CN106789357B - Method and system for positioning fault terminal - Google Patents
Method and system for positioning fault terminal Download PDFInfo
- Publication number
- CN106789357B CN106789357B CN201710080406.9A CN201710080406A CN106789357B CN 106789357 B CN106789357 B CN 106789357B CN 201710080406 A CN201710080406 A CN 201710080406A CN 106789357 B CN106789357 B CN 106789357B
- Authority
- CN
- China
- Prior art keywords
- terminal
- module
- fault
- eoc
- positioning
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 23
- 238000013507 mapping Methods 0.000 claims abstract description 43
- 238000012790 confirmation Methods 0.000 claims description 2
- 230000002159 abnormal effect Effects 0.000 abstract description 4
- 238000010586 diagram Methods 0.000 description 7
- 238000012545 processing Methods 0.000 description 4
- 241000700605 Viruses Species 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 2
- 238000002955 isolation Methods 0.000 description 2
- 238000012544 monitoring process Methods 0.000 description 2
- 230000006855 networking Effects 0.000 description 2
- 231100000572 poisoning Toxicity 0.000 description 2
- 230000000607 poisoning effect Effects 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 230000004044 response Effects 0.000 description 2
- 238000012546 transfer Methods 0.000 description 2
- 206010033799 Paralysis Diseases 0.000 description 1
- 230000032683 aging Effects 0.000 description 1
- 238000003745 diagnosis Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000004807 localization Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0677—Localisation of faults
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0654—Management of faults, events, alarms or notifications using network fault recovery
- H04L41/0663—Performing the actions predefined by failover planning, e.g. switching to standby network elements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/10—Mapping addresses of different types
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4552—Lookup mechanisms between a plurality of directories; Synchronisation of directories, e.g. metadirectories
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2463/00—Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
- H04L2463/146—Tracing the source of attacks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
Abstract
The present invention relates to the field of network management, and in particular, to a method and a system for positioning a fault terminal. The EOC local side is provided with a mapping table, the mapping table stores a plurality of list units, each list unit comprises an IP address of an EOC terminal connected with the EOC local side and MAC addresses of all user terminals connected with the EOC terminal, the IP addresses are associated with the MAC addresses, when a certain user terminal is in fault or abnormal condition and becomes an attack source, the position of the poisoned MAC address can be found out by quickly and accurately positioning the attack source under the EOC terminal of which IP the attack source is positioned through the MAC address of the user terminal, and the attack source can be effectively isolated in a remote EOC terminal management mode so as to ensure that other terminals in a network can work normally.
Description
Technical Field
The present invention relates to the field of network management, and in particular, to a method and a system for positioning a fault terminal.
Background
In the network operation and maintenance process, an important task is to locate a failed terminal. When a terminal fails (for example, due to hardware aging, system vulnerability or poisoning), abnormal network phenomena such as network attack and bandwidth congestion occur, so that the security of the whole network is affected.
As shown in the schematic diagram of EOC networking in fig. 1, when a certain user terminal under the EOC terminal performs malicious attack on the EOC network due to rogue software or viruses, the broadband resources of the entire EOC network are occupied, and the services of normal users are affected; a large number of denial of service attacks cause that system resources (CPU and memory resources) of an EOC local side or an EOC terminal are continuously occupied with high load, and normal operation of the whole network is influenced; viruses may even cause confidential information to be revealed, causing a potential safety hazard. In order to solve the problem as soon as possible, the fault terminal needs to be positioned and isolated to ensure that other terminals in the network can work normally. Through some technical means, such as mirror image traffic analysis and traffic monitoring technology, the MAC of the attack source can be known, but the attack source cannot be located.
Currently, the positioning method is to physically pull down the connected EOC terminals one by one from the distributor by using an isolation method. The method is relatively quick, but has relatively large influence on users, and a plurality of normal user terminals are influenced in the process of diagnosis.
Disclosure of Invention
The technical problem to be solved by the invention is as follows: a method and a system for quickly and accurately positioning a fault terminal are provided.
