CN108418780A - Filter method and device, system, the dns server of IP address - Google Patents

Filter method and device, system, the dns server of IP address Download PDF

Info

Publication number
CN108418780A
CN108418780A CN201710073643.2A CN201710073643A CN108418780A CN 108418780 A CN108418780 A CN 108418780A CN 201710073643 A CN201710073643 A CN 201710073643A CN 108418780 A CN108418780 A CN 108418780A
Authority
CN
China
Prior art keywords
address
domain name
dns server
domain
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710073643.2A
Other languages
Chinese (zh)
Inventor
张美超
邓志坚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Alibaba Group Holding Ltd
Original Assignee
Alibaba Group Holding Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Alibaba Group Holding Ltd filed Critical Alibaba Group Holding Ltd
Priority to CN201710073643.2A priority Critical patent/CN108418780A/en
Publication of CN108418780A publication Critical patent/CN108418780A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0236Filtering by address, protocol, port number or service, e.g. IP-address or URL
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements or network protocols for addressing or naming
    • H04L61/15Directories; Name-to-address mapping
    • H04L61/1505Directories; Name-to-address mapping involving standard directories or standard directory access protocols
    • H04L61/1511Directories; Name-to-address mapping involving standard directories or standard directory access protocols using domain name system [DNS]

Abstract

This application discloses a kind of filter method of IP address and device, system, dns servers.Wherein, this method includes:The domain name request that first domain name system DNS server receiving terminal equipment is sent;First dns server judges in presetting database with the presence or absence of the IP address corresponding to the domain-name information in being asked with domain name;First dns server determines whether to intercept the corresponding IP address of domain name information according to judging result.

