CN107517138A - Equipment detection method and device - Google Patents
Equipment detection method and device Download PDFInfo
- Publication number
- CN107517138A CN107517138A CN201610430503.1A CN201610430503A CN107517138A CN 107517138 A CN107517138 A CN 107517138A CN 201610430503 A CN201610430503 A CN 201610430503A CN 107517138 A CN107517138 A CN 107517138A
- Authority
- CN
- China
- Prior art keywords
- access
- arp
- access equipment
- online
- detection
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000001514 detection method Methods 0.000 title claims abstract description 116
- 230000004044 response Effects 0.000 claims abstract description 40
- 238000000034 method Methods 0.000 claims abstract description 15
- 238000010586 diagram Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 2
- 230000007246 mechanism Effects 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000009471 action Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/08—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
- H04L43/0805—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/08—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
- H04L43/0805—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability
- H04L43/0811—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability by checking connectivity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/10—Mapping addresses of different types
- H04L61/103—Mapping addresses of different types across network layers, e.g. resolution of network layer into physical layer addresses or address resolution protocol [ARP]
Landscapes
- Engineering & Computer Science (AREA)
- Environmental & Geological Engineering (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a kind of equipment detection method and device, methods described includes:When to the access authentication of access device by after, send ARP detection messages to the access device;The presence of above-mentioned access device is determined according to the response message of the access device response ARP detection messages.Pass through the present invention, solve the problems, such as in the prior art can not it is general and in time detect access device presence, and then presence that is general and timely learning access device, made the management such as the charging of access device more flexibly accurate according to the presence detected.
Description
Technical Field
The invention relates to the field of Ethernet communication, in particular to a device detection method and a device.
Background
The IEEE (Institute of Electrical and Electronics Engineers) 802.1x protocol optimizes the authentication method and the authentication architecture, so that the protocol is widely applied to ethernet access. Some access devices, such as dumb terminals like IP phone (IP phone) and the like, cannot control such access devices through standard Protocol message interaction because 802.1x clients cannot be installed. The MAC (Media Access Control) authentication solves the Access authentication management of such Access devices, but how to detect the online status of the Access device in time still remains a problem. Most of the existing online detection mechanisms need to be realized by means of special protocols, and special deployment needs to be carried out in a dumb terminal, so that the existing online detection mechanisms are not universal.
Aiming at the problem that the online state of the access equipment cannot be detected universally and timely in the related technology, an effective solution is not provided yet.
Disclosure of Invention
The invention provides a device detection method and a device, which at least solve the problem that the online state of access equipment cannot be universally and timely detected in the related technology.
According to an aspect of the present invention, there is provided a device detection method including:
when the access authentication of the access equipment passes, sending an Address Resolution Protocol (ARP) detection message to the access equipment;
and determining the online state of the access equipment according to the response information of the access equipment responding to the ARP detection message.
Further, performing access authentication on the access device comprises:
and performing access authentication on the access equipment according to the pre-stored user name and password of the access equipment.
Further, before sending the ARP detection packet to the access device, the method further includes:
and acquiring the IP address of the access equipment.
Further, acquiring the IP address of the access device includes:
acquiring an ARP request message sent by the access equipment;
and resolving the IP address of the access equipment according to the ARP request message.
Further, determining the online status of the access device according to the response information of the access device responding to the ARP detection packet includes:
setting an online detection flag bit of the access device according to response information of the access device responding to the ARP detection message, wherein the online detection flag bit is set to be valid when the response information is acquired, and the online detection flag bit is set to be invalid when the response information is not acquired;
and judging the online state of the access equipment according to the online detection zone bit and the online detection zone bit detected by the last ARP.
Further, determining the online status of the access device according to the online detection flag bit and the online detection flag bit detected by the last ARP includes:
and when the online detection flag bit and the online detection flag bit detected by the last ARP are invalid, judging that the online state of the access equipment is offline.
Further, the ARP detection packet includes:
a source network protocol (IP) field and a source Media Access Control (MAC) field, wherein the source IP field and the source MAC field are configured through a specified command line of a Network Access Server (NAS); or,
the ARP detection packet includes: a source network protocol (IP) field, a source Media Access Control (MAC) field and a destination IP address field, wherein the source MAC field is configured to be an MAC address of a Network Access Server (NAS), and the source IP field is configured to be a three-layer interface address or a broadcast IP address of a Virtual Local Area Network (VLAN) where the access equipment is located; the destination IP address field is configured as an IP address of the access device.
