initial http Request message sends to the LocalDNS server of ISP, meanwhile, generates first object domain name mapping based on DNS Protocol Request message, comprises described target domain name in described first object domain name mapping request message, please by described first domain name mapping Ask message to send to PublicDNS server, then receive the first domain name mapping response that described PublicDNS server returns Message, finally obtains the ip address of the web server being included in described first domain name mapping response message, and by web services The ip address of device and the binding of target domain name are stored in described DNS cache.
2. the processing method of network data request as claimed in claim 1, it is characterised in that:
In step s3, described first domain name mapping request message is started after PublicDNS server sends timer, as Fruit PublicDNS server in Preset Time does not return the first domain name mapping response message, then generate based on http agreement The second domain name mapping request message, described second domain name mapping request message comprises described target domain name and domain name mapping generation The ip address of reason server, sets up second by the ip address of domain name resolution agent server and domain name resolution agent server Socket connects, and is sent to domain name resolution agent server by described second domain name mapping request message, then receives described territory The second domain name mapping response message that name analysis proxy server returns, finally obtains and is included in described second domain name mapping response The ip address of the web server in message, and ip address and the binding of target domain name of web server are stored in described DNS cache In.
3. the processing method of network data request as claimed in claim 2, it is characterised in that:
In step s3, by described initial http request message after the LocalDNS server of ISP sends, receive LocalDNS server returns to the ip address of leaving a question open of web server, by leave a question open ip address and the binding of target domain name of web server It is stored in described DNS cache;
The processing method of described network data request is further comprising the steps of:
S4, benchmark life span is set for each domain name in described DNS cache;
S5, when the ip address of the web server in described first domain name mapping response message or the second domain name mapping response message Inconsistent with the ip address of leaving a question open of web server, then the ip address of leaving a question open of the web server in described DNS cache is replaced to The ip address of the web server in described first domain name mapping response message or the second domain name mapping response message, and described It is that this target domain name increases extra life span on the basis of life span.
4. the processing method of network data request as claimed in claim 3, it is characterised in that further comprising the steps of:
S6, when the ip address of the web server in described first domain name mapping response message or the second domain name mapping response message Inconsistent with the ip address of leaving a question open of web server, then it is assumed that the LocalDNS server of ISP can not to the process of this target domain name Letter, upper once for the http request of this target domain name time, if the most not finding this target domain name and tying up Fixed ip address, first passes through PublicDNS server or the ip address of domain name resolution agent server acquirement web server, Then this target domain name that the unified resource in initial http request message positions is replaced to the ip address of this web server, And at described initial httpHost field in request message is bound this target domain name, seals into secondary http request message up for safekeeping, Utilize thisThe ip address of web server is set up a described socket and is connected with this web server, this web server the most backward Send described secondary http request message;
When the web server in described first domain name mapping response message or the second domain name mapping response message ip address with The ip address of leaving a question open of web server is consistent, then it is assumed that the LocalDNS server of ISP is credible to the process of this target domain name, Time next time for the http request of this target domain name, if the most not finding this target domain name described and tying up Fixed ip address, then directly send described initial http request message to the LocalDNS server of ISP.
5. the processing system of a network data request, it is characterised in that: include
Message generating unit, is configurable to generate initial http request message, comprises aiming field in described initial http request message Name;
DNS cache portion, is configured to store the ip address of several domain names and binding thereof;
Inquiry unit, is configured in DNS cache portion inquire about target domain name and the ip address of binding thereof;
When described inquiry unit finds the ip address of described target domain name and binding thereof in DNS cache portion: described message generating unit It is additionally configured to the described target domain name that the unified resource in described initial http request message positions is replaced to its binding Ip address, and the Host field in described initial http request message are bound described target domain name, seals into secondary http up for safekeeping Request message;
Connecting portion, when described inquiry unit finds the ip address of described target domain name and binding thereof, described connection in DNS cache portion Portion is configured to, with the ip address of described target domain name binding and sets up a socket with web server and be connected;