Description

Filter method and device, system, the dns server of IP address
Technical field
This application involves network safety fileds, filter method and device, system in particular to a kind of IP address, Dns server.
Background technology
Malicious websites, such as fishing swindle website, pornographic is often accessed in user during using mobile device Website, gambling site etc..
These malicious websites may be accessed in user in the following manner:It is attached to malicious websites in the short message content received Link (currently popular pseudo-base station swindle is usually that this is a kind of);It is subsidiary in the chat content received by instant messenger Malicious websites link;Subsidiary malicious websites link in the Mail Contents received.
It is directed to following three kinds of threats that user faces in the industry at present, terminal based on iOS system and is based on Android (android) terminal each provides different solutions, and still, the application being often accessed in said program is originally Body is intercepted, due to access application filtering domain name it is professional be not it is very strong, filtering scheme be not it is very perfect, therefore, Protection is not comprehensive, and rate of failing to report is higher.
For above-mentioned problem, currently no effective solution has been proposed.
Invention content
The embodiment of the present application provides a kind of filter method and device, system, dns server of IP address, at least to solve The higher technical problem of rate of failing to report existing for certainly current domain filter.
According to the one side of the embodiment of the present application, a kind of filtration system of IP address is provided, including:Terminal device, First domain name system (Domain Name System, referred to as DNS) server and the second dns server, wherein:The end End equipment is for sending domain name request, wherein domain name request includes domain name to be resolved;The first domain name system DNS clothes Business device judges whether the domain name to be resolved needs to intercept, and the domain name for being not required to intercept is asked for receiving domain name request It asks and is transmitted to the second dns server;Second dns server is used to search IP address corresponding with domain name information, and The IP address is fed back as target access IP address.
According to the another aspect of the embodiment of the present application, a kind of dns server is provided, including:Communication device and processing Device, wherein:The communication device, the domain name request sent for receiving terminal apparatus;And described in being determined in the processor Domain name request is transmitted to the second dns server by when need not intercept of the domain name to be resolved carried in domain name request, Wherein, domain name to be resolved is carried in domain name request, second dns server is for searching and domain name information Corresponding IP address, and the IP address is fed back as target access IP address;Processor, for judging the domain to be resolved Whether name needs to intercept, and will determine that result notice to the communication device.
According to another aspect of the embodiment of the present application, a kind of dns server is provided, including:Communication device and processing Device, wherein:The communication device, the domain name request sent for receiving terminal apparatus, wherein carried in domain name request There is domain name to be resolved;The processor for judging whether the domain name to be resolved needs to intercept, and is determining the domain When need not intercept of domain name to be resolved carried in name request is locally searching IP address corresponding with domain name information, And using the IP address locally found in first dns server as the addresses target access IP.
According to the another aspect of the embodiment of the present application, a kind of filter method of IP address is additionally provided, including:First domain The domain name request that name system dns server receiving terminal apparatus is sent;First dns server judges in presetting database With the presence or absence of the IP address corresponding to the domain-name information in being asked with domain name;First dns server is tied according to judgement Fruit determines whether to intercept the corresponding IP address of domain name information.
According to the another aspect of the embodiment of the present application, a kind of filter method of IP address is additionally provided, including:Terminal is set It is standby to intercept and capture the domain name request for being sent to dns server;The terminal device judges to whether there is in presetting database and domain name Corresponding IP address is asked, and determines whether to intercept the corresponding IP address of domain name information according to judging result.
According to the another aspect of the embodiment of the present application, a kind of filter device of IP address is additionally provided, is applied to the first domain Name system dns server, which is characterized in that including:Receiving module, the domain name request sent for receiving terminal apparatus;Judge Module, for judging in presetting database with the presence or absence of the IP address corresponding to the domain-name information in being asked with domain name;Really Cover half block, for determining whether to intercept the corresponding IP address of domain name information according to judging result.
According to the another aspect of the embodiment of the present application, a kind of filter device of IP address is additionally provided, is set applied to terminal It is standby, including:Interception module, for intercepting and capturing the domain name request for being sent to dns server;Judgment module, for judging presetting database In whether there is IP address corresponding with domain name request;And determining module, for determining whether pair according to judging result The corresponding IP address of domain name information is intercepted.
In the embodiment of the present application, using the lookup in the presetting database that newly-installed dns server is safeguarded and malice The mode of the corresponding IP address in website, has achieved the purpose that intercept domain name, and then solves current domain filter and exist The higher technical problem of rate of failing to report.
Description of the drawings
Attached drawing described herein is used for providing further understanding of the present application, constitutes part of this application, this Shen Illustrative embodiments and their description please do not constitute the improper restriction to the application for explaining the application.In the accompanying drawings:
Fig. 1 is a kind of flow diagram of website visiting according to prior art;
Fig. 2 is the structural schematic diagram according to a kind of filtration system of optional IP address of the embodiment of the present application;
Fig. 3 is the flow diagram according to a kind of filter method of optional IP address of the embodiment of the present application;
Fig. 4 is the flow chart according to a kind of filter method of IP address of the embodiment of the present application;
Fig. 5 is the flow chart according to the filter method of the optional IP address of another kind of the embodiment of the present application;
Fig. 6 a are the configuration diagrams according to a kind of filtration system of IP address of the embodiment of the present application;
Fig. 6 b are the configuration diagrams according to the filtration system of another IP address of the embodiment of the present application;
Fig. 7 is the flow chart according to the filter method of another IP address of the embodiment of the present application;
Fig. 8 is the structure diagram according to the filter device of another IP address of the embodiment of the present application;
Fig. 9 is the structural schematic diagram according to a kind of terminal of the embodiment of the present application.
Specific implementation mode
In order to make those skilled in the art more fully understand application scheme, below in conjunction in the embodiment of the present application Attached drawing, technical solutions in the embodiments of the present application are clearly and completely described, it is clear that described embodiment is only The embodiment of the application part, instead of all the embodiments.Based on the embodiment in the application, ordinary skill The every other embodiment that personnel are obtained without making creative work should all belong to the application protection Range.
It should be noted that term " first " in the description and claims of this application and above-mentioned attached drawing, " Two " etc. be for distinguishing similar object, without being used to describe specific sequence or precedence.It should be appreciated that making in this way Data can be interchanged in the appropriate case, so that embodiments herein described herein can be in addition to scheming herein Sequence other than those of showing or describe is implemented.In addition, term " comprising " and " having " and their any deformation, it is intended that Be to cover it is non-exclusive include, for example, containing the process of series of steps or unit, method, system, product or equipment Those of be not necessarily limited to clearly to list step or unit, but may include not listing clearly or for these processes, The intrinsic other steps of method, product or equipment or unit.
First, the part noun or term occurred during the embodiment of the present application is described is suitable for following solution It releases:
Domain name system (Domain Name System, referred to as DNS):It is a service of internet.It is used as domain The distributed data base that name and IP address mutually map, can make one more easily to access internet.Mobile device is being sent out DNS systems will be first passed through before playing each network request based on domain name, domain name is converted into IP address, then could Request is sent to the corresponding server of the IP address.
Pseudo-base station:Also known as false base station, false base station, are a kind of illegal wireless telecommunications using GSM unilateral authentication defects Equipment, capital equipment form are host and laptop, can search and the SIM cards centered on it, in certain radius is taken to believe Breath, and arbitrarily falsely use other people phone numbers and send the refuse messages such as swindle, distribution to user mobile phone by force, it is typically placed at vapour Vehicle or a more hidden place are sent.When pseudo-base station is run, user mobile phone signal is forced to be connected in the equipment, Public telecommunication network is cannot connect to, to influence the normal use of mobile phone user.
Embodiment 1
In the related technology, terminal user often receives malicious websites link, and then makes end-user access to malicious websites, Wherein, there are many sending methods of malicious websites link, such as:1) the subsidiary malicious websites in the short message content that user receives Link (currently popular pseudo-base station swindle is usually that this is a kind of);For this kind of situation, the terminal based on IOS can not prevent at present It is imperial, based on the terminal of andorid often through monitoring short message event and scan the link in short message and can intercept.2) by i.e. When chat tool (such as QQ) chat content for receiving in subsidiary malicious websites link, for this kind of situation, terminal often will be according to The interception function of relying the instant messenger included, still, since Prevention-Security function is not the emphasis of such software, because This rate of failing to report is higher.3) subsidiary malicious websites link, for this kind of situation, will often rely on mail in the Mail Contents received The included interception function of client, also due to Prevention-Security is not the emphasis of such software, therefore, rate of failing to report is higher.
As shown in Figure 1, the browsing process of a website in the related technology is as follows:
Step S102, the network request that mobile device is initiated:Request based on domain name can first be sent to existing DNS clothes It is engaged in device, includes the IP address of the domain name to be parsed and the mobile device in the header packet information of request.The mobile device can be The portable electronic devices such as mobile phone, tablet computer.
Step S104 has dns server and finds domain name pass corresponding with IP address from the database that oneself is safeguarded System, if can find, is returned to the IP address found;Subsequent real application request can be sent to this by mobile device The corresponding server of IP address.
If what user was accessing is a malicious websites, the default DNS server of mobile device in step S104 (i.e. above-mentioned existing dns server) can generally return to the IP address of malicious websites, and then the true of malicious websites can be accessed in user Real IP, to which the user may become the victim of malicious websites.
It can be seen that in the related technology, the request based on domain name can be forwarded directly to have dns server by mobile device It is parsed, IP address corresponding with the domain-name information that parsing obtains is then back to, in this way, since this has DNS servers simultaneously Whether it is not that malice domain name illegal domain name judges to the request, therefore, there can be the risk for accessing malicious websites.
Based on this, how to realize the network request based on domain name is intercepted or is intercepted be one need solve ask Topic.In order to solve the above technical problems, in the alternative embodiment of the application, the client (client) of mobile device can To change DNS settings so that the safe dns server that dns address direction is put up, and not above-mentioned existing DNS servers. To which existing dns server can parse legitimate domain name and illegal domain name (illegal domain name), safe dns server pair Illegal domain name is intercepted.
According to the application one embodiment, to achieve the above object, the present embodiment provides a kind of filtration system of IP address, As shown in Fig. 2, the system includes mainly:
Terminal device 20, for sending domain name request, wherein domain name to be resolved is carried in above-mentioned domain name request;
First dns server 22, for receiving above-mentioned domain name request;And judge whether the domain name to be resolved needs It intercepts, and the domain name request for being not required to intercept is transmitted to the second dns server.
As the alternative embodiment of the application, the first dns server 22 may be used domain name to be resolved and black name The mode of digital ratio pair realizes above-mentioned deterministic process, such as:Judge in presetting database with the presence or absence of in above-mentioned domain name request IP address corresponding to domain-name information;And exist and above-mentioned domain-name information in judging result indicates above-mentioned presetting database When corresponding IP address, above-mentioned IP address corresponding with above-mentioned domain-name information is intercepted;And refer in above-mentioned judging result Show in above-mentioned presetting database there is no when IP address corresponding with above-mentioned domain-name information, is then forwarded to above-mentioned domain name request Second dns server 24;
As another alternative embodiment of the application, the first dns server 22 can preserve white list, rather than black List, i.e., the domain name of every white list can be reached in this way by the inspection of safe dns server, the shielding of other domain names To the purpose for limiting access in enterprise-level application, such as:Judge in presetting database with the presence or absence of in above-mentioned domain name request IP address corresponding to domain-name information;And it is indicated in above-mentioned judging result indicates above-mentioned presetting database not in judging result When in the presence of IP address corresponding with above-mentioned domain-name information, the above-mentioned addresses IP corresponding with above-mentioned domain-name information are intercepted;With It, then will be upper and when there is IP address corresponding with above-mentioned domain-name information during above-mentioned judging result indicates above-mentioned presetting database It states domain name request and is forwarded to above-mentioned second dns server 24.
Optionally, which is to build to have dns server (the i.e. safety that malicious websites intercept function Dns server), in an optional application scenarios:The malice net that first dns server 22 is collected into using big data Information of standing is built, and a large amount of malicious websites domain-name information is maintained on first dns server 22;When discovery, certain DNS request is looked into When inquiry is malicious websites, the real IP of the malicious websites is not returned, on the contrary, what is returned is the clothes where a warning page Be engaged in device IP, and what such user saw is exactly that risk reminds the page.To realize above-mentioned function, need to change user's mobile device DNS is set to point to the dns server.It should be noted that the above-mentioned warning page can return for the application in terminal The page returned, the application have the function that pseudo-base station, fishing and wooden horse are measured in real time and are intercepted.
Second dns server 24, for searching IP address corresponding with above-mentioned domain-name information, and above-mentioned IP will be fed back Location is as target access IP address.
It will be understood by those skilled in the art that the function of the first dns server 22, the second dns server 24 can integrate It is completed in a server.
Based on system described in Fig. 2, the present embodiment provides a kind of filter methods of IP address, specific real below in conjunction with one Example is described in detail, as shown in Figure 3:
Request based on domain name is sent to safe dns server and (is equivalent to above-mentioned first DNS by step S302, mobile device Server 22), include the domain name to be parsed in the packet header of request.
Specifically, in mobile device end, Virtual Private Network (VPN) can be connected, to change DNS settings.
By taking iOS as an example, there are one new setting by 9.0 or more iOS (including 9.0): NETunnelNetworkSettings can be set by the setDNSSettings methods of this class to change the DNS of user It sets.
NS_CLASS_AVAILABLE(10_11,9_0)
@interface NETunnelNetworkSettings:NSObject<NSSecureCoding,NSCopying>
/*!
*@method initWithTunnelRemoteAddress:
/*!
*@property DNSSettings
*@discussion An NEDNSSettings object that contains the desired tunnel DNS settings.
*/
@property(copy,nullable)NEDNSSettings*DNSSettings NS_AVAILABLE(10_11, 9_0);
For Android (android) system, can be realized by addDnsServer (String address), specifically Ground:
Convenience method to add a DNS server to the VPN connection using a numeric address string.