In order to solve the technical problems, the invention adopts the technical scheme that:
a method for positioning a fault terminal comprises the following steps:
the EOC local side is provided with a mapping table, the mapping table stores a plurality of list units, the list units comprise IP addresses of EOC terminals connected with the EOC local side and MAC addresses of all user terminals connected with the EOC terminals, and the IP addresses are associated with the MAC addresses;
the EOC local side acquires a first MAC address of a user terminal with a fault;
and inquiring the mapping table according to the first MAC address to obtain a first IP address corresponding to the first MAC address of the user terminal with the fault, and confirming the EOC terminal with the fault.
The invention adopts another technical scheme that: a system for locating a faulty terminal, comprising: the device comprises a setting module, an obtaining module and a confirming module;
the setting module is used for setting a mapping table at an EOC local side, the mapping table stores a plurality of list units, the list units comprise IP addresses of EOC terminals connected with the EOC local side and MAC addresses of all user terminals connected with the EOC terminals, and the IP addresses are associated with the MAC addresses;
the acquisition module is used for the EOC local side to acquire a first MAC address of the user terminal with the fault;
and the confirming module is used for inquiring the mapping table according to the first MAC address, obtaining a first IP address corresponding to the first MAC address of the user terminal with the fault, and confirming the EOC terminal with the fault.
The invention has the beneficial effects that:
the method and the system for positioning the fault terminal provided by the invention have the advantages that the EOC local side is provided with the mapping table, the mapping table stores a plurality of list units, each list unit comprises the IP address of the EOC terminal connected with the EOC local side and the MAC addresses of all user terminals connected with the EOC terminal, the IP addresses are associated with the MAC addresses, when a certain user terminal is in fault or becomes an attack source under the condition that the attack source is positioned under the EOC terminal of which IP through the MAC address of the user terminal, the position of the poisoned MAC address can be found out, and the attack source can be effectively isolated by a remote EOC terminal management mode so as to ensure that other terminals in the network can work normally.
Drawings
FIG. 1 is a schematic diagram of EOC networking in the background art of the present invention;
FIG. 2 is a flowchart illustrating the steps of a method for locating a faulty terminal according to the present invention;
fig. 3 is a schematic structural diagram of a positioning system of a fault terminal according to the present invention;
fig. 4 is an interaction diagram of a method for locating a faulty terminal according to an embodiment of the present invention;
FIG. 5 is a schematic diagram of the overall system architecture in an embodiment of the present invention;
FIG. 6 is a schematic structural diagram of an EOC system in an overall system according to an embodiment of the present invention;
description of reference numerals:
1. setting a module; 2. an acquisition module; 3. and a confirmation module.
Detailed Description
In order to explain technical contents, achieved objects, and effects of the present invention in detail, the following description is made with reference to the accompanying drawings in combination with the embodiments.
The most key concept of the invention is as follows: the mapping table is arranged at the EOC local side, the IP address of the EOC terminal is established to be associated with the MAC addresses of all the user terminals connected with the EOC terminal, and when a certain user terminal is in failure or becomes an attack source under the condition that the failure or the abnormal condition occurs, the EOC terminal of which IP the attack source is positioned under can be quickly and accurately positioned through the MAC address of the user terminal.
Referring to fig. 2, a method for locating a fault terminal provided by the present invention includes:
the EOC local side is provided with a mapping table, the mapping table stores a plurality of list units, the list units comprise IP addresses of EOC terminals connected with the EOC local side and MAC addresses of all user terminals connected with the EOC terminals, and the IP addresses are associated with the MAC addresses;
the EOC local side acquires a first MAC address of a user terminal with a fault;
and inquiring the mapping table according to the first MAC address to obtain a first IP address corresponding to the first MAC address of the user terminal with the fault, and confirming the EOC terminal with the fault.