Sending part, is configured to send described secondary http request message to described web server;
When described inquiry unit does not the most find the ip address of described target domain name and binding thereof: described connecting portion quilt Being configured to the foundation of the LocalDNS server with ISP be connected, the LocalDNS server that described sending part is configured to ISP is sent out Send described initial http request message;Described message generating unit is configurable to generate first object domain name solution based on DNS Protocol Analysis request message, comprises described target domain name in described first object domain name mapping request message, and described connecting portion is configured to Setting up with PublicDNS server and be connected, described sending part is configured to send described first to described PublicDNS server Domain name mapping request message;
Acceptance division, is configured to receive the first domain name mapping response message that described PublicDNS server returns;
Extraction deposited portion, is configured to obtain the ip ground of the web server being included in described first domain name mapping response message Location, and ip address and the binding of target domain name of web server are stored in described DNS cache.
6. the processing system of network data request as claimed in claim 5, it is characterised in that also include:
Storage part, is configured to store Preset Time and the ip address of domain name resolution agent server;
Timing unit, starts timing after being configured to send described first domain name mapping request message;
When PublicDNS server described in described Preset Time does not return the first domain name mapping response message:
Message generating unit is configurable to generate the second domain name mapping request message based on http agreement, described second domain name mapping Request message comprises described target domain name and the ip address of domain name parsing proxy server;
Described connecting portion is configured to domain name and resolves ip address and the domain name resolution agent server of proxy server Set up the 2nd socket to connect;
Described sending part is configured to send described second domain name mapping request message to domain name resolution agent server;
Described acceptance division is configured to receive domain name and resolves the second domain name mapping response message that proxy server returns;
Described extraction deposited portion is configured to obtain the ip of the web server being included in described second domain name mapping response message Address, and ip address and the binding of target domain name of web server are stored in described DNS cache.
7. the processing system of network data request as claimed in claim 6, it is characterised in that: described receiving portion is additionally configured to Receiving LocalDNS server and return to the ip address of leaving a question open of web server, described extraction deposited portion is configured to web server Leave a question open ip address and target domain name binding be stored in described DNS cache;Described timing unit is additionally configured to as described DNS cache In each domain name benchmark life span is set;
The processing system of described network data request also includes:
Comparing section, is configured to the first domain name mapping response message described in comparison or the web in the second domain name mapping response message The ip address of server is the most consistent with the ip address of leaving a question open of web server:
If inconsistent, described extraction deposited portion is configured to replace the ip address of leaving a question open of the web server in described DNS cache Change the ip address of web server in described first domain name mapping response message or the second domain name mapping response message into, described Timing unit is configured on the basis of described life span increase extra life span for this target domain name.
8. the processing system of network data request as claimed in claim 7, it is characterised in that also include:
Degree of belief judge portion, the web services in described first domain name mapping response message or the second domain name mapping response message When the ip address of device is inconsistent with the ip address of leaving a question open of web server, described degree of belief judge portion is configured to think ISP's LocalDNS server is insincere to the process of this target domain name, and upper once for the http request of this target domain name time, If not finding the ip address of this target domain name and binding thereof in described DNS cache portion, then stop described sending part to ISP LocalDNS server send described initial http request message;
When the web server in described first domain name mapping response message or the second domain name mapping response message ip address with When the ip address of leaving a question open of web server is consistent, described degree of belief judge portion is configured to think the LocalDNS server pair of ISP The process of this target domain name is credible, and upper once for the http request of this target domain name time, if do not had in DNS cache portion Have and find this target domain name described and the ip address of binding thereof, then allow described sending part to send out to the LocalDNS server of ISP Send described initial http request message.
CN201610761633.3A 2016-08-30 2016-08-30 Data request processing system and processing method Pending CN106331215A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610761633.3A CN106331215A (en) 2016-08-30 2016-08-30 Data request processing system and processing method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610761633.3A CN106331215A (en) 2016-08-30 2016-08-30 Data request processing system and processing method