Step S304, safe dns server is from the database (related data for being stored with malicious websites) that oneself is safeguarded Find IP address corresponding with domain name;
Optionally, safe dns server periodically can obtain latest data from malicious websites database, to realize certainly Dynamic update.It can specifically show as:Timed task is established, data are obtained from malicious websites database at predetermined time intervals comes The content in the database that safe dns server is safeguarded is updated, in this manner it is ensured that the data on safe DNS are to try to comprehensively 's.
Step S306, if it find that the IP address is the IP address of malicious websites, with returning to the IP where the warning page Location.
Above-mentioned network request is forwarded to existing dns server by step S308 when not finding above-mentioned IP address, this Sample, mobile device can be sent to subsequent network request the corresponding server of the IP address, normally be accessed.
Step S310 has dns server and is parsed to above-mentioned network request, and returns to IP address.
It optionally, can also be by locally or remotely being built in mobile device other than the above-mentioned scheme of the present embodiment The method of http agencies can also be filtered each request.
In one alternate embodiment, it can also be sent out by domain name request in one database of mobile device local maintenance It send to before DNS, intercepts and captures the domain name request, the domain-name information in the domain name request is carried out with the information in above-mentioned database Matching, and in above-mentioned database exist information matched with above-mentioned domain-name information when, IP address corresponding to the domain-name information It is intercepted.
The technical solution provided through this embodiment provides the technical solution for being exclusively used in domain filter, improves illegal The accuracy of domain filter reduces the rate of failing to report of illegal domain name.
Embodiment 2
According to the embodiment of the present application, a kind of embodiment of the method for the filter method of IP address is additionally provided, needs to illustrate It is that step shown in the flowchart of the accompanying drawings can execute in the computer system of such as a group of computer-executable instructions, Also, although logical order is shown in flow charts, and it in some cases, can be to be held different from sequence herein The shown or described step of row.
The processing method embodiment of network attack provided by the present application can be applied to the IP of the offer of the embodiment of the present application 1 In the filtration system of address, suitable for malicious websites domain name and IP address be filtered the business scenario intercepted.
Under above-mentioned service environment, in order to solve the above technical problems, the embodiment of the present application provides a kind of mistake of IP address Filtering method, as shown in figure 4, this method includes following processing step:
Step S402, the domain name request that the first dns server receiving terminal apparatus is sent;
Optionally, domain-name information is carried in the domain name request, which is corresponding with the domain name of website to be visited 's.First dns server can be the server newly built, and specifically may refer to safe DNS services in embodiment 1 The associated description of device, details are not described herein again.
Optionally, the domain name request to enable terminal device to send is forwarded to the first dns server, is receiving terminal Before the domain name request that equipment is sent, above-mentioned terminal device needs to change the DNS configuration informations in above-mentioned terminal device, and will Dns address in above-mentioned DNS configuration informations replaces with the access address of above-mentioned first dns server.
Step S404, the first dns server judge to whether there is and the domain name in above-mentioned domain name request in presetting database IP address corresponding to information;It should be noted that the presetting database can be a database of local maintenance, also may be used To be the database stored in third party.In one alternate embodiment, it is contemplated that the problem of filter efficiency, above-mentioned present count A database of the first DNS local maintenances can be preferentially set as according to library.
Step S406, the first dns server determine whether according to judging result to the corresponding IP address of above-mentioned domain-name information It is intercepted.
Optionally, the deterministic process in step S406 can be accomplished by the following way, but not limited to this:Sentence above-mentioned When disconnected result indicates to have IP address corresponding with above-mentioned domain-name information in above-mentioned presetting database, to above-mentioned and above-mentioned domain name The corresponding IP address of information is intercepted;It is not present and above-mentioned domain name in above-mentioned judging result indicates above-mentioned presetting database When the corresponding IP address of information, then allow to access IP address corresponding with above-mentioned domain-name information.
As the alternative embodiment of the application, above-mentioned IP address corresponding with above-mentioned domain-name information is carried out intercepting it Afterwards, in order to prompt user its access website be malicious websites, promoted user experience, above-mentioned IP address can be replaced with Preset IP address, and return to the warning page corresponding with above-mentioned preset IP address to above-mentioned terminal device.
Optionally, for " allow access IP address corresponding with above-mentioned domain-name information " specific implementation there are many, Such as:Above-mentioned domain name request is forwarded to the second dns server by above-mentioned first dns server, and is taken by above-mentioned 2nd DNS Business device searches IP address corresponding with above-mentioned domain-name information in above-mentioned domain name request, and will be looked by above-mentioned 2nd DNS servers The IP address found is as target access IP address;Alternatively, above-mentioned first dns server is locally being searched and above-mentioned domain name letter Corresponding IP address is ceased, and using the IP address locally found in above-mentioned first dns server as target access IP address.
Above-described embodiment in order to better understand is described in detail below in conjunction with Fig. 5.As shown in figure 5, the present embodiment provides The filter method of optional IP address a kind of include following processing step:
Step S502, the application program connection VPN run in mobile device, dns address is arranged as safe DNS service Device.In one alternate embodiment, DNS settings can also be manually changed on the mobile apparatus.
Step S504, safe dns server wait for domain name request (i.e. the network request based on domain name);
Step S506, safe dns server receive domain name request, parse the domain name request;
Step S508, safe dns server judge whether the domain-name information in domain name request is ordered by safe dns server In, if it is S510 is gone to step, otherwise, go to step S512;
Step S510 returns to the server ip address of the warning page, goes to step S514;
Step S512 parses the IP address using alternative DNS server (i.e. above-mentioned existing dns server), and feeding back should IP address is as target access IP address;
Step S514, mobile device show the above-mentioned warning page to user.
It should be noted that for each method embodiment above-mentioned, for simple description, therefore it is all expressed as to a system The combination of actions of row, but those skilled in the art should understand that, the application is not limited by the described action sequence, Because according to the application, certain steps can be performed in other orders or simultaneously.Secondly, those skilled in the art also answer This knows that embodiment described in this description belongs to preferred embodiment, and involved action and module are not necessarily originally Necessary to application.
Through the above description of the embodiments, those skilled in the art can be understood that according to above-mentioned implementation The processing method of the network attack of example can add the mode of required general hardware platform to realize by software, naturally it is also possible to By hardware, but the former is more preferably embodiment in many cases.Based on this understanding, the technical solution sheet of the application The part that contributes to existing technology can be expressed in the form of software products in other words in matter, the computer software Product is stored in a storage medium (such as ROM/RAM, magnetic disc, CD), including some instructions are with so that a station terminal is set Standby (can be mobile phone, computer, server or the network equipment etc.) executes the method described in each embodiment of the application.
Embodiment 3
The embodiment of the present application provides a kind of first dns server, and first dns server is for realizing institute in embodiment 2 Method is stated, as shown in Figure 6 a, which includes:Communication device 60 and processor 62, wherein:
Communication device 60 is connect with terminal device 20 and the second dns server 24, is sent for receiving terminal apparatus Domain name request;And when need not intercept of domain name to be resolved carried in above-mentioned processor determines above-mentioned domain name request, it will Above-mentioned domain name request is transmitted to the second dns server, wherein carry domain name to be resolved in above-mentioned domain name request, above-mentioned second Dns server feeds back above-mentioned IP address as target access IP for searching IP address corresponding with above-mentioned domain-name information Location;