From the above description, the beneficial effects of the present invention are: the method for positioning the fault terminal provided by the invention is characterized in that a mapping table is arranged at an EOC local side, a plurality of list units are stored in the mapping table, each list unit comprises an IP address of the EOC terminal connected with the EOC local side and MAC addresses of all user terminals connected with the EOC terminal, the IP addresses are associated with the MAC addresses, when a certain user terminal is in fault or becomes an attack source under the condition that the attack source is positioned under the EOC terminal of which IP through the MAC address of the user terminal, the position of the poisoned MAC address can be found out, and the attack source can be effectively isolated in a mode of remotely managing the EOC terminal so as to ensure that other terminals in a network can work normally.
Further, before acquiring the first MAC address of the failed ue, the EOC central office further includes:
an EOC local side receives a fault terminal positioning request sent by a client side;
and analyzing the fault terminal positioning request to obtain a fault terminal positioning query instruction.
As can be seen from the above description, when the system identifies that a faulty terminal exists, the system notifies the client, and the client sends a request to the EOC office, so that the EOC office initiates a query step only when receiving the request sent by the client, and does not need to query or update related information in real time, thereby effectively improving the effective utilization rate of system resources.
Further, the EOC local side comprises a management module and a positioning module;
the method comprises the steps that a management module receives a fault terminal positioning request sent by a client, analyzes the fault terminal positioning request to obtain a fault terminal positioning query instruction, obtains a first MAC address of a user terminal with a fault, and forwards the fault terminal positioning query instruction and the first MAC address to a positioning module;
the positioning module receives a fault terminal positioning query instruction and a first MAC address, queries a mapping table according to the first MAC address, obtains a first IP address corresponding to the first MAC address of the fault user terminal, and confirms the fault EOC terminal; the mapping table is arranged on the positioning module.
As can be seen from the above description, in the embodiment, the EOC central office is composed of a management module and a positioning module, and the management module is responsible for receiving and analyzing the request, and acquiring the first MAC address of the failed ue; and the positioning module is responsible for inquiring the mapping table and confirming the EOC terminal with the fault.
Further, the method also comprises the following steps: updating a mapping table at a preset time interval; the updating step includes:
the EOC terminal is provided with an agent module and an information module, the information module stores terminal management information, and the terminal management information comprises MAC addresses of all user terminals connected with each EOC terminal in a downward mode;
and when the agent module receives the updating instruction sent by the positioning module, the agent module acquires the data currently stored in the terminal management information of the information module and sends the data to the positioning module.
According to the description, the terminal management information of the information module is updated at a certain time interval, and real-time updating is not needed, so that system resources do not need to be occupied in real time, the effective utilization rate of the system can be improved, and the time interval can be set optionally according to actual application scenes. The information module can be a database in an actual implementation mode, is arranged in the memory, and is additionally provided with the agent module as a transfer station, so that the operation pressure of the server can be effectively reduced, and the data processing efficiency is improved.
Further, if the state of the user terminal is an online state, adding the user terminal in the online state to the terminal management information; and if the state of the user terminal is the off-line state, deleting the user terminal in the off-line state from the terminal management information.
As can be seen from the above description, the terminal management information is only used to manage the online terminal, and if the ue is offline, no influence is caused to other terminals, so that although each ue is physically connected to the EOC terminal, only the online ue is managed during management, and thus the data processing capability and response efficiency can be further improved.
Referring to fig. 3, the present invention further provides a system for locating a fault terminal, including: the device comprises a setting module 1, an obtaining module 2 and a confirming module 3;
the setting module 1 is configured to set a mapping table for an EOC local side, where the mapping table stores a plurality of list units, where each list unit includes an IP address of an EOC terminal connected to the EOC local side and MAC addresses of all user terminals connected to the EOC terminal, and the IP addresses are associated with the MAC addresses;
the obtaining module 2 is configured to obtain, by the EOC central office, a first MAC address of the failed user terminal;
and the confirming module 3 is configured to query the mapping table according to the first MAC address, obtain a first IP address corresponding to the first MAC address of the failed user terminal, and confirm the failed EOC terminal.