According to another aspect of the present invention, there is provided a device detection apparatus including:
a sending module, configured to send an ARP detection packet to an access device after access authentication of the access device is passed;
and the determining module is used for determining the online state of the access equipment according to the response information of the access equipment responding to the ARP detection message.
Further, the apparatus further comprises:
and the acquisition module is used for acquiring the IP address of the access equipment.
Further, the determining module includes:
a setting unit, configured to set an online detection flag of the access device according to response information of the access device responding to the ARP detection packet, where the online detection flag is set to be valid when the response information is acquired, and the online detection flag is set to be invalid when the response information is not acquired;
and the judging unit is used for judging the online state of the access equipment according to the online detection zone bit and the online detection zone bit detected by the last ARP.
According to the invention, after the access authentication of the access equipment passes, an ARP detection message is sent to the access equipment; and determining the online state of the access equipment according to the response information of the access equipment responding to the ARP detection message. The problem that the online state of the access equipment cannot be universally and timely detected in the prior art is solved, the online state of the access equipment can be universally and timely known, and management such as charging of the access equipment is more flexible and accurate according to the detected online state.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the invention without limiting the invention. In the drawings:
FIG. 1 is a flow chart of a device detection method according to an embodiment of the present invention;
FIG. 2 is a flow chart of a device detection method according to an example of the invention;
FIG. 3 is a block diagram of a device detection apparatus according to an embodiment of the present invention;
fig. 4 is another block diagram of the device detection apparatus according to the embodiment of the present invention.
Detailed Description
The invention will be described in detail hereinafter with reference to the accompanying drawings in conjunction with embodiments. It should be noted that the embodiments and features of the embodiments in the present application may be combined with each other without conflict.
It should be noted that the terms "first," "second," and the like in the description and claims of the present invention and in the drawings described above are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order.
In this embodiment, a device detection method is provided, and fig. 1 is a flowchart of a device detection method according to an embodiment of the present invention, as shown in fig. 1, the flowchart includes the following steps:
step S102, after the access authentication of the access equipment passes, an address resolution protocol ARP detection message is sent to the access equipment;
step S104, determining the online state of the access device according to the response information of the access device responding to the ARP detection message.
Through the steps, after the access authentication of the access equipment passes, an Address Resolution Protocol (ARP) detection message is sent to the access equipment; the online state of the access equipment is determined according to the response information of the access equipment responding to the ARP detection message, the problem that the online state of the access equipment cannot be universally and timely detected due to the fact that extra deployment needs to be conducted in the access equipment in the prior art is solved, the online state of the access equipment can be universally and timely known, and management such as charging of the access equipment is more flexible and accurate according to the detected online state.
In an optional example, the performing access authentication on the access device in step S102 may include: and performing access authentication on the access equipment according to the pre-stored user name and password of the access equipment. When the access authentication of the access device passes, before the ARP detection message is sent to the access device, the method further includes: and acquiring the IP address of the access equipment. The acquiring the IP address of the access device specifically includes: acquiring an ARP request message sent by the access equipment; and resolving the IP address of the access equipment according to the ARP request message.
The access device initiates an authentication request to the Radius server through a Network Access Server (NAS). In the above technical solution, after the authentication request of the access device passes, the ARP request message sent by the access device needs to be acquired. After the access device passes the authentication, the access device obtains the information of the service gateway through address allocation of a Dynamic Host Configuration Protocol (DHCP), and when the access device analyzes the gateway information, the access device inevitably sends an ARP request message to the gateway. After the ARP request message is acquired by the NAS device, the IP address information of the access device is analyzed. When waiting for the ARP request message, an ARP overtime timer is set, if the timer is overtime, the access equipment is judged to be in an offline state when the ARP request message actively sent by the access equipment is not waited for.
In a preferred example, step S104 can be implemented by the following scheme:
step A: setting an online detection flag bit of the access device according to response information of the access device responding to the ARP detection message, wherein the online detection flag bit is set to be valid when the response information is acquired, and the online detection flag bit is set to be invalid when the response information is not acquired;
and B: and judging the online state of the access equipment according to the online detection zone bit and the online detection zone bit detected by the last ARP.