Processor 62 for judging whether above-mentioned domain name to be resolved needs to intercept, and will determine that result notice to above-mentioned logical T unit.
Optionally, the mode that blacklist or white list compare may be used in the deterministic process of processor 62, for example, by using black When the mode that list compares, following processing procedure may be used, but not limited to this:Judge in presetting database with the presence or absence of with The IP address corresponding to domain-name information in above-mentioned domain name request;And in judging result instruction in the instruction of above-mentioned judging result When stating in presetting database in the presence of IP address corresponding with above-mentioned domain-name information, to above-mentioned IP corresponding with above-mentioned domain-name information Address is intercepted;And there is no corresponding with above-mentioned domain-name information in above-mentioned judging result indicates above-mentioned presetting database IP address when, then above-mentioned domain name request is forwarded to above-mentioned second dns server.
When by the way of white list comparison, following processing procedure may be used, but not limited to this:Judge preset data It whether there is and the IP address corresponding to the domain-name information in above-mentioned domain name request in library;And it is indicated above-mentioned in judging result When judging result indicates that IP address corresponding with above-mentioned domain-name information is not present in above-mentioned presetting database, to it is above-mentioned with it is above-mentioned The corresponding IP address of domain-name information is intercepted;And exist in above-mentioned judging result indicates above-mentioned presetting database with it is upper When stating the corresponding IP address of domain-name information, then above-mentioned domain name request is forwarded to above-mentioned second dns server.
It should be noted that the preferred embodiment of the present embodiment may refer to the associated description in embodiment 1-2, this Place repeats no more.
Embodiment 4
The embodiment of the present application provides another first dns server, and first dns server is for realizing in embodiment 2 The concrete structure of the method, the dns server in the present embodiment may refer to shown in Fig. 6 b, but it should be recognized that this reality The function identical or different with the first dns server in embodiment 4 can be had by applying the first dns server in example.Such as figure Shown in 6b, which includes:Communication device 60 and processor 62, wherein:
Communication device 60 is connect with terminal device 20, the domain name request sent for receiving terminal apparatus, wherein above-mentioned Domain name to be resolved is carried in domain name request;
Processor 62, for judging whether above-mentioned domain name to be resolved needs to intercept, and in determining above-mentioned domain name request When need not intercept of domain name to be resolved carried is locally searching IP address corresponding with above-mentioned domain-name information, and will be upper IP address that the first dns server is locally found is stated as target access IP address.
It is noted that the preferred embodiment of the present embodiment may refer to the associated description in embodiment 1-2, herein It repeats no more.
Embodiment 5
The embodiment of the present application also provides the filter method of another IP address, as shown in fig. 7, this method includes:
Step S702, terminal device intercept and capture the domain name request for being sent to dns server;
It should be noted that the terminal device can be the portable electronic devices such as mobile phone, tablet computer.
Step S704, terminal device judge to whether there is IP address corresponding with above-mentioned domain name request in presetting database;
Step S706 determines whether to intercept the corresponding IP address of above-mentioned domain-name information according to judging result.
Optionally, step S706 can be accomplished by the following way, but not limited to this:In the instruction of above-mentioned judging result When stating in presetting database in the presence of IP address corresponding with above-mentioned domain-name information, to above-mentioned IP corresponding with above-mentioned domain-name information Address is intercepted;IP corresponding with above-mentioned domain-name information is not present in above-mentioned judging result indicates above-mentioned presetting database When address, then allow to send above-mentioned domain name request to above-mentioned dns server.The above process be only by the way of blacklist into Row judges, in one alternate embodiment, can also be judged in the form of white list, specifically may refer to embodiment Associated description in 1-5, details are not described herein again.
The present embodiment can complete the filtering to the corresponding IP address of domain name in terminal equipment side, can pass through built-in application It realizes, but not limited to this.
Embodiment 6
The present embodiment also provides a kind of filter device of IP address, is applied to terminal device, the device is for realizing implementation Method shown in example 4, as shown in figure 8, the device includes:
Interception module 80, for intercepting and capturing the domain name request for being sent to dns server;
Judgment module 82 whether there is IP address corresponding with above-mentioned domain name request for judging in presetting database;
Determining module 84, for determining whether to block the corresponding IP address of above-mentioned domain-name information according to judging result It cuts.
It, can be with for the latter it should be noted that above-mentioned modules can be realized by software or hardware Following implemented form is shown as, but not limited to this:Above-mentioned modules are located in same processor;Alternatively, above-mentioned modules Form in any combination is located in different processors.
It should be noted that the preferred embodiment of the present embodiment may refer to the associated description in embodiment 1-2, this Place repeats no more.
Embodiment 7
The embodiment of the method that the embodiment of the present application one is provided can be in mobile terminal, terminal or similar fortune It calculates and is executed in device.Fig. 9 shows a kind of terminal (or mobile device) of the filter method for realizing IP address Hardware block diagram.As shown in figure 9, terminal 90 (or mobile device 90) may include one or more (used in figure 902a, 902b ... ..., 902n are shown) (processor 902 can include but is not limited to Micro-processor MCV or can processor 902 The processing unit of programmed logic device FPGA etc.), memory 904 for storing data and the transmission for communication function Device 906.In addition to this, can also include:Display, input/output interface (I/O interfaces), universal serial bus (USB) Port (can as a port in the port of I/O interfaces by including), network interface, power supply and/or camera.This field Those of ordinary skill is appreciated that structure shown in Fig. 9 is only to illustrate, and does not cause to limit to the structure of above-mentioned electronic device It is fixed.For example, terminal 90 may also include than shown in Fig. 9 more either less components or with shown in Fig. 9 Different configurations.
It is to be noted that said one or multiple processors 902 and/or other data processing circuits lead to herein Can often it be referred to as " data processing circuit ".The data processing circuit all or part of can be presented as software, hardware, consolidate Part or any other combination.In addition, data processing circuit can be single independent processing module or all or part of combination Into any one in the other elements in terminal 90 (or mobile device).As involved by the embodiment of the present application It arrives, which controls (such as the choosing for the variable resistance end path being connect with interface as a kind of processor It selects).
Memory 904 can be used for storing the software program and module of application software, such as the method in the embodiment of the present application Corresponding program instruction/data storage device, processor 902 by operation be stored in software program in memory 904 and Module realizes above-mentioned method to perform various functions application and data processing.Memory 904 may include high speed with Machine memory, may also include nonvolatile memory, as one or more magnetic storage device, flash memory or other it is non-easily The property lost solid-state memory.In some instances, memory 904 can further comprise remotely located relative to processor 902 deposit Reservoir, these remote memories can pass through network connection to terminal 90.The example of above-mentioned network includes but not limited to Internet, intranet, LAN, mobile radio communication and combinations thereof.
Transmitting device 906 is used to receive via a network or transmission data.Above-mentioned network specific example may include The wireless network that the communication providers of terminal 90 provide.In an example, transmitting device 906 includes a network Adapter (Network Interface Controller, NIC), can be connected with other network equipments by base station to It can be communicated with internet.In an example, transmitting device 906 can be radio frequency (Radio Frequency, RF) mould Block is used to wirelessly be communicated with internet.
