CN107666426A - A kind of IPv6 access systems of Android platform - Google Patents

A kind of IPv6 access systems of Android platform Download PDF

Info

Publication number
CN107666426A
CN107666426A CN201610604856.9A CN201610604856A CN107666426A CN 107666426 A CN107666426 A CN 107666426A CN 201610604856 A CN201610604856 A CN 201610604856A CN 107666426 A CN107666426 A CN 107666426A
Authority
CN
China
Prior art keywords
ipv6
android
access
openvpn
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610604856.9A
Other languages
Chinese (zh)
Inventor
余漫游
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hunan Moving Power Network Technology Co Ltd
Original Assignee
Hunan Moving Power Network Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hunan Moving Power Network Technology Co Ltd filed Critical Hunan Moving Power Network Technology Co Ltd
Priority to CN201610604856.9A priority Critical patent/CN107666426A/en
Publication of CN107666426A publication Critical patent/CN107666426A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • H04L41/0806Configuration setting for initial configuration or provisioning, e.g. plug-and-play

Abstract

The present invention has designed and Implemented a kind of IPv6 access systems towards Android platform, the system uses tunneling technique, the ipv6 traffic of mobile terminal is encapsulated into IPv4 packets, and pass through tunnel transmission to IPv6 access servers, IPv6 networks are forwarded to after being decapsulated by IPv6 access servers, and then realize the IPv6 access capabilities of mobile terminal;The system carries out access authentication using third party's the Internet account, possesses certain applicability and simplification;Found by disposing test, the system can easily and effectively solve the problems, such as that mobile interchange network users access IPv6.