The positioning system of the fault terminal provided by the invention is characterized in that a mapping table is arranged at an EOC local side, a plurality of list units are stored in the mapping table, each list unit comprises an IP address of the EOC terminal connected with the EOC local side and MAC addresses of all user terminals connected with the EOC terminal, the IP addresses are associated with the MAC addresses, when a certain user terminal is in fault or becomes an attack source under the condition that the attack source is positioned under the EOC terminal of which IP through the MAC address of the user terminal, the position of the poisoned MAC address can be found out, and the attack source can be effectively isolated through a remote EOC terminal management mode so as to ensure that other terminals in a network can work normally.
The system further comprises a receiving module, which is used for receiving a fault terminal positioning request sent by the client by the EOC local side; and analyzing the fault terminal positioning request to obtain a fault terminal positioning query instruction.
As can be seen from the above description, when the system identifies that a faulty terminal exists, the system notifies the client, and the client sends a request to the EOC office, so that the EOC office initiates a query step only when receiving the request sent by the client, and does not need to query or update related information in real time, thereby effectively improving the effective utilization rate of system resources.
Further, the EOC local side comprises a management module and a positioning module;
the management module is used for receiving a fault terminal positioning request sent by a client, analyzing the fault terminal positioning request, obtaining a fault terminal positioning query instruction, obtaining a first MAC address of a user terminal with a fault, and forwarding the fault terminal positioning query instruction and the first MAC address to the positioning module;
the positioning module is used for receiving a fault terminal positioning query instruction and a first MAC address, querying a mapping table according to the first MAC address, obtaining a first IP address corresponding to the first MAC address of the fault user terminal, and confirming the fault EOC terminal; the mapping table is arranged on the positioning module.
As can be seen from the above description, in the embodiment, the EOC central office is composed of a management module and a positioning module, and the management module is responsible for receiving and analyzing the request, and acquiring the first MAC address of the failed ue; and the positioning module is responsible for inquiring the mapping table and confirming the EOC terminal with the fault.
Further, the device also comprises an updating module used for updating the mapping table at a preset time interval; the updating step includes:
the EOC terminal is provided with an agent module and an information module, the information module stores terminal management information, and the terminal management information comprises MAC addresses of all user terminals connected with each EOC terminal in a downward mode;
and when the agent module receives the updating instruction sent by the positioning module, the agent module acquires the data currently stored in the terminal management information of the information module and sends the data to the positioning module.
According to the description, the terminal management information of the information module is updated at a certain time interval, and real-time updating is not needed, so that system resources do not need to be occupied in real time, the effective utilization rate of the system can be improved, and the time interval can be set optionally according to actual application scenes. The information module can be a database in an actual implementation mode, is arranged in the memory, and is additionally provided with the agent module as a transfer station, so that the operation pressure of the server can be effectively reduced, and the data processing efficiency is improved.
Furthermore, the system also comprises an adding module and a deleting module;
the adding module is used for adding the user terminal in the online state into the terminal management information if the state of the user terminal is in the online state;
and the deleting module is used for deleting the user terminal in the offline state from the terminal management information if the state of the user terminal is in the offline state.
As can be seen from the above description, the terminal management information is only used to manage the online terminal, and if the ue is offline, no influence is caused to other terminals, so that although each ue is physically connected to the EOC terminal, only the online ue is managed during management, and thus the data processing capability and response efficiency can be further improved.
Referring to fig. 2 to 6, a first embodiment of the present invention is:
referring to fig. 4 in conjunction with fig. 5 and 6, fig. 6 is a schematic diagram illustrating the EOC system 1 of fig. 5, and it should be understood that each of the EOC system 1 through EOC system n of fig. 5 includes the description of fig. 6.
In this embodiment, a user terminal a hung under an EOC terminal 1 in an EOC system 1 continuously sends a malicious attack message due to poisoning, so that the whole network is paralyzed, a network administrator knows that the MAC address of an attack source is Ua through a traffic monitoring technology on an OLT device, and now needs to quickly find out which EOC terminal the Ua is hung under through the method and the system for quickly and accurately positioning a fault terminal provided by the present invention, and then remotely manage and operate the EOC terminal, so as to implement isolation of the attack source.
In this embodiment, the management module and the positioning module run on the management server, and the agent module and the information module run on each EOC terminal.
In this embodiment, the method for quickly and accurately positioning a fault terminal of the present invention includes the following steps:
step 201: and the server (management module) sends a MAC positioning command, and the MAC address is Ua.
Step 202: after receiving the positioning command, the positioning module analyzes the positioning command to obtain an MAC address (Ua) to be positioned, and then sends a terminal management information query command to the agent module, wherein the terminal management information to be queried comprises the MAC address of the user terminal and the IP of the EOC terminal connected to the user terminal.
Step 203: and after receiving the query command, the agent module reads the terminal management information in the information module.
In this embodiment, each EOC terminal maintains its own information module, and the information module stores a MAC list of the user terminal that is under-hung by the EOC terminal.
The content of the information module of the EOC terminal 1 is shown in the following table 1:
| off-hook user terminal MAC |
| Ua |
| .. (omitting other user terminals MAC here) |
| Ud |
TABLE 1
The information modules of other EOC terminals are the same as the EOC terminal 1, and are not described herein again.
Step 204: and the information module feeds back the terminal management information to the agent module according to the query rule of the agent module.
Step 205: and after acquiring the management information of the terminal from the information module, the agent module feeds back the query result to the positioning module.
In this embodiment, the query result finally obtained by the location module is shown in table 2 below:
| off-hook user terminal MAC | IP of upper connection EOC terminal |
| Ua | E1 |
| .. (omitting other user terminals MAC here) | E1 |
| Ud | E1 |
| Ue | E2 |
| .. (omitting other user terminals MAC here) | E2 |
| Uj | E2 |
| .. (omitting other user terminals MAC here) | ... (other EOC terminals IP omitted here) |
TABLE 2
Step 206: and taking the positioning MAC as an index, finding the IP of the corresponding uplink device from the query result, and feeding back the IP to the management module.
In this embodiment, the address Ua of the location MAC is used as an index, and the corresponding IP of the connected device is obtained from the query result as E1.
Step 207: and feeding back the MAC positioning result to the management module.
In this embodiment, the connected device IP whose localization result is the attack source is E1. The network administrator can know that the attack source is under the EOC terminal with IP E1, and then can isolate the attack source by means of the EOC terminal remotely.
In summary, the method and system for locating a faulty terminal provided by the present invention are implemented by setting a mapping table at an EOC local side, where the mapping table stores a plurality of list units, where each list unit includes an IP address of an EOC terminal connected to the EOC local side and MAC addresses of all user terminals connected to the EOC terminal, and the IP addresses are associated with the MAC addresses, when a fault or an abnormal condition occurs in a certain user terminal and becomes an attack source, the location of the poisoned MAC address can be found out by quickly and accurately locating the attack source under which IP EOC terminal the attack source is located through the MAC address of the user terminal, and the attack source can be effectively isolated by remotely managing the EOC terminal, so as to ensure that other terminals in a network can work normally, and without adopting a physical terminal removal manner, there is no performance impact on terminal hardware.
The above description is only an embodiment of the present invention, and not intended to limit the scope of the present invention, and all equivalent changes made by using the contents of the present specification and the drawings, or applied directly or indirectly to the related technical fields, are included in the scope of the present invention.