Display can such as touch-screen type liquid crystal display (LCD), which may make that user can be with The user interface of terminal 90 (or mobile device) interacts.
Optionally, terminal provided in this embodiment can be that any one computer in terminal group is whole End equipment.Optionally, in the present embodiment, above computer terminal can also replace with the terminal devices such as mobile terminal.
Optionally, in the present embodiment, above computer terminal can be located in multiple network equipments of computer network At least one network equipment.
In the present embodiment, the program code of following steps during above computer terminal can execute:First DNS service The domain name request that device receiving terminal apparatus is sent;First dns server judge in presetting database with the presence or absence of with it is described The IP address corresponding to domain-name information in domain name request;First dns server determines whether according to judging result to institute The corresponding IP address of domain-name information is stated to be intercepted.
Wherein, memory can be used for storing software program and module, such as the method and apparatus pair in the embodiment of the present application Program instruction/the module answered, processor are stored in software program and module in memory by operation, each to execute The detection method of above-mentioned system vulnerability attack is realized in kind application of function and data processing.Memory may include high speed with Machine memory, can also include nonvolatile memory, such as one or more magnetic storage device, flash memory or other are non- Volatile solid-state.In some instances, memory can further comprise the storage remotely located relative to processor Device, these remote memories can pass through network connection to terminal A.The example of above-mentioned network includes but not limited to internet, enterprise Industry intranet, LAN, mobile radio communication and combinations thereof.
Processor can call the information and application program of memory storage by transmitting device, to execute following step: The domain name request that first dns server receiving terminal apparatus is sent;First dns server judges IP address corresponding to the no domain-name information existed in being asked with domain name;First dns server is according to judging result Determine whether to intercept the corresponding IP address of domain name information.
Optionally, the program code of following steps can also be performed in above-mentioned processor:It is indicated in above-mentioned judging result above-mentioned When there is IP address corresponding with above-mentioned domain-name information in presetting database, to above-mentioned IP corresponding with above-mentioned domain-name information Location is intercepted;In above-mentioned judging result indicates above-mentioned presetting database there is no IP corresponding with above-mentioned domain-name information When location, then allow to access IP address corresponding with above-mentioned domain-name information.
Optionally, the program code of following steps can also be performed in above-mentioned processor:Above-mentioned first dns server will be upper State domain name request and be forwarded to the second dns server, and by above-mentioned second dns server search in above-mentioned domain name request on The corresponding IP address of domain-name information is stated, and regard the IP address found by above-mentioned second dns server as target access IP Address;Alternatively, above-mentioned first dns server is locally searching IP corresponding with above-mentioned domain-name information addresses, and will be above-mentioned the The IP address that one dns server is locally found is as target access IP address.
It will appreciated by the skilled person that structure shown in Fig. 9 is only to illustrate, terminal can also be Smart mobile phone (such as Android phone, iOS mobile phones), tablet computer, applause computer and mobile internet device (Mobile Internet Devices, MID), the terminal devices such as PAD.Fig. 9 it does not cause to limit to the structure of above-mentioned electronic device.Example Such as, terminal 90 may also include more than shown in Fig. 9 or less component (such as network interface, display device), Or with the configuration different from shown in Fig. 9.
One of ordinary skill in the art will appreciate that all or part of step in the various methods of above-described embodiment is can To be completed come command terminal device-dependent hardware by program, which can be stored in a computer-readable storage medium In matter, storage medium may include:Flash disk, read-only memory (Read-Only Memory, ROM), random access device (Random Access Memory, RAM), disk or CD etc..
Embodiment 8
Embodiments herein additionally provides a kind of storage medium.Optionally, in the present embodiment, above-mentioned storage medium It can be used to save the program code performed by the filter method for the IP address that above-described embodiment 2 or 4 is provided.
Optionally, in the present embodiment, above-mentioned storage medium can be located in computer network Computer terminal group In any one terminal, or in any one mobile terminal in mobile terminal group.
Optionally, in the present embodiment, storage medium is arranged to store the program code for executing following steps: The domain name request that first dns server receiving terminal apparatus is sent;Above-mentioned first dns server judges It is no to exist and the IP address corresponding to the domain-name information in above-mentioned domain name request;Above-mentioned first dns server is according to judging result Determine whether to intercept the corresponding IP address of above-mentioned domain-name information.
Optionally, in the present embodiment, storage medium is arranged to store the program code for executing following steps: Terminal device intercepts and captures the domain name request for being sent to dns server;Above-mentioned terminal device judge in presetting database with the presence or absence of with it is upper The corresponding IP address of domain name request is stated, and determines whether that the addresses IP corresponding to above-mentioned domain-name information carry out according to judging result It intercepts.
Above-mentioned the embodiment of the present application serial number is for illustration only, can not represent the quality of embodiment.
In above-described embodiment of the application, all emphasizes particularly on different fields to the description of each embodiment, do not have in some embodiment The part of detailed description may refer to the associated description of other embodiment.
In several embodiments provided herein, it should be understood that disclosed technology contents, it can be by other Mode realize.Wherein, the apparatus embodiments described above are merely exemplary, for example, the unit division, only For a kind of division of logic function, formula that in actual implementation, there may be another division manner, such as multiple units or component can combine Or it is desirably integrated into another system, or some features can be ignored or not executed.Another point, shown or discussed phase Coupling, direct-coupling or communication connection between mutually can be the INDIRECT COUPLING or logical by some interfaces, unit or module Letter connection, can be electrical or other forms.
The unit illustrated as separating component may or may not be physically separated, aobvious as unit The component shown may or may not be physical unit, you can be located at a place, or may be distributed over multiple In network element.Some or all of unit therein can be selected according to the actual needs to realize this embodiment scheme Purpose.
In addition, each functional unit in each embodiment of the application can be integrated in a processing unit, it can also It is that each unit physically exists alone, it can also be during two or more units be integrated in one unit.Above-mentioned integrated list The form that hardware had both may be used in member is realized, can also be realized in the form of SFU software functional unit.
If the integrated unit is realized in the form of SFU software functional unit and sells or use as independent product When, it can be stored in a computer read/write memory medium.Based on this understanding, the technical solution essence of the application On all or part of the part that contributes to existing technology or the technical solution can be with the shape of software product in other words Formula embodies, which is stored in a storage medium, including some instructions are used so that a calculating Machine equipment (can be personal computer, server or network equipment etc.) executes the complete of each embodiment the method for the application Portion or part steps.And storage medium above-mentioned includes:USB flash disk, is deposited at read-only memory (ROM, Read-Only Memory) at random Access to memory (RAM, Random Access Memory), mobile hard disk, magnetic disc or CD etc. are various can to store program generation The medium of code.
The above is only the preferred embodiment of the application, it is noted that for the ordinary skill people of the art For member, under the premise of not departing from the application principle, several improvements and modifications can also be made, these improvements and modifications It should be regarded as the protection domain of the application.