Description

A kind of IPv6 access systems of Android platform
Technical field
The present invention is a kind of Android platform technology, while is also IPv6 network technique fields.
Background technology
Nowadays, colleges and universities, operator and part commercial company all over the world has had begun to IPv6 commercialization process; The Internet enterprises such as such as Google, YouTube, Baidu, Alibaba, which have been provided for IPv6 services, allows user to access; In addition, large quantities of IPv6 websites such as sextuple space, morning twilight BT start to move towards user's life, paid close attention to by increasing user With pursue.
The content of the invention
System principle:OpenVPN is the tunnel system based on SSL of an open source code, possess good security and Splendid professional platform independence, it is an ideal scheme for realizing tunneling technique;By being ground to OpenVPN and android system Study carefully, design and develop under mobile network environment, towards the IPv6 access systems of Android device;Its central principle be by The IPv4 tunnels that OpenVPN is created between Android terminal and IPv6 access servers connect, by caused by Android terminal All ipv6 traffics are directed to IPv6 networks by this tunnel;Meanwhile the return for Android terminal being flowed in IPv6 networks Data are transmitted back to Android terminal from this tunnel;OpenVPN core is Microsoft Loopback Adapter, and tunnel is created in Android client When road connects, OpenV PN can create entitled tun Microsoft Loopback Adapter in Android device, and the acquiescence IPv6 as system goes out Mouthful, and the Microsoft Loopback Adapter is read and write by Windows Sockets interface, the packet for flowing through the network interface card is packaged or decapsulated behaviour Make.
A kind of IPv6 access systems design of Android platform:
1 system design:By the research and learning to existed system, by five functional modules of access system point, respectively IPv6 AM access module, authentication module, api interface module, database, Android ends program 6in4, in addition to client-side program, Ge Gemo Block can be deployed on separate unit or multiple servers;
Wherein, the connection of IPv4 tunnels is established between IPv6 AM access modules and Android terminal, IPv6 is provided for it by the tunnel Access function;When establishing tunnel connection, IPv6 AM access modules can carry out authentication to client, and verification process then relies on Certificate server is the checking interface of its offer;
Authentication module is built based on FreeRadius, provides authentication interface to IPv6 AM access modules, api interface module is carried For user's registration, query interface;
Api interface module provides RESTfuI API for it and supported, including account is noted towards Android client program 6in4 Volume, access server information inquiry, daily record report, the functions such as IPv6 resources issue;
The data such as the account information of user, tunnel link information, the log information that client reports, convenient pipe are stored in database Reason person understands the operation conditions of whole system;
2 Client Designs:Client-side program is adapted to Android 60 and above version, because Android is in 60 versions Provide VPN related programmatic interface so that third-party application be able to can also be realized in the case where not obtaining Root authority Function related VPN;In addition, client-side program introduces QQ and Sina weibo account, it is user-friendly existing account and enters to exercise With.
System is realized and deployment:
The installation configuration of 1 certificate server:Certificate server is built based on FreeRadius, can pass through bag management software yum Radius installation is carried out, needs to confirm that MySQL database has been installed before installation;FreeRadius installation order is as follows:
$ yum install -y freeradius freeradius-mysql freeradius-utils
Install rear, it is necessary to change Radius configuration, it is carried out the storage of user data using MySQL database;Repair Change configuration file/etc/raddb/radius.conf, find modules configuration blocks, delete $ INCLUDE sql.conf and $ " # " number before INCLUDE sql/mysql/counter.coof, modification/etc/raddb/sql.conf, it is configured to MySQL numbers According to the address in storehouse and account and table name;
2.OpenVPN is installed and Radius plug-in card configurations:
OpenVPN can be installed using yum orders;
$yum install openvpn –y
In OpenVPN configuration step, important is the generation of CA certificate, can be entered by easy-rsa instruments Order is performed after under easy-rsa catalogues:
$/clean-all # remove original unwanted certificate file
$/buid-ca # Generate Certificate
OpenVPN programs are specified to be run in the form of server in configuration file, the port numbers used are 1194, and IPv4 With IPv6 addresses;Push parameters are used for client push routing rule and DNS information;Plugin parameters are used to load Radiusplugin.so plug-in units, log and status parameters specify journal file path;Keepalive parameters specify the guarantor in tunnel Live time, complete to restart OpenVPN programs with postponing above;
3API interface servers are built:Api interface server is built using Yii frameworks, uses JSON formatted datas and visitor Family end carries out data communication, and carries out rsa encryption to sensitive datas such as user name, passwords;
4Android clients are realized:Android client is based on open source projects ics-openvpn and carries out depth customization with opening Hair, the account for adding QQ and Sina weibo log in, network environment diagnostic function, IPv6 resource recommendations, and consumers' opinions feedback should With the function such as sharing, built-in tunnel link profile, the modification function to configuration file is deleted;
In addition it is also necessary to the configuration file of OpenVPN clients is provided in client, it is as follows:
Client
dev tun
remote<Service end IP address><Port numbers>
proto udp
topology subnet
resole-retry infinite
nobind
persist-key
persist-tun
auth-user-pass
<ca>
# fills specific certificate content herein
</ca>
ns-cert-type server
cipher AES-128-CBC
comp-lzo
route-method exe
route-delay 2
verb 3
tun-ipv6
Above configuration file specifies the information such as the IP address of VPN service terminal, port, authentication mode, connection protocol;Android End program will establish tunnel with service end according to this configuration and be connected.

Claims (3)

  1. A kind of 1. IPv6 access systems of Android platform, it is characterised in that:The IPv6 of user is flowed by way of tunnel Amount is encapsulated into IPv4 packets, realizes the mentality of designing of IPv6 over IPv4 networks, and using the form of cell phone application, be User shields the tunnel configuration process and parameter management of complexity;Meanwhile commonly used using domestic users such as QQ, Sina weibos mutual Account of networking carries out access authentication, and be more reduction of user uses threshold.
  2. 2. according to the method for claim 1, it is characterised in that system principle is by OpenVPN and Android systems The research of system, design and exploitation are under mobile network environment, towards the IPv6 access systems of Android device.
  3. 3. according to the method for claim 1, it is characterised in that by being designed to system and client, while to recognize Demonstrate,prove the installation configuration of server, api interface server is built, OpenVPN is installed and Radius plug-in card configurations and Android visitors Realize at family end;The realization and deployment of completion system.
CN201610604856.9A 2016-07-28 2016-07-28 A kind of IPv6 access systems of Android platform Pending CN107666426A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610604856.9A CN107666426A (en) 2016-07-28 2016-07-28 A kind of IPv6 access systems of Android platform