Claims (4)
1. A method for positioning a fault terminal is characterized by comprising the following steps:
the EOC local side is provided with a mapping table, the mapping table stores a plurality of list units, the list units comprise IP addresses of EOC terminals connected with the EOC local side and MAC addresses of all user terminals connected with the EOC terminals, and the IP addresses are associated with the MAC addresses;
the EOC local side acquires a first MAC address of a user terminal with a fault;
inquiring a mapping table according to the first MAC address to obtain a first IP address corresponding to the first MAC address of the user terminal with the fault, and confirming the EOC terminal with the fault;
before acquiring the first MAC address of the failed ue, the EOC further includes:
an EOC local side receives a fault terminal positioning request sent by a client side;
analyzing the fault terminal positioning request to obtain a fault terminal positioning query instruction;
after the EOC terminal with the fault is confirmed, the attack source is isolated in a mode of remotely managing the EOC terminal with the fault so as to ensure that other terminals in the network can work normally;
the EOC local side comprises a management module and a positioning module;
the method comprises the steps that a management module receives a fault terminal positioning request sent by a client, analyzes the fault terminal positioning request to obtain a fault terminal positioning query instruction, obtains a first MAC address of a user terminal with a fault, and forwards the fault terminal positioning query instruction and the first MAC address to a positioning module;
the positioning module receives a fault terminal positioning query instruction and a first MAC address, queries a mapping table according to the first MAC address, obtains a first IP address corresponding to the first MAC address of the fault user terminal, and confirms the fault EOC terminal; the mapping table is arranged on the positioning module;
further comprising: updating a mapping table at a preset time interval; the updating step includes:
the EOC terminal is provided with an agent module and an information module, the information module stores terminal management information, and the terminal management information comprises MAC addresses of all user terminals connected with each EOC terminal in a downward mode;
and when the agent module receives the updating instruction sent by the positioning module, the agent module acquires the data currently stored in the terminal management information of the information module and sends the data to the positioning module.
2. The method according to claim 1, wherein if the state of the ue is online, adding the ue in online state to the terminal management information; and if the state of the user terminal is the off-line state, deleting the user terminal in the off-line state from the terminal management information.
3. A system for locating a faulty terminal, comprising: the device comprises a setting module, an obtaining module and a confirming module;
the setting module is used for setting a mapping table at an EOC local side, the mapping table stores a plurality of list units, the list units comprise IP addresses of EOC terminals connected with the EOC local side and MAC addresses of all user terminals connected with the EOC terminals, and the IP addresses are associated with the MAC addresses;
the acquisition module is used for the EOC local side to acquire a first MAC address of the user terminal with the fault;
the confirmation module is used for inquiring the mapping table according to the first MAC address, obtaining a first IP address corresponding to the first MAC address of the user terminal with the fault, and confirming the EOC terminal with the fault;
the system also comprises a receiving module, a sending module and a receiving module, wherein the receiving module is used for receiving a fault terminal positioning request sent by a client by an EOC local side; analyzing the fault terminal positioning request to obtain a fault terminal positioning query instruction;
after the EOC terminal with the fault is confirmed, the attack source is isolated in a mode of remotely managing the EOC terminal with the fault so as to ensure that other terminals in the network can work normally;
the EOC local side comprises a management module and a positioning module;
the management module is used for receiving a fault terminal positioning request sent by a client, analyzing the fault terminal positioning request, obtaining a fault terminal positioning query instruction, obtaining a first MAC address of a user terminal with a fault, and forwarding the fault terminal positioning query instruction and the first MAC address to the positioning module;
the positioning module is used for receiving a fault terminal positioning query instruction and a first MAC address, querying a mapping table according to the first MAC address, obtaining a first IP address corresponding to the first MAC address of the fault user terminal, and confirming the fault EOC terminal; the mapping table is arranged on the positioning module;
the device also comprises an updating module used for updating the mapping table at a preset time interval; the updating step includes:
the EOC terminal is provided with an agent module and an information module, the information module stores terminal management information, and the terminal management information comprises MAC addresses of all user terminals connected with each EOC terminal in a downward mode;
and when the agent module receives the updating instruction sent by the positioning module, the agent module acquires the data currently stored in the terminal management information of the information module and sends the data to the positioning module.