Preferably, step B can be specifically realized by the following scheme: and when the online detection flag bit and the online detection flag bit detected by the last ARP are invalid, judging that the online state of the access equipment is offline. The ARP detection message may include: a source network protocol (IP) field and a source Media Access Control (MAC) field, wherein the source IP field and the source MAC field are configured through a specified command line of a Network Access Server (NAS); or, the ARP detection packet includes: a source network protocol (IP) field, a source Media Access Control (MAC) field and a destination IP address field, wherein the source MAC field is configured to be an MAC address of a Network Access Server (NAS), and the source IP field is configured to be a three-layer interface address or a broadcast IP address of a Virtual Local Area Network (VLAN) where the access equipment is located; the destination IP address field is configured as an IP address of the access device.
Specifically, for padding fields in an ARP detection message sent by the NAS device to the access device, including a source IP, a source MAC, and the like, the fields may be configured by a command line of the NAS in a designated manner, and if not, the following configuration may be performed: the source MAC adopts the MAC address of the NAS, the source IP preferably selects the three-layer interface address of the VLAN accessed by the user on the NAS, and if the three-layer interface is not configured, the broadcast IP is adopted. And the destination IP address field in the ARP packet adopts the acquired IP address of the access equipment. The detection can adopt timing on-line detection, and when the timing interval arrives, an ARP detection message is sent to the access equipment. The NAS sets an online detection zone bit for the access equipment passing the access authentication, and when an ARP detection message is sent to the access equipment every time, the online detection zone bit is updated according to the response information of the access equipment. After receiving the ARP response information, the flag bit is valid, and the online detection timer is reset. If no response information is received, before the ARP detection packet is sent again, the validity of the online detection flag bit of the access equipment is checked, if the flag bit is invalid, the online state of the access equipment is judged to be invalid, the NAS manages the access equipment according to a specific application scene, for example, when the online state of the access equipment is judged to be invalid when accounting management of the access equipment is involved, the MAC address item on the access equipment is deleted, and a server is notified to clean the access equipment.
Based on the above technical solution, a specific example is provided, and fig. 2 is a flowchart of an apparatus detection method according to an example of the present invention. As shown in fig. 2, the above process specifically includes the following steps:
step S202: the access equipment actively initiates an access authentication request. A dummy terminal which cannot install an 802.1x client requests authentication by the MAC authentication method of NAS. After the access equipment passes the authentication, the NAS adds the MAC address of the access equipment into the MAC address management table of the NAS.
Step S204: starting an ARP request message acquisition timeout timer, and waiting for an ARP request message of the access equipment. After the access device passes the authentication and acquires the own IP address, the access device sends an ARP request message for requesting next hop information. The NAS captures the ARP request message so as to analyze the IP address information of the access equipment. And after the ARP request message timeout timer is overtime and the ARP response information of the user is still not received, the access equipment is considered to be offline.
Step S206: after the IP address of the access equipment is acquired, the NAS enables an online detection timer and sets an online detection zone bit. When the timing interval is up, the NAS sends out an ARP detection message, and updates the on-line detection zone bit according to the response information.
Step S208: and receiving the ARP response information, setting the on-line detection flag bit of the access equipment to be effective, and simultaneously repeating the step S206. If the ARP response message is not received but the on-line detection flag bit is valid, repeating the step S206 when the timing interval is reached; if the current and last online detection flag bits are invalid, the NAS executes operations of offline identification, offline or redirection and the like on the user, and informs the server that the user is offline.
Through the above description of the embodiments, those skilled in the art can clearly understand that the method according to the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but the former is a better implementation mode in many cases. Based on such understanding, the technical solutions of the present invention may be embodied in the form of a software product, which is stored in a storage medium (e.g., ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal device (e.g., a mobile phone, a computer, a server, or a network device) to execute the method according to the embodiments of the present invention.
In this embodiment, an apparatus detecting device is further provided, as shown in fig. 3, where the device is used to implement the foregoing embodiment and the preferred embodiment, and the description already made is omitted for brevity. As used below, the term "module" may be a combination of software and/or hardware that implements a predetermined function. Although the means described in the embodiments below are preferably implemented in software, an implementation in hardware, or a combination of software and hardware is also possible and contemplated.
Fig. 3 is a block diagram of a device detection apparatus according to an embodiment of the present invention, and as shown in fig. 3, the apparatus includes the following modules:
a sending module 32, configured to send an ARP detection packet to the access device after the access authentication of the access device passes;
a determining module 34, connected to the sending module 32, configured to determine an online status of the access device according to response information of the access device responding to the ARP detection packet.