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610604856.9A CN107666426A (en) 2016-07-28 2016-07-28 A kind of IPv6 access systems of Android platform

Publications (1)

Publication Number Publication Date
CN107666426A true CN107666426A (en) 2018-02-06

Family

ID=61115151

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610604856.9A Pending CN107666426A (en) 2016-07-28 2016-07-28 A kind of IPv6 access systems of Android platform

Country Status (1)

Country Link
CN (1) CN107666426A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108462701A (en) * 2018-02-12 2018-08-28 武汉卡比特信息有限公司 A kind of shared cell phone network connecting internet system and method for exempting from hot spot
CN109167714A (en) * 2018-08-28 2019-01-08 赛尔网络有限公司 Method, system, equipment and the medium of terminal access IPV6 network in IPV4 network
CN114285697A (en) * 2021-12-23 2022-04-05 上海甄云信息科技有限公司 Multi-network single-inlet VPN system based on WireGuard and OpenVPN

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108462701A (en) * 2018-02-12 2018-08-28 武汉卡比特信息有限公司 A kind of shared cell phone network connecting internet system and method for exempting from hot spot
CN109167714A (en) * 2018-08-28 2019-01-08 赛尔网络有限公司 Method, system, equipment and the medium of terminal access IPV6 network in IPV4 network
CN109167714B (en) * 2018-08-28 2021-08-03 赛尔网络有限公司 Method, system, device and medium for terminal in IPV4 network to access IPV6 network
CN114285697A (en) * 2021-12-23 2022-04-05 上海甄云信息科技有限公司 Multi-network single-inlet VPN system based on WireGuard and OpenVPN

Similar Documents

Publication Publication Date Title
US9794215B2 (en) Private tunnel network
US8910300B2 (en) Secure tunneling platform system and method
Matherly Complete guide to shodan
US11120418B2 (en) Systems and methods for managing a payment terminal via a web browser
CN106209726B (en) Mobile application single sign-on method and device
US20190052658A1 (en) Dns metadata-based signaling for network policy control
Crist et al. Mastering OpenVPN
CN104243210A (en) Method and system for remotely having access to administrative web pages of routers
KR102299865B1 (en) Method and system related to authentication of users for accessing data networks
US10637890B2 (en) Methods and systems for establishment of VPN security policy by SDN application
CN104468315A (en) Method for accelerating VPN based on intelligent gateway
AU2014200353A1 (en) Inline network switch having serial ports for out-of-band serial console access
CN107666426A (en) A kind of IPv6 access systems of Android platform
Sălăgean et al. Iot applications based on mqtt protocol
CN105306417B (en) A kind of network data distributing method and network system based on super router
CN105323138A (en) Private cloud routing server, and smart device client architecture
CN111343070A (en) Communication control method for sdwan network
CN107078941B (en) Method for transmitting IP data packet to IP address, processing device and mobile equipment
Muntaka et al. An Integrated System Using Open source Nethserver OS; A Case Study of Kessben University College Local Area Network
Pietikäinen et al. Socio-technical security assessment of a voip system
Verma Searching shodan for fun and profit
CN103929508A (en) System and method for achieving binding of services and domain name resolution servers
CN108260225A (en) data correlation method and device
Wells Network Management for Community Networks
Kristoff Building an Internet Security Feeds Service

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20180206

WD01 Invention patent application deemed withdrawn after publication