4. The system for locating a faulty terminal according to claim 3, further comprising an adding module and a deleting module;
the adding module is used for adding the user terminal in the online state into the terminal management information if the state of the user terminal is in the online state;
and the deleting module is used for deleting the user terminal in the offline state from the terminal management information if the state of the user terminal is in the offline state.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010403139.6A CN111756570A (en) | 2017-02-15 | 2017-02-15 | Method and system for positioning fault terminal in EOC network |
| CN201710080406.9A CN106789357B (en) | 2017-02-15 | 2017-02-15 | Method and system for positioning fault terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710080406.9A CN106789357B (en) | 2017-02-15 | 2017-02-15 | Method and system for positioning fault terminal |
Related Child Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010403139.6A Division CN111756570A (en) | 2017-02-15 | 2017-02-15 | Method and system for positioning fault terminal in EOC network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106789357A CN106789357A (en) | 2017-05-31 |
| CN106789357B true CN106789357B (en) | 2020-06-02 |
Family
ID=58957119
Family Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710080406.9A Active CN106789357B (en) | 2017-02-15 | 2017-02-15 | Method and system for positioning fault terminal |
| CN202010403139.6A Pending CN111756570A (en) | 2017-02-15 | 2017-02-15 | Method and system for positioning fault terminal in EOC network |
Family Applications After (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010403139.6A Pending CN111756570A (en) | 2017-02-15 | 2017-02-15 | Method and system for positioning fault terminal in EOC network |
Country Status (1)
| Country | Link |
|---|---|
| CN (2) | CN106789357B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108616402B (en) * | 2018-05-09 | 2021-05-25 | 烽火通信科技股份有限公司 | Management method and system of remote equipment |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102739539A (en) * | 2012-06-29 | 2012-10-17 | 广东东研网络科技有限公司 | Method for carrying out topology association on optical network unit (ONU) and Ethernet over coax (EOC) |
| CN102833231A (en) * | 2012-08-01 | 2012-12-19 | 华数传媒网络有限公司 | Method for dynamic allocation in EoC mixed cascade mode |
| CN103117870A (en) * | 2012-12-31 | 2013-05-22 | 广东东研网络科技股份有限公司 | Coaxial-cable Ethernet optical network unit (ONU)-Ethernet over coax (EOC)-community antenna television (CATV) topology association method |
| CN104052816A (en) * | 2014-06-26 | 2014-09-17 | 瑞斯康达科技发展股份有限公司 | Method and device for positioning user terminal through network device |
Family Cites Families (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7831686B1 (en) * | 2006-03-31 | 2010-11-09 | Symantec Operating Corporation | System and method for rapidly ending communication protocol connections in response to node failure |
| CN101282282B (en) * | 2007-04-06 | 2010-08-25 | 杭州华三通信技术有限公司 | Method, system and terminal for determining service quality degree |
| JP2010021713A (en) * | 2008-07-09 | 2010-01-28 | Toshiba Corp | Proxy terminal, communication method, and communication program |
| CN101635713A (en) * | 2009-06-09 | 2010-01-27 | 北京安天电子设备有限公司 | Method and system for preventing local area network ARP defection attacks |
| CN202206389U (en) * | 2011-07-27 | 2012-04-25 | 福建金钱猫电子科技有限公司 | Coaxial cable EOC (Ethernet over COAX) system supporting loop circuit detection |
| CN102355610B (en) * | 2011-10-28 | 2014-05-07 | 烽火通信科技股份有限公司 | Method for implementing circuit identification in optical network unit (ONU) system based on EOC (Ethernet over Coaxial cable) |
| CN105611323B (en) * | 2015-12-23 | 2018-10-23 | 南京爱布谷网络科技有限公司 | The broadbands EOC and cable television services are total to cable access system and frequency spectrum distributing method |
| CN105553739B (en) * | 2015-12-25 | 2019-04-26 | 瑞斯康达科技发展股份有限公司 | A kind of method and device for realizing MAC Address tracking |
-
2017
- 2017-02-15 CN CN201710080406.9A patent/CN106789357B/en active Active