Through the comprehensive action of the modules, after the access authentication of the access equipment passes, the sending module 32 sends an address resolution protocol ARP detection message to the access equipment; the determining module 34 determines the online status of the access device according to the response information of the ARP detection packet of the access device response sending module 32, which solves the problem that the online status of the access device cannot be universally and timely detected because additional deployment is required in the access device in the prior art, and further achieves universal and timely learning of the online status of the access device, and enables management such as charging of the access device to be more flexible and accurate according to the detected online status.
Fig. 4 is another block diagram of the device detection apparatus according to the embodiment of the present invention, and as shown in fig. 4, the apparatus further includes, in addition to the sending module 32 and the determining module 34: an obtaining module 33, configured to obtain an IP address of the access device. The determining module 34 includes: a setting unit 342, configured to set an online detection flag of the access device according to response information of the access device responding to the ARP detection packet, where the online detection flag is set to be valid when the response information is acquired, and the online detection flag is set to be invalid when the response information is not acquired; and a determining unit 344, connected to the setting unit 342, for determining the online status of the access device according to the online detection flag and the online detection flag of the last ARP detection.
It should be noted that, the above modules may be implemented by software or hardware, and for the latter, the following may be implemented, but not limited to: the modules are all positioned in the same processor; alternatively, the modules are respectively located in a plurality of processors.
In summary, the embodiments of the present invention solve the problem that the online status of the access device cannot be universally and timely detected because additional deployment needs to be performed in the access device in the prior art, so as to universally and timely acquire the online status of the access device, and enable management such as charging of the access device to be more flexible and accurate according to the detected online status.
It will be apparent to those skilled in the art that the modules or steps of the present invention described above may be implemented by a general purpose computing device, they may be centralized on a single computing device or distributed across a network of multiple computing devices, and alternatively, they may be implemented by program code executable by a computing device, such that they may be stored in a storage device and executed by a computing device, and in some cases, the steps shown or described may be performed in an order different than that described herein, or they may be separately fabricated into individual integrated circuit modules, or multiple ones of them may be fabricated into a single integrated circuit module. Thus, the present invention is not limited to any specific combination of hardware and software.
The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.
Claims (10)
1. A device detection method, comprising:
when the access authentication of the access equipment passes, sending an Address Resolution Protocol (ARP) detection message to the access equipment;
and determining the online state of the access equipment according to the response information of the access equipment responding to the ARP detection message.
2. The method of claim 1, wherein performing access authentication for an access device comprises:
and performing access authentication on the access equipment according to the pre-stored user name and password of the access equipment.
3. The method of claim 1, wherein prior to sending the ARP detection message to the access device, the method further comprises:
and acquiring the IP address of the access equipment.
4. The method of claim 3, wherein obtaining the IP address of the access device comprises:
acquiring an ARP request message sent by the access equipment;
and resolving the IP address of the access equipment according to the ARP request message.
5. The method of claim 1, wherein determining the presence status of the access device based on response information of the access device in response to the ARP detection packet comprises:
setting an online detection flag bit of the access equipment according to response information of the access equipment responding to the ARP detection message, wherein the online detection flag bit is set to be valid when the response information is acquired, and the online detection flag bit is set to be invalid when the response information is not acquired;
and judging the online state of the access equipment according to the online detection zone bit and the online detection zone bit detected by the last ARP.
6. The method of claim 5, wherein determining the online status of the access device according to the online detection flag and the online detection flag of the last ARP detection comprises:
and when the online detection zone bit and the online detection zone bit detected by the last ARP are invalid, judging that the online state of the access equipment is offline.
7. The method according to any one of claims 1 to 6, wherein the ARP detection message comprises:
a source network protocol (IP) field and a source Media Access Control (MAC) field, wherein the source IP field and the source MAC field are configured through a specified command line of a Network Access Server (NAS); or,
the ARP detection message comprises: the network access control system comprises a source network protocol (IP) field, a source Media Access Control (MAC) field and a destination IP address field, wherein the source MAC field is configured to be an MAC address of a Network Access Server (NAS), and the source IP field is configured to be a three-layer interface address or a broadcast IP address of a Virtual Local Area Network (VLAN) where the access equipment is located; the destination IP address field is configured as an IP address of the access device.
8. An apparatus detection device, comprising:
the sending module is used for sending an Address Resolution Protocol (ARP) detection message to the access equipment after the access authentication of the access equipment passes;
and the determining module is used for determining the online state of the access equipment according to the response information of the access equipment responding to the ARP detection message.
9. The apparatus of claim 8, further comprising:
and the acquisition module is used for acquiring the IP address of the access equipment.
10. The apparatus of claim 8, wherein the determining module comprises:
a setting unit, configured to set an online detection flag of the access device according to response information of the access device responding to the ARP detection packet, where the online detection flag is set to be valid when the response information is acquired, and the online detection flag is set to be invalid when the response information is not acquired;
and the judging unit is used for judging the online state of the access equipment according to the online detection zone bit and the online detection zone bit detected by the last ARP.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610430503.1A CN107517138A (en) | 2016-06-16 | 2016-06-16 | Equipment detection method and device |
| PCT/CN2017/087342 WO2017215492A1 (en) | 2016-06-16 | 2017-06-06 | Device detection method and apparatus |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610430503.1A CN107517138A (en) | 2016-06-16 | 2016-06-16 | Equipment detection method and device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107517138A true CN107517138A (en) | 2017-12-26 |
Family
ID=60663889
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610430503.1A Pending CN107517138A (en) | 2016-06-16 | 2016-06-16 | Equipment detection method and device |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN107517138A (en) |
| WO (1) | WO2017215492A1 (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114124473A (en) * | 2021-11-02 | 2022-03-01 | 北京天融信网络安全技术有限公司 | Network access authentication system and authentication method based on port mirror image |
| WO2024051193A1 (en) * | 2022-09-05 | 2024-03-14 | 中兴通讯股份有限公司 | Online detection method for access user, and electronic device and computer-readable medium |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111770194B (en) * | 2020-07-13 | 2024-04-26 | 太仓市同维电子有限公司 | Method for actively triggering down-hanging equipment to send arp |
| CN112153067B (en) * | 2020-09-28 | 2022-08-12 | 周口师范学院 | Edge computing safety system based on block chain |
| CN113709127A (en) * | 2021-08-18 | 2021-11-26 | 深圳市联软科技股份有限公司 | Printer counterfeit detection blocking system and method |
| CN113923397B (en) * | 2021-09-28 | 2023-12-19 | 北京字跳网络技术有限公司 | Conference room equipment state detection method and device, electronic equipment and storage medium |
| CN113938460B (en) * | 2021-11-25 | 2024-08-27 | 湖北天融信网络安全技术有限公司 | Network detection method and device, electronic equipment and storage medium |
| CN115086208A (en) * | 2022-06-14 | 2022-09-20 | 深信服科技股份有限公司 | Network card detection method and device, electronic equipment and storage medium |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1491013A (en) * | 2002-10-14 | 2004-04-21 | 深圳市中兴通讯股份有限公司 | Broadband cut-in user managing method |
| CN1756189A (en) * | 2004-09-30 | 2006-04-05 | 北京航空航天大学 | IP network topology discovering method based on SNMP |
| CN1859407A (en) * | 2006-02-17 | 2006-11-08 | 华为技术有限公司 | Method for securing special line user access network |
| CN101483676A (en) * | 2006-02-17 | 2009-07-15 | 华为技术有限公司 | Method for securing special line user access network |
| CN101611378A (en) * | 2006-12-21 | 2009-12-23 | 韦里佐内服务公司 | Be used to provide passive automatic configuration method, computer product and device |
| CN102938715A (en) * | 2012-11-30 | 2013-02-20 | 杭州华三通信技术有限公司 | Offline detection method and offline detection device based on MAC (Media Access Control) address authentication |
| US8856869B1 (en) * | 2009-06-22 | 2014-10-07 | NexWavSec Software Inc. | Enforcement of same origin policy for sensitive data |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100454825C (en) * | 2003-07-19 | 2009-01-21 | 华为技术有限公司 | Static user access network control method based on MAC address |
| CN101795300B (en) * | 2009-11-11 | 2012-07-25 | 福建星网锐捷网络有限公司 | IP (Internet Protocol) address recovery method and system, as well as DHCP (Dynamic Host Configuration Protocol) repeater and DHCP server |
| TW201132163A (en) * | 2010-03-12 | 2011-09-16 | Gemtek Technology Co Ltd | Network interface selection method and network device thereof |
| CN103401729A (en) * | 2013-07-30 | 2013-11-20 | 上海斐讯数据通信技术有限公司 | Method for detecting abnormal offline of authenticate user |
| CN103560961A (en) * | 2013-11-04 | 2014-02-05 | 神州数码网络(北京)有限公司 | Method for dynamically updating host routing table entries of Ethernet switch and switch |