Publications (1)

Publication Number Publication Date
CN106331215A true CN106331215A (en) 2017-01-11

Family

ID=57788591

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610761633.3A Pending CN106331215A (en) 2016-08-30 2016-08-30 Data request processing system and processing method

Country Status (1)

Country Link
CN (1) CN106331215A (en)

Cited By (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106878458A (en) * 2017-03-24 2017-06-20 福建中金在线信息科技有限公司 A kind of proxy access method and system
CN107302602A (en) * 2017-05-18 2017-10-27 北京小度信息科技有限公司 Information transmitting methods and device
CN107613036A (en) * 2017-09-04 2018-01-19 北京新流万联网络技术有限公司 Realize the method and system of HTTPS Transparent Proxies
CN108028847A (en) * 2015-08-13 2018-05-11 株式会社 Kt Internet connection apparatus, central management server and internal connection method
CN108040085A (en) * 2017-11-20 2018-05-15 广州华多网络科技有限公司 Method for network access, device and server
CN108449428A (en) * 2018-04-23 2018-08-24 深圳市分期乐网络科技有限公司 A kind of method for connecting network, device, server and storage medium
CN109040316A (en) * 2018-09-19 2018-12-18 天津字节跳动科技有限公司 HTTP service treating method and apparatus
CN109274702A (en) * 2017-07-12 2019-01-25 武汉安天信息技术有限责任公司 A kind of web site contents acquisition method and device
CN109996200A (en) * 2017-12-31 2019-07-09 中国移动通信集团四川有限公司 Method, apparatus, equipment and the medium for preventing flow from cheating
CN110225092A (en) * 2019-05-14 2019-09-10 无线生活(杭州)信息科技有限公司 A kind of communication means and WebSocket server
CN110266832A (en) * 2019-07-08 2019-09-20 新华三信息安全技术有限公司 A kind of domain name analytic method and device
CN110572486A (en) * 2019-08-13 2019-12-13 河北上通云天网络科技有限公司 domain name resolution system based on MAC address
CN111049945A (en) * 2019-12-19 2020-04-21 浙江学海教育科技有限公司 Network request optimization method, device, equipment and medium based on HTTP (hyper text transport protocol)
CN111414208A (en) * 2020-03-13 2020-07-14 百度在线网络技术(北京)有限公司 Application program starting method, device and equipment
CN112637236A (en) * 2020-12-31 2021-04-09 河南信大网御科技有限公司 HTTP proxy method, architecture and medium for separating from protocol stack
CN112887255A (en) * 2019-11-29 2021-06-01 北京一起教育信息咨询有限责任公司 Network communication method and device
CN116170410A (en) * 2023-04-23 2023-05-26 阿里云计算有限公司 Domain name pre-resolution processing method, system, electronic equipment and storage medium
CN116627772A (en) * 2023-07-20 2023-08-22 北京微吼时代科技有限公司 Cache tracking and monitoring method and system

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101272407A (en) * 2008-04-28 2008-09-24 杭州华三通信技术有限公司 Caching detecting method, caching detecting device and detection responding device for domain name system
CN101640679A (en) * 2009-04-13 2010-02-03 山石网科通信技术(北京)有限公司 Domain name resolution agent method and device therefor
CN104113447A (en) * 2014-07-10 2014-10-22 北京蓝汛通信技术有限责任公司 Method, device and system for monitoring domain name resolution pollution
CN104168339A (en) * 2014-06-30 2014-11-26 汉柏科技有限公司 Method and device for preventing domain name from being intercepted
CN105656950A (en) * 2016-04-13 2016-06-08 南京烽火软件科技有限公司 HTTP (Hyper Text Transport Protocol) access hijack detection and purification device and method based on domain name

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101272407A (en) * 2008-04-28 2008-09-24 杭州华三通信技术有限公司 Caching detecting method, caching detecting device and detection responding device for domain name system
CN101640679A (en) * 2009-04-13 2010-02-03 山石网科通信技术(北京)有限公司 Domain name resolution agent method and device therefor
CN104168339A (en) * 2014-06-30 2014-11-26 汉柏科技有限公司 Method and device for preventing domain name from being intercepted
CN104113447A (en) * 2014-07-10 2014-10-22 北京蓝汛通信技术有限责任公司 Method, device and system for monitoring domain name resolution pollution
CN105656950A (en) * 2016-04-13 2016-06-08 南京烽火软件科技有限公司 HTTP (Hyper Text Transport Protocol) access hijack detection and purification device and method based on domain name

Cited By (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108028847A (en) * 2015-08-13 2018-05-11 株式会社 Kt Internet connection apparatus, central management server and internal connection method
CN106878458A (en) * 2017-03-24 2017-06-20 福建中金在线信息科技有限公司 A kind of proxy access method and system
CN107302602B (en) * 2017-05-18 2020-10-02 北京星选科技有限公司 Information transmission method and device
CN107302602A (en) * 2017-05-18 2017-10-27 北京小度信息科技有限公司 Information transmitting methods and device
CN109274702A (en) * 2017-07-12 2019-01-25 武汉安天信息技术有限责任公司 A kind of web site contents acquisition method and device
CN107613036A (en) * 2017-09-04 2018-01-19 北京新流万联网络技术有限公司 Realize the method and system of HTTPS Transparent Proxies
CN107613036B (en) * 2017-09-04 2021-07-23 北京新流万联网络技术有限公司 Method and system for realizing HTTPS transparent proxy
CN108040085A (en) * 2017-11-20 2018-05-15 广州华多网络科技有限公司 Method for network access, device and server
CN109996200A (en) * 2017-12-31 2019-07-09 中国移动通信集团四川有限公司 Method, apparatus, equipment and the medium for preventing flow from cheating
CN109996200B (en) * 2017-12-31 2021-05-04 中国移动通信集团四川有限公司 Method, device, equipment and medium for preventing flow fraud
CN108449428A (en) * 2018-04-23 2018-08-24 深圳市分期乐网络科技有限公司 A kind of method for connecting network, device, server and storage medium
CN109040316A (en) * 2018-09-19 2018-12-18 天津字节跳动科技有限公司 HTTP service treating method and apparatus
CN110225092A (en) * 2019-05-14 2019-09-10 无线生活(杭州)信息科技有限公司 A kind of communication means and WebSocket server
CN110225092B (en) * 2019-05-14 2022-06-14 无线生活(杭州)信息科技有限公司 Communication method and WebSocket server
CN110266832A (en) * 2019-07-08 2019-09-20 新华三信息安全技术有限公司 A kind of domain name analytic method and device
CN110572486A (en) * 2019-08-13 2019-12-13 河北上通云天网络科技有限公司 domain name resolution system based on MAC address
CN112887255A (en) * 2019-11-29 2021-06-01 北京一起教育信息咨询有限责任公司 Network communication method and device
CN111049945A (en) * 2019-12-19 2020-04-21 浙江学海教育科技有限公司 Network request optimization method, device, equipment and medium based on HTTP (hyper text transport protocol)
CN111414208A (en) * 2020-03-13 2020-07-14 百度在线网络技术(北京)有限公司 Application program starting method, device and equipment
CN111414208B (en) * 2020-03-13 2023-08-01 百度在线网络技术(北京)有限公司 Application program starting method, device and equipment
CN112637236A (en) * 2020-12-31 2021-04-09 河南信大网御科技有限公司 HTTP proxy method, architecture and medium for separating from protocol stack
CN116170410A (en) * 2023-04-23 2023-05-26 阿里云计算有限公司 Domain name pre-resolution processing method, system, electronic equipment and storage medium
CN116627772A (en) * 2023-07-20 2023-08-22 北京微吼时代科技有限公司 Cache tracking and monitoring method and system
CN116627772B (en) * 2023-07-20 2023-09-15 北京微吼时代科技有限公司 Cache tracking and monitoring method and system

Similar Documents

Publication Publication Date Title
CN106331215A (en) Data request processing system and processing method
AU2015401229B2 (en) Website access method, apparatus, and website system
CN104202360B (en) The method of accessed web page, device and router
JP5893034B2 (en) Request routing in network environments
US8914514B1 (en) Managing network based content
US8503433B2 (en) Routing methods and systems using ENUM servers
US7734792B2 (en) Secure tunnel domain name management
US20140122572A1 (en) Enterprise service bus routing system
US11153264B2 (en) Methods, apparatuses, and computer programs for data processing, and hierarchical domain name system zone files
US8892640B2 (en) Access control method and system and access terminal
US10057207B2 (en) Smart navigation for shortened URLs
US20100042681A1 (en) Contents delivery system and method using object redirection, and gslb switch thereof
US9590947B2 (en) IP management method, client and server
CN104901943A (en) Method and system for accessing website
RU2630380C9 (en) System and advertising push method (push) based on home gateway
CN112600868B (en) Domain name resolution method, domain name resolution device and electronic equipment
CN105119973A (en) User information processing method and user information processing server
CN110430188A (en) A kind of quick url filtering method and device
CN103905572A (en) Domain name resolution request processing method and device
US11558456B2 (en) Method and apparatus for providing and utilizing a link metadata system for the internet
US8566448B2 (en) System and method for providing device file using device identifier
CN109525678A (en) Block chain network system and corresponding node device find method
CN105812503A (en) Root server address update method and recursive server
JP2016517078A (en) Systems and methods that allow a domain name server to process natural language queries and determine context
CN103701844A (en) User information management method and system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170111