- 2017-02-15 CN CN202010403139.6A patent/CN111756570A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102739539A (en) * | 2012-06-29 | 2012-10-17 | 广东东研网络科技有限公司 | Method for carrying out topology association on optical network unit (ONU) and Ethernet over coax (EOC) |
| CN102833231A (en) * | 2012-08-01 | 2012-12-19 | 华数传媒网络有限公司 | Method for dynamic allocation in EoC mixed cascade mode |
| CN103117870A (en) * | 2012-12-31 | 2013-05-22 | 广东东研网络科技股份有限公司 | Coaxial-cable Ethernet optical network unit (ONU)-Ethernet over coax (EOC)-community antenna television (CATV) topology association method |
| CN104052816A (en) * | 2014-06-26 | 2014-09-17 | 瑞斯康达科技发展股份有限公司 | Method and device for positioning user terminal through network device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106789357A (en) | 2017-05-31 |
| CN111756570A (en) | 2020-10-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11115426B1 (en) | Distributed packet capture for network anomaly detection | |
| WO2021077811A1 (en) | Distributed denial of service (ddos) attack protection method, apparatus and system | |
| KR101372988B1 (en) | Method, apparatus and system of duplicate address detection proxy | |
| CN107465556B (en) | Method, device and system for switching main server and standby server | |
| US20120297087A1 (en) | Method And Apparatus For Message Distribution In A Device Management System | |
| CN107204873B (en) | Method for switching target domain name resolution server and related equipment | |
| CN107360154B (en) | Intranet secure access method and system | |
| WO2015088324A2 (en) | System and method for managing a faulty node in a distributed computing system | |
| KR101710385B1 (en) | Method, apparatus and computer program for managing arp packet | |
| KR20100044966A (en) | Method, apparatus and system for manageing private network remotely using session initiation protocol | |
| CN110875857A (en) | Method, device and system for reporting disconnected network state | |
| CN106487598B (en) | The more examples of isomery redundancy Snmp agreements realize system and its implementation | |
| CN106789357B (en) | Method and system for positioning fault terminal | |
| CN110290163B (en) | Data processing method and device | |
| JP2015035724A (en) | Network control device | |
| CN108366087B (en) | ISCSI service realization method and device based on distributed file system | |
| US20230370501A1 (en) | Methods, Communication Devices and System Relating to Performing Lawful Interception | |
| US10931529B2 (en) | Terminal device management method, server, and terminal device for managing terminal devices in local area network | |
| US20150229520A1 (en) | Network monitoring system, communication device, network management method | |
| CN111010425A (en) | Server connection method, load balancing equipment and electronic equipment | |
| US11432172B2 (en) | Channel establishment method and base station | |
| KR102544290B1 (en) | Optical communication device, control method, and control program | |
| CN112104712B (en) | Stacking system member equipment and remote management method thereof | |
| CN112104888B (en) | Method and system for grouping live broadcast users | |
| WO2016176910A1 (en) | Tr-069 message processing method and apparatus |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
| PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: A Method and System of Fault Terminal Location Effective date of registration: 20221010 Granted publication date: 20200602 Pledgee: Fuzhou Gulou sub branch of Fujian Straits Bank Co.,Ltd. Pledgor: JINQIANMAO TECHNOLOGY Co.,Ltd. Registration number: Y2022350000127 |
|
| PC01 | Cancellation of the registration of the contract for pledge of patent right | ||
| PC01 | Cancellation of the registration of the contract for pledge of patent right |
Granted publication date: 20200602 Pledgee: Fuzhou Gulou sub branch of Fujian Straits Bank Co.,Ltd. Pledgor: JINQIANMAO TECHNOLOGY Co.,Ltd. Registration number: Y2022350000127 |
|
| PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
| PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: A method and system for locating faulty terminals Granted publication date: 20200602 Pledgee: Fujian Strait Bank Co.,Ltd. Fuzhou Software Park Branch Pledgor: JINQIANMAO TECHNOLOGY Co.,Ltd. Registration number: Y2024350000011 |