-
2016
- 2016-06-16 CN CN201610430503.1A patent/CN107517138A/en active Pending
-
2017
- 2017-06-06 WO PCT/CN2017/087342 patent/WO2017215492A1/en active Application Filing
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1491013A (en) * | 2002-10-14 | 2004-04-21 | 深圳市中兴通讯股份有限公司 | Broadband cut-in user managing method |
| CN1756189A (en) * | 2004-09-30 | 2006-04-05 | 北京航空航天大学 | IP network topology discovering method based on SNMP |
| CN1859407A (en) * | 2006-02-17 | 2006-11-08 | 华为技术有限公司 | Method for securing special line user access network |
| CN101483676A (en) * | 2006-02-17 | 2009-07-15 | 华为技术有限公司 | Method for securing special line user access network |
| CN101611378A (en) * | 2006-12-21 | 2009-12-23 | 韦里佐内服务公司 | Be used to provide passive automatic configuration method, computer product and device |
| US8856869B1 (en) * | 2009-06-22 | 2014-10-07 | NexWavSec Software Inc. | Enforcement of same origin policy for sensitive data |
| CN102938715A (en) * | 2012-11-30 | 2013-02-20 | 杭州华三通信技术有限公司 | Offline detection method and offline detection device based on MAC (Media Access Control) address authentication |
Non-Patent Citations (1)
| Title |
|---|
| 王淅娜等: "一种改进的基于SNMP的网络拓扑发现算法", 《软件》 * |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114124473A (en) * | 2021-11-02 | 2022-03-01 | 北京天融信网络安全技术有限公司 | Network access authentication system and authentication method based on port mirror image |
| CN114124473B (en) * | 2021-11-02 | 2024-02-02 | 北京天融信网络安全技术有限公司 | Port mirror image-based network access authentication system and authentication method |
| WO2024051193A1 (en) * | 2022-09-05 | 2024-03-14 | 中兴通讯股份有限公司 | Online detection method for access user, and electronic device and computer-readable medium |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2017215492A1 (en) | 2017-12-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107517138A (en) | Equipment detection method and device | |
| CN111711659B (en) | Method and device for remotely managing terminal, equipment and storage medium thereof | |
| CN107547565B (en) | Network access authentication method and device | |
| US10542433B2 (en) | Connection establishment method, device, and system | |
| CN109413649B (en) | Access authentication method and device | |
| EP2950499A1 (en) | 802.1x access session keepalive method, device, and system | |
| US20180123891A1 (en) | Method and apparatus for automatic networking of gateway device | |
| CN106686592B (en) | Network access method and system with authentication | |
| CN105873055B (en) | Wireless network access authentication method and device | |
| CN101895587A (en) | Method, device and system for preventing users from modifying IP addresses privately | |
| US7289471B2 (en) | Mobile router, position management server, mobile network management system, and mobile network management method | |
| CN103997479B (en) | A kind of asymmetric services IP Proxy Methods and equipment | |
| CN106304277A (en) | A kind of method realizing network insertion and terminal | |
| CN104270325A (en) | System and method of implementing limitation of public network access user number based on Linux for CPE (Customer Premise Equipment) | |
| CN112637373A (en) | Method and equipment for keeping dumb terminal online | |
| CN101179515A (en) | Method and device for inhibiting black hole routing | |
| US20160294465A1 (en) | Information collection system, relay terminal, control method for relay terminal to connect to center system, sensor terminal, and control method for sensor terminal to connect to center system | |
| WO2013189398A2 (en) | Application data push method, device, and system | |
| CN106713287A (en) | Method, apparatus and system for automatically registering wireless access point | |
| CN110943962B (en) | Authentication method, network equipment, authentication server and forwarding equipment | |
| CN111010425A (en) | Server connection method, load balancing equipment and electronic equipment | |
| CN107995125B (en) | Traffic scheduling method and device | |
| CN110072235B (en) | Networking method and device for intelligent equipment, electronic device and storage medium | |
| EP3562260A1 (en) | Automatically determining mesh network role of network device | |
| EP3407553B1 (en) | Pppoe message transmission method and pppoe server |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20171226 |
|
| RJ01 | Rejection of invention patent application after publication |