Claims (12)

1. a kind of filtration system of IP address, which is characterized in that including:Terminal device, the first dns server and the 2nd DNS clothes Business device, wherein:
The terminal device is for sending domain name request, wherein domain name request includes domain name to be resolved;
The first domain name system DNS server judges whether the domain name to be resolved needs for receiving domain name request It intercepts, and the domain name request for being not required to intercept is transmitted to the second dns server;
Second dns server feeds back the IP address conduct for searching IP address corresponding with domain name information Target access IP address.
2. system according to claim 1, which is characterized in that
First dns server, for judging in presetting database with the presence or absence of the domain-name information in being asked with domain name Corresponding IP address;And exist and the domain in the judging result indicates the presetting database in judging result instruction When the name corresponding IP address of information, the IP address corresponding with domain name information is intercepted;And in the judgement When as a result indicating that IP address corresponding with domain name information is not present in the presetting database, then domain name request is turned It is sent to second dns server.
3. system according to claim 1, which is characterized in that
First dns server, for judging in presetting database with the presence or absence of the domain-name information in being asked with domain name Corresponding IP address;And judging result instruction in the judging result indicates the presetting database there is no with it is described When the corresponding IP address of domain-name information, the IP address corresponding with domain name information is intercepted;And sentence described When disconnected result indicates to have IP address corresponding with domain name information in the presetting database, then domain name request is turned It is sent to second dns server.
4. a kind of dns server, which is characterized in that including:Communication device and processor, wherein:
The communication device, the domain name request sent for receiving terminal apparatus;And determine domain name in the processor Domain name request is transmitted to the second dns server by when need not intercept of the domain name to be resolved carried in request, wherein Domain name to be resolved is carried in domain name request, second dns server is corresponding with domain name information for searching IP address, and the IP address is fed back as target access IP address;
The processor for judging whether the domain name to be resolved needs to intercept, and will determine that result notice to the communication Device.
5. a kind of dns server, which is characterized in that including:Communication device and processor, wherein:
The communication device, the domain name request sent for receiving terminal apparatus, wherein carried in domain name request and need to be solved Analyse domain name;
The processor for judging whether the domain name to be resolved needs to intercept, and is taken in determining domain name request When need not intercept of the domain name to be resolved of band is locally searching IP address corresponding with domain name information, and will be described The IP address that first dns server is locally found is as target access IP address.
6. a kind of filter method of IP address, which is characterized in that including:
The domain name request that first domain name system DNS server receiving terminal equipment is sent;
First dns server judges in presetting database with the presence or absence of corresponding to the domain-name information in being asked with domain name IP address;
First dns server determines whether to intercept the corresponding IP address of domain name information according to judging result.
7. according to the method described in claim 6, it is characterized in that, first dns server is according to judging result determination It is no that the corresponding IP address of domain name information is intercepted, including:
When there is IP address corresponding with domain name information during the judging result indicates the presetting database, to described IP address corresponding with domain name information is intercepted;
When IP address corresponding with domain name information is not present during the judging result indicates the presetting database, then permit Perhaps IP address corresponding with domain name information is accessed.
8. the method according to the description of claim 7 is characterized in that being carried out to the IP address corresponding with domain name information After interception, the method includes:
The IP address is replaced with and preset IP address, and is returned to the terminal device corresponding with the preset IP address Alert the page.
9. the method according to the description of claim 7 is characterized in that allow to access corresponding with domain name information IP address, Including:
Domain name request is forwarded to the second dns server by first dns server, and passes through second DNS service Device searches IP address corresponding with domain-name information described in domain name request, and will be searched by second dns server The IP address arrived is as target access IP address;Alternatively,
First dns server is locally searching IP address corresponding with domain name information, and will be taken in the first DNS The IP address that business device is locally found is as target access IP address.
10. according to the method described in claim 9, it is characterized in that, the first domain name system DNS server receiving terminal equipment is sent out Before the domain name request sent, the method further includes:
The terminal device changes the DNS configuration informations in the terminal device, and by the DNS in the DNS configuration informations Location replaces with the access address of first dns server.
11. a kind of filter method of IP address, which is characterized in that including:
Terminal device intercepts and captures the domain name request for being sent to dns server;
The terminal device judges with the presence or absence of IP address corresponding with domain name request in presetting database, and according to judgement As a result determine whether to intercept the corresponding IP address of domain name information.
12. according to the method for claim 11, which is characterized in that determine whether to domain name information according to judging result Corresponding IP address is intercepted, including:
When there is IP address corresponding with domain name information during the judging result indicates the presetting database, to described IP address corresponding with domain name information is intercepted;
When IP address corresponding with domain name information is not present during the judging result indicates the presetting database, then permit Perhaps domain name request is sent to the dns server.
CN201710073643.2A 2017-02-10 2017-02-10 Filter method and device, system, the dns server of IP address Pending CN108418780A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710073643.2A CN108418780A (en) 2017-02-10 2017-02-10 Filter method and device, system, the dns server of IP address

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710073643.2A CN108418780A (en) 2017-02-10 2017-02-10 Filter method and device, system, the dns server of IP address

Publications (1)

Publication Number Publication Date
CN108418780A true CN108418780A (en) 2018-08-17

Family

ID=63125014

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710073643.2A Pending CN108418780A (en) 2017-02-10 2017-02-10 Filter method and device, system, the dns server of IP address

Country Status (1)

Country Link
CN (1) CN108418780A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107707569A (en) * 2017-11-10 2018-02-16 北京知道创宇信息技术有限公司 DNS request processing method and DNS systems
CN109711166A (en) * 2018-12-17 2019-05-03 北京知道创宇信息技术有限公司 Leak detection method and device
CN110266684A (en) * 2019-06-19 2019-09-20 北京天融信网络安全技术有限公司 A kind of domain name system security means of defence and device
CN111988447A (en) * 2020-09-01 2020-11-24 北京微步在线科技有限公司 Network security protection method and DNS recursive server

Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100037314A1 (en) * 2008-08-11 2010-02-11 Perdisci Roberto Method and system for detecting malicious and/or botnet-related domain names
CN102291268A (en) * 2011-09-23 2011-12-21 杜跃进 Safety domain name server and hostile domain name monitoring system and method based on same
US20120303808A1 (en) * 2011-05-24 2012-11-29 Palo Alto Networks, Inc. Using dns communications to filter domain names
CN103051743A (en) * 2012-12-27 2013-04-17 茂名市群英网络有限公司 Domain name system (DNS) prevention system based on distributed hierarchy and method
CN103581363A (en) * 2013-11-29 2014-02-12 杜跃进 Method and device for controlling baleful domain name and illegal access
CN103634315A (en) * 2013-11-29 2014-03-12 杜跃进 Front end control method and system of domain name server (DNS)
CN103957201A (en) * 2014-04-18 2014-07-30 上海聚流软件科技有限公司 Method, device and system for processing domain name information based on DNS
CN104301311A (en) * 2014-09-28 2015-01-21 北京奇虎科技有限公司 Method and device for filtering network data content through DNS
CN104994117A (en) * 2015-08-07 2015-10-21 国家计算机网络与信息安全管理中心江苏分中心 Malicious domain name detection method and system based on DNS (Domain Name Server) resolution data
CN105376217A (en) * 2015-10-15 2016-03-02 中国互联网络信息中心 Method for automatically determining malicious redirecting and malicious nesting offensive websites
CN106027540A (en) * 2016-06-01 2016-10-12 中青奇未(北京)网络科技有限公司 Page interception method and system and secure desktop

Patent Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100037314A1 (en) * 2008-08-11 2010-02-11 Perdisci Roberto Method and system for detecting malicious and/or botnet-related domain names
US20120303808A1 (en) * 2011-05-24 2012-11-29 Palo Alto Networks, Inc. Using dns communications to filter domain names
CN102291268A (en) * 2011-09-23 2011-12-21 杜跃进 Safety domain name server and hostile domain name monitoring system and method based on same
CN103051743A (en) * 2012-12-27 2013-04-17 茂名市群英网络有限公司 Domain name system (DNS) prevention system based on distributed hierarchy and method
CN103581363A (en) * 2013-11-29 2014-02-12 杜跃进 Method and device for controlling baleful domain name and illegal access
CN103634315A (en) * 2013-11-29 2014-03-12 杜跃进 Front end control method and system of domain name server (DNS)
CN103957201A (en) * 2014-04-18 2014-07-30 上海聚流软件科技有限公司 Method, device and system for processing domain name information based on DNS
CN104301311A (en) * 2014-09-28 2015-01-21 北京奇虎科技有限公司 Method and device for filtering network data content through DNS
CN104994117A (en) * 2015-08-07 2015-10-21 国家计算机网络与信息安全管理中心江苏分中心 Malicious domain name detection method and system based on DNS (Domain Name Server) resolution data
CN105376217A (en) * 2015-10-15 2016-03-02 中国互联网络信息中心 Method for automatically determining malicious redirecting and malicious nesting offensive websites
CN106027540A (en) * 2016-06-01 2016-10-12 中青奇未(北京)网络科技有限公司 Page interception method and system and secure desktop

Non-Patent Citations (4)

* Cited by examiner, † Cited by third party
Title
杰子: "巧用HOSTS文件屏蔽恶意网站", 《网络与信息》 *
系统城-SHAOJING: "WindowsXP如何利用hosts将网址加入黑名单", 《HTTP://WWW.XITONGCHENG.COM/JIAOCHENG/XP_ARTICLE_10006.HTML》 *
董文站等: "浅析Hotst文件的作用与应用", 《黑龙江气象》 *
马华勇: "冷僻hosts文件"冷僻"用", 《电脑知识与技术》 *

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107707569A (en) * 2017-11-10 2018-02-16 北京知道创宇信息技术有限公司 DNS request processing method and DNS systems
CN109711166A (en) * 2018-12-17 2019-05-03 北京知道创宇信息技术有限公司 Leak detection method and device
CN109711166B (en) * 2018-12-17 2020-12-11 北京知道创宇信息技术股份有限公司 Vulnerability detection method and device
CN110266684A (en) * 2019-06-19 2019-09-20 北京天融信网络安全技术有限公司 A kind of domain name system security means of defence and device
CN111988447A (en) * 2020-09-01 2020-11-24 北京微步在线科技有限公司 Network security protection method and DNS recursive server

Similar Documents

Publication Publication Date Title
CN108418780A (en) Filter method and device, system, the dns server of IP address
EP2939454B1 (en) System and method for correlating network information with subscriber information in a mobile network environment
CN103825895B (en) A kind of information processing method and electronic equipment
US20170134957A1 (en) System and method for correlating network information with subscriber information in a mobile network environment
CN107888605B (en) Internet of things cloud platform flow security analysis method and system
CN108737327B (en) Method, device and system for intercepting malicious website and memory
US9338657B2 (en) System and method for correlating security events with subscriber information in a mobile network environment
CN105100048B (en) WiFi network secure authentication method, server, client terminal device and system
US20070274274A1 (en) Open wireless access point detection and identification
CN104601262B (en) A kind of information processing method and mobile device
CN107465666A (en) A kind of client ip acquisition methods and device
CN103475746A (en) Terminal service method and apparatus
CN108429739B (en) Method, system and terminal equipment for identifying honeypots
US9942766B1 (en) Caller validation for end service providers
CN107733867B (en) Botnet discovery and protection method, system and storage medium
KR20140126633A (en) Method and appratus for detecting malicious message
CN106803830B (en) Method, device and system for identifying internet access terminal and User Identity Module (UIM) card
CN105163335B (en) A kind of network access management method, server, mobile terminal and system
CN105959248B (en) The method and device of message access control
CN109660593B (en) Internet of things platform access management method, device and system
CN107528712A (en) The determination of access rights, the access method of the page and device
CN109788050B (en) Method, system, electronic device and medium for acquiring IP address of source station
CN110392123A (en) The methods, devices and systems of detection outlet IP address
CN110611723B (en) Scheduling method and device of service resources
CN110166518B (en) Session information transmission method, device, storage medium and electronic device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination