CN109120491A - It is a kind of for establishing the method and system of direct-connected vpn tunneling in net work teaching system - Google Patents

It is a kind of for establishing the method and system of direct-connected vpn tunneling in net work teaching system Download PDF

Info

Publication number
CN109120491A
CN109120491A CN201710481207.9A CN201710481207A CN109120491A CN 109120491 A CN109120491 A CN 109120491A CN 201710481207 A CN201710481207 A CN 201710481207A CN 109120491 A CN109120491 A CN 109120491A
Authority
CN
China
Prior art keywords
monitoring device
live streaming
vpn tunneling
address
streaming terminal
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710481207.9A
Other languages
Chinese (zh)
Inventor
邢志清
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Pattern Business Education Science And Technology (shenzhen) Co Ltd
Original Assignee
Pattern Business Education Science And Technology (shenzhen) Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Pattern Business Education Science And Technology (shenzhen) Co Ltd filed Critical Pattern Business Education Science And Technology (shenzhen) Co Ltd
Priority to CN201710481207.9A priority Critical patent/CN109120491A/en
Publication of CN109120491A publication Critical patent/CN109120491A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2521Translation architectures other than single NAT servers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2592Translation of Internet protocol [IP] addresses using tunnelling or encapsulation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0272Virtual private networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/16Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
    • H04L69/164Adaptation or special uses of UDP protocol

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)

Abstract

The present invention provides a kind of for establishing the method and system of direct-connected vpn tunneling in net work teaching system, which comprises step 1, Master Control Room server establishes vpn tunneling with live streaming terminal and monitoring device respectively;UDP connection is established between the live streaming terminal and the monitoring device;Step 2, its vpn tunneling between the live streaming terminal and the monitoring device based on the foundation of the Master Control Room server is established UDP between the live streaming terminal and described monitoring device and is connect, and the direct-connected vpn tunneling being broadcast live between terminal and the monitoring device is established.The present invention has and has the beneficial effect for quickly establishing direct-connected vpn tunneling in net work teaching system in elimination.

Description

It is a kind of for establishing the method and system of direct-connected vpn tunneling in net work teaching system
Technical field
The present invention relates to distance education technique fields, straight in net work teaching system for establishing more particularly, to one kind The even method and system of vpn tunneling.
Background technique
The existing education system of China is very huge at present, and outstanding educational resource is few, and considerable area is outstanding It is the quality of education of remote districts, at all can not be with the quality of education phase of developed regions due to lacking good teacher strength Than largely causing the unfairness of educational resource distribution.And with the continuous development of technology, scientific and technological applies feeler And the application of internet has gradually been dissolved into teaching field, teleeducation system is in the ascendant.
In existing Internet class live-broadcast system, live broadcast system is a kind of live streaming for sending main broadcaster's client Video flowing shares the server system watched to multiple live streaming clients.Multiple direct broadcasting rooms are provided in live broadcast system, straight Client is broadcast into the live video stream that main broadcaster's client between current live after direct broadcasting room, can be watched to send.
To solve the above-mentioned problems, the application for a patent for invention of Publication No. CN104506802A discloses one kind in client End side increase Client Agent module and video monitoring equipment side increase monitoring device proxy module, Client Agent module and Monitoring device proxy module establishes UDP channel under the assistance of video monitoring server, through vpn tunneling technology, client and Video monitoring equipment is directly communicated by respective proxy module by the UDP channel, to solve client and view Communication between frequency monitoring device will be forwarded the problem of bringing by video server.
However, the communication in prior art above scheme between client and video monitoring equipment will pass through respective generation Reason module is handled and is forwarded, and there are proxy module consumption resource is more, efficiency of transmission is not high, and signaling negotiation and Service control are multiple The problems such as miscellaneous.
Summary of the invention
The present invention in order to overcome the problems referred above or at least is partially solved the above problem, provides a kind of for establishing network religion The method of direct-connected vpn tunneling in system.
According to an aspect of the present invention, a kind of method for establishing direct-connected vpn tunneling in net work teaching system is provided, Include:
Step 1, Master Control Room server establishes vpn tunneling with live streaming terminal and monitoring device respectively;The live streaming terminal with UDP connection is established between the monitoring device;
Step 2, the Master Control Room server based on the foundation its between the live streaming terminal and the monitoring device Vpn tunneling, between the live streaming terminal and the monitoring device establish UDP connection, establish the live streaming terminal and the prison Control the direct-connected vpn tunneling of equipment room.
Further, the step of Master Control Room server described in the step 1 establishes vpn tunneling with live streaming terminal is further wrapped It includes:
The NAT device of live streaming terminal generates the private network IP address and corresponding end slogan and public network mapping IP of the live streaming terminal The mapping table of location and corresponding end slogan;
Private network IP address and corresponding end slogan of the terminal based on the live streaming terminal is broadcast live, is sent out to the Master Control Room server It send and establishes vpn tunneling request;
The NAT device of live streaming terminal establishes the private network IP address and corresponding ports that terminal is broadcast live described in vpn tunneling request The Master Control Room server is sent to after number being converted to the public network mapping IP address and port numbers of the live streaming terminal;The master control The vpn tunneling of establishing that room server responds the live streaming terminal is requested, and completes it with described and building for terminal room vpn tunneling is broadcast live It is vertical.
Further, the step of Master Control Room server described in the step 1 establishes vpn tunneling with monitoring device is further wrapped It includes:
The NAT device of monitoring device generates the private network IP address and corresponding end slogan and public network mapping IP of the monitoring device The mapping table of location and corresponding end slogan;
Private network IP address and corresponding end slogan of the monitoring device based on the monitoring device are sent out to the Master Control Room server It send and establishes vpn tunneling request;
The NAT device of monitoring device establishes the private network IP address and corresponding ports of monitoring device described in vpn tunneling request The Master Control Room server is sent to after number being converted to the public network mapping IP address and port numbers of the monitoring device;The master control What room server responded the monitoring device establishes vpn tunneling request, completes its vpn tunneling between the monitoring device and builds It is vertical.
Further, establishing the step of UDP connection between the live streaming terminal and the monitoring device further comprises:
Agreement is passed through come the cross-over NAT equipment that burrows by NAT between live streaming terminal and monitoring device, is established between the two UDP connection.
Further, the step 2 further comprises:
It is respectively that vpn tunneling role server and vpn tunneling are straight that Master Control Room server, which distributes monitoring device and live streaming terminal, Terminal role is broadcast, issues configuration information to the live streaming terminal and the monitoring device, so that the live streaming terminal and the prison It controls equipment and direct-connected vpn tunneling is established by UDP connection.
Further, establishing the step of UDP connection between the live streaming terminal and the monitoring device further comprises:
The public network that Master Control Room server obtains the live streaming terminal maps IP address and corresponding end slogan and the monitoring The public network mapping IP address and corresponding end slogan of equipment send out the public network mapping IP address of the live streaming terminal and corresponding end slogan The monitoring device is given, the public network of the monitoring device is mapped into IP address and corresponding end slogan is sent to client, for The live streaming terminal and the monitoring device are set based on the IP address and corresponding end slogan respectively received the passing through NAT that burrow It is standby, establish the UDP connection between the live streaming terminal and the monitoring device.
Further, the step 2 further comprises:
It is vpn tunneling server that Master Control Room server, which distributes the monitoring device, issues the void that vpn tunneling server uses The Microsoft Loopback Adapter address that quasi- NIC address and vpn tunneling live streaming terminal use issues carry out authentication user to the monitoring device Name and password give the monitoring device;The monitoring device completes the VPN based on the message that the Master Control Room server issues The configuration of tunnel server;Process is listened in starting on the private network IP address of monitoring device and private network port numbers, listens to the VPN The vpn tunneling connection request of tunnel live streaming terminal;Subscription authentication and response are carried out after listening to vpn tunneling connection request;? PPP Microsoft Loopback Adapter interface is generated in monitoring device, which is the vpn tunneling server that Master Control Room server issues The Microsoft Loopback Adapter address used;
It is that terminal is broadcast live in vpn tunneling that Master Control Room server, which distributes the live streaming terminal, notifies the live streaming terminal vpn tunneling The IP address and port numbers of server are that the public network of the monitoring device maps IP address and public network port number, and issues and reflect The username and password of power gives the live streaming terminal, and the live streaming terminal establishes vpn tunneling connection request to monitoring device transmission, The monitoring device, which listens to this, to be established and carries out subscription authentication and response after vpn tunneling connection request, and by Master Control Room server It is handed down to the live streaming terminal in the Microsoft Loopback Adapter address for distributing to the vpn tunneling live streaming terminal;The live streaming terminal receives prison The Microsoft Loopback Adapter address that the vpn tunneling live streaming terminal that control equipment issues uses, generates the clamping of PPP virtual net in live streaming terminal Mouthful, complete the foundation of direct-connected vpn tunneling.
According to another aspect of the present invention, it provides and a kind of is for establish direct-connected vpn tunneling in net work teaching system System, comprising:
First link block establishes vpn tunneling with live streaming terminal and monitoring device respectively for controlling Master Control Room server; It controls and establishes UDP connection between the live streaming terminal and the monitoring device;
Second link block, for control the Master Control Room server based on the foundation its with the live streaming terminal and Vpn tunneling, the live streaming terminal between the monitoring device and UDP connection is established between the monitoring device, established described straight Broadcast the direct-connected vpn tunneling between terminal and the monitoring device.
Further, first link block is also used to:
Control live streaming terminal NAT device generate the live streaming terminal private network IP address and corresponding end slogan and public network mapping The mapping table of IP address and corresponding end slogan;
Private network IP address and corresponding end slogan of the control live streaming terminal based on the live streaming terminal, to the Master Control Room service Vpn tunneling request is established in device transmission;
The NAT device of control live streaming terminal establishes the private network IP address and correspondence that terminal is broadcast live described in vpn tunneling request The public network that port numbers are converted to the live streaming terminal is sent to the Master Control Room server after mapping IP address and port numbers;It is described What Master Control Room server responded the live streaming terminal establishes vpn tunneling request, completes itself and the live streaming terminal room vpn tunneling It establishes.
Further, first link block is also used to:
Control monitoring device NAT device generate the monitoring device private network IP address and corresponding end slogan and public network mapping The mapping table of IP address and corresponding end slogan;
Private network IP address and corresponding end slogan of the monitoring device based on the monitoring device are controlled, to the Master Control Room service Vpn tunneling request is established in device transmission;
The NAT device of control monitoring device establishes the private network IP address and correspondence of monitoring device described in vpn tunneling request The public network that port numbers are converted to the monitoring device is sent to the Master Control Room server after mapping IP address and port numbers;It is described The vpn tunneling of establishing that Master Control Room server responds the monitoring device is requested, its vpn tunneling between the monitoring device is completed It establishes.
The application proposes a kind of for establishing the method and system of direct-connected vpn tunneling in net work teaching system, institute of the present invention Stating scheme has the beneficial effect for quick and precisely establishing direct-connected vpn tunneling in net work teaching system.
Detailed description of the invention
Fig. 1 is a kind of for establishing the whole of the method for direct-connected vpn tunneling in net work teaching system according to the embodiment of the present invention Body flow diagram;
Fig. 2 is a kind of for establishing the whole of the system of direct-connected vpn tunneling in net work teaching system according to the embodiment of the present invention Body block schematic illustration;
Fig. 3 is a kind of for establishing setting for the method for direct-connected vpn tunneling in net work teaching system according to the embodiment of the present invention Standby general frame schematic diagram.
Specific embodiment
With reference to the accompanying drawings and examples, specific embodiments of the present invention will be described in further detail.Implement below Example is not intended to limit the scope of the invention for illustrating the present invention.
Such as Fig. 1, in a specific embodiment of the invention, show a kind of for establishing direct-connected VPN tunnel in net work teaching system The method overall flow schematic diagram in road.Generally, comprising: step 1, Master Control Room server respectively with live streaming terminal and monitoring device Establish vpn tunneling;UDP connection is established between the live streaming terminal and the monitoring device;Step 2, the Master Control Room server Its vpn tunneling between the live streaming terminal and the monitoring device, the live streaming terminal and described prison based on the foundation UDP connection is established between control equipment, establishes the direct-connected vpn tunneling between the live streaming terminal and the monitoring device.
Udp protocol full name is User Datagram Protocol, it is used to handle data packet as Transmission Control Protocol in a network, is A kind of connectionless agreement.In osi model, at the 4th layer --- transport layer, upper one layer in IP agreement.UDP, which has, not to be mentioned The shortcomings that for data packet grouping, assembling and data packet cannot being ranked up, that is to say, that after message is sent, being can not Learn its whether safe and complete arrival.UDP is used to that those is supported to need to transmit the network application of data between the computers.Packet The network application for including numerous Client/Servers including Video Conference System is required using udp protocol.UDP Agreement has been used many years so far from coming out, although its initial brilliance is covered by some similar agreements, Even be today UDP still can yet be regarded as a very useful and feasible network transmission layer protocol.
It is a kind of for establishing the side of direct-connected vpn tunneling in net work teaching system in another specific embodiment of the invention The step of method, Master Control Room server described in the step 1 establishes vpn tunneling with live streaming terminal, further comprises:
The NAT device of live streaming terminal generates the private network IP address and corresponding end slogan and public network mapping IP of the live streaming terminal The mapping table of location and corresponding end slogan;
Private network IP address and corresponding end slogan of the terminal based on the live streaming terminal is broadcast live, is sent out to the Master Control Room server It send and establishes vpn tunneling request;
The NAT device of live streaming terminal establishes the private network IP address and corresponding ports that terminal is broadcast live described in vpn tunneling request The Master Control Room server is sent to after number being converted to the public network mapping IP address and port numbers of the live streaming terminal;The master control The vpn tunneling of establishing that room server responds the live streaming terminal is requested, and completes it with described and building for terminal room vpn tunneling is broadcast live It is vertical.
NAT (Network Address Translation, network address translation) is to propose for 1994.When dedicated Some hosts inside net have already been assigned to local ip address (specific address only used in this private network), but When wanting with main-machine communication (not needing to encrypt) on internet now again, NAT method can be used.This method is needed dedicated Net is connected to installation NAT software on the router of internet.Router equipped with NAT software is called NAT router, it is at least One effective external Global IP address.In this way, all hosts using local address with the external world communication when, will be in NAT Its local address is converted into Global IP addresses on router, could be connected with internet.
It is a kind of for establishing the side of direct-connected vpn tunneling in net work teaching system in another specific embodiment of the invention The step of method, Master Control Room server described in the step 1 establishes vpn tunneling with monitoring device, further comprises:
The NAT device of monitoring device generates the private network IP address and corresponding end slogan and public network mapping IP of the monitoring device The mapping table of location and corresponding end slogan;
Private network IP address and corresponding end slogan of the monitoring device based on the monitoring device are sent out to the Master Control Room server It send and establishes vpn tunneling request;
The NAT device of monitoring device establishes the private network IP address and corresponding ports of monitoring device described in vpn tunneling request The Master Control Room server is sent to after number being converted to the public network mapping IP address and port numbers of the monitoring device;The master control What room server responded the monitoring device establishes vpn tunneling request, completes its vpn tunneling between the monitoring device and builds It is vertical.
In the above specific embodiment, live streaming terminal/monitoring device establishes vpn tunneling with Master Control Room server respectively, can For sending the interaction message being broadcast live between terminal/monitoring device and Master Control Room server in subsequent step, at the same it is whole in live streaming When holding direct-connected vpn tunneling failure between monitoring device, live streaming terminal will use the VPN that itself and Master Control Room server are established Tunnel accesses Master Control Room server, and Master Control Room server taken by communicating with the vpn tunneling of monitoring device by Master Control Room The forwarding of business device obtains the monitor video of monitoring device.
It is a kind of for establishing the side of direct-connected vpn tunneling in net work teaching system in another specific embodiment of the invention Method, the step of UDP connection is established between the live streaming terminal and the monitoring device, further comprise:
Agreement is passed through come the cross-over NAT equipment that burrows by NAT between live streaming terminal and monitoring device, is established between the two UDP connection.
It is a kind of for establishing the side of direct-connected vpn tunneling in net work teaching system in another specific embodiment of the invention Method, the step 2 further comprises:
It is respectively that vpn tunneling role server and vpn tunneling are straight that Master Control Room server, which distributes monitoring device and live streaming terminal, Terminal role is broadcast, issues configuration information to the live streaming terminal and the monitoring device, so that the live streaming terminal and the prison It controls equipment and direct-connected vpn tunneling is established by UDP connection.
It is a kind of for establishing the side of direct-connected vpn tunneling in net work teaching system in another specific embodiment of the invention Method, the step of UDP connection is established between the live streaming terminal and the monitoring device, further comprise:
The public network that Master Control Room server obtains the live streaming terminal maps IP address and corresponding end slogan and the monitoring The public network mapping IP address and corresponding end slogan of equipment send out the public network mapping IP address of the live streaming terminal and corresponding end slogan The monitoring device is given, the public network of the monitoring device is mapped into IP address and corresponding end slogan is sent to client, for The live streaming terminal and the monitoring device are set based on the IP address and corresponding end slogan respectively received the passing through NAT that burrow It is standby, establish the UDP connection between the live streaming terminal and the monitoring device.
In the above-mentioned specific embodiment of the present invention, live streaming terminal maps IP address and port numbers by the public network of monitoring device Message is sent to monitoring device, the source IP address and port numbers in message are the private network IP address and port numbers that terminal is broadcast live, visitor The NAT device at family end by message source IP address and port numbers be converted to the public network mapping IP address and port numbers of live streaming terminal Be sent to the NAT device of monitoring device afterwards, the NAT device of monitoring device receive after message by message purpose IP address and end Slogan by the public network of monitoring device map IP address and port numbers be converted to monitoring device private network IP address and port numbers after send out Give monitoring device.Monitoring device maps IP address and port numbers by the public network of live streaming terminal and sends message to live streaming terminal, Source IP address and port numbers in message are the private network IP address and port numbers of monitoring device, and the NAT device of monitoring device will disappear The public network that source IP address and port numbers in breath are converted to monitoring device is sent to monitoring device after mapping IP address and port numbers NAT device, the NAT device of monitoring device receive after message by message purpose IP address and port numbers by live streaming terminal Public network mapping IP address and port numbers are converted to the private network IP address that terminal is broadcast live and are sent to live streaming terminal after port numbers.Pass through Terminal is broadcast live in this mode can connect directly mutual transmission message with monitoring device using the UDP for the foundation that burrows.
It is a kind of for establishing the side of direct-connected vpn tunneling in net work teaching system in another specific embodiment of the invention Method, the step 2 further comprises:
It is vpn tunneling server that Master Control Room server, which distributes the monitoring device, issues the void that vpn tunneling server uses The Microsoft Loopback Adapter address that quasi- NIC address and vpn tunneling live streaming terminal use issues carry out authentication user to the monitoring device Name and password give the monitoring device;The monitoring device completes the VPN based on the message that the Master Control Room server issues The configuration of tunnel server;Process is listened in starting on the private network IP address of monitoring device and private network port numbers, listens to the VPN The vpn tunneling connection request of tunnel live streaming terminal;Subscription authentication and response are carried out after listening to vpn tunneling connection request;? PPP Microsoft Loopback Adapter interface is generated in monitoring device, which is the vpn tunneling server that Master Control Room server issues The Microsoft Loopback Adapter address used;
It is that terminal is broadcast live in vpn tunneling that Master Control Room server, which distributes the live streaming terminal, notifies the live streaming terminal vpn tunneling The IP address and port numbers of server are that the public network of the monitoring device maps IP address and public network port number, and issues and reflect The username and password of power gives the live streaming terminal, and the live streaming terminal establishes vpn tunneling connection request to monitoring device transmission, The monitoring device, which listens to this, to be established and carries out subscription authentication and response after vpn tunneling connection request, and by Master Control Room server It is handed down to the live streaming terminal in the Microsoft Loopback Adapter address for distributing to the vpn tunneling live streaming terminal;The live streaming terminal receives prison The Microsoft Loopback Adapter address that the vpn tunneling live streaming terminal that control equipment issues uses, generates the clamping of PPP virtual net in live streaming terminal Mouthful, complete the foundation of direct-connected vpn tunneling.
It is a kind of for establishing the side of direct-connected vpn tunneling in net work teaching system in another specific embodiment of the invention Method, the method are based on wifi communication environment, and the method for realizing that direct-connected vpn tunneling is established in net work teaching system is specific as follows.
1. the network equipment used
Router: the pole 1S of OpenWrt PandoraBox 12.09.1 system has been brushed.
The computer (while having both dns caching server) of VPN client: one installation FreeBSD 10.0X64.
The vps of VPN Server: one installation Ubuntu 12.4x86.
2. installing necessary program
VPN Server:
apt-get install tinc
VPN Client:
cd/usr/ports/security/tinc;make install
3.tinc configuration
Tinc is the program for being similar to openvpn, can establish three layers or two layer tunnel, matches used here as default It sets, that is, three layer tunnel.
VPN Server:
Configuration file bibliographic structure:
/etc/tinc
| -- nets.boot # includes to need tinc instance name to be started, one instance name of a line
`--vpn1 #tinc example catalogue
|--hosts
| | -- host1 #VPN Client host-confg file (including Client public key, copied from Client)
| `--server #VPN Server host-confg file
| -- the rsa private key that the rsa_key.priv # tinc example uses
| -- when tinc-up #tinc starts
The configuration of the `--tinc.conf # example
A) catalogues at different levels are created, add tinc.conf file under vpn1 catalogue
#cat tinc.conf
Name=server # host-confg file name
Device=/dev/tun #tun equipment is then/dev/net/tun if it is 3.x kernel
The tunnel TCPonly=no # default uses UDP
For ReplayWindow=0 # because of packet loss, replay detection will lead to more serious packet loss
B) server file is added under hosts catalogue, file name corresponds to the Name in tinc configuration
#cat hosts/server
Address=1.2.3.4 # the machine public network address
The port numbers that Port=6550 # is used, are defaulted as 655
Subnet=0.0.0.0/0 # makes tinc receive the packet of any source address
C) rsa key pair is created
#tincd-n vpn1-K # carriage return!
D) tinc-up file is added, has added and has remembered to run chmod+x tinc-up to add execution permission
#cat tinc-up
#!/bin/sh
Ifconfig $ INTERFACE 192.168.40.1 netmask 255.255.255.0 #tun interface IP address
The routing of the opposite end route add-host 192.168.30.254 dev $ INTERFACE# to tun
route add -net 192.168.30.0 netmask 255.255.255.0 gw 192.168.30.254 Routing of the dev $ INTERFACE # to opposite end address field
route add -net 192.168.3.0 netmask 255.255.255.0 gw 192.168.30.254dev Routing of the $ INTERFACE# to the device address for being connected to wifi
E) also lack the host public key configuration file (hosts/host1) of client to the VPN of VPN Server here, need It to be copied under this document to hosts catalogue after VPN Client generates key pair from Client
VPN Client:
Bibliographic structure:
#tree/usr/local/etc/tinc/vpn1
/usr/local/etc/tinc/vpn1
|--hosts
||--host1
| `--server # copies (public key comprising Server) from VPN Server
|--rsa_key.priv
|--tinc-down
|--tinc-up
`--tinc.conf
Here configuration file is similar with Server, repeats no more
#cat tinc.conf
Name=host1
ConnectTo=server # is connected to the host specified in the configuration of server host
Device=/dev/tun0
TCPonly=no
ReplayWindow=0
#cat hosts/host1
Address=192.168.2.202
Subnet=192.168.30.0/24
Subnet=192.168.3.0/24
#cat tinc-up
#!/bin/sh
ifconfig$INTERFACE 192.168.30.254 netmask 255.255.255.0
route add -host 192.168.40.1/32 192.168.30.254
route add -host 8.8.4.4/32 192.168.30.254
route add -host 8.8.8.8/32 192.168.30.254
route add -net 192.168.40.0/24 192.168.40.1
#cat tinc-down
#!/bin/sh
ifconfig$INTERFACE down
ifconfig$INTERFACE destroy&
All Files editor generates key pair after the completion, and hosts/host1 file is finally uploaded to VPN Server's In hosts catalogue
#tincd -n vpn1 -K
4. routing and NAT configuration
VPN Server:
NAT:
#cat/etc/rc.local
#!/bin/sh-e
echo 1>/proc/sys/net/ipv4/ip_forward
iptables-t nat-A POSTROUTING-s 192.168.3.0/24-j SNAT--to-source 1.2.3.4
iptables-t nat-A POSTROUTING-s 192.168.30.0/24-j SNAT--to-source 1.2.3.4
exit 0
It is forwarded between opening interface and makees NAT using iptables, used SNAT here, be one with MASQUERADE effect Sample.
The configuration of iptables can also be equally added to/etc/network/if-up.d/tinc or tinc-up In.
VPN Client:
The following contents is added to rc.local
Pf_enable=" YES "
Tincd_enable=" YES "
Tincd_cfg=" vpn1 "
Source address is done by pf configuration is as follows using pf
#cat/etc/pf.conf
Ext_if=" tun0 "
pass quick from 192.168.3.1 to 192.168.3.0/24 no state
pass quick from 192.168.3.0/24 to 192.168.3.1 no state
pass in quick route-to$ext_if from 192.168.3.0/24 to any no state
Because to do DNS cache on VPN Client, destination address is that the packet of .3.1 is directly routed according to kernel Table is routed.
The configuration of pf can equally be executed with tinc-up
#echo“pf confs"|pfctl-f-
5.DNS caching
VPN Client:
#unbound-control-setup # is automatically configured
Close automatic addition dns address
#cat/etc/resolvconf.conf
#Generated by local-unbound-setup
Resolv_conf="/dev/null " #prevent updating/etc/resolv.conf
#unbound_conf="/var/unbound/forward.conf "
Unbound_pid="/var/run/local_unbound.pid "
Unbound_service=" local_unbound "
Unbound_restart=" service local_unbound reload "
Edit forward.conf
#cat/etc/unbound/forward.conf
forward-zone:
name:″.″
forward-addr:8.8.4.4
forward-addr:8.8.8.8
6. wireless router configures
Wireline interface:
Wifi how is allowed to support VPN direct-connected
DHCP configuration:
Wifi how is allowed to support VPN direct-connected
7. starting service
VPN Server:
service tinc start
Iptables rule is manually entered
VPN Client:
service local_unbound start
service tincd start
service pf start
Figure such as 2 is shown in another specific implementation example of the present invention, and one kind is direct-connected in net work teaching system for establishing The overall system architecture schematic diagram of vpn tunneling, generally, comprising:
First link block A1 establishes VPN tunnel with live streaming terminal and monitoring device respectively for controlling Master Control Room server Road;It controls and establishes UDP connection between the live streaming terminal and the monitoring device;
Second link block A2, for controlling itself and the live streaming terminal of the Master Control Room server based on the foundation Vpn tunneling, the live streaming terminal between the monitoring device and UDP connection is established between the monitoring device, described in foundation The direct-connected vpn tunneling between terminal and the monitoring device is broadcast live.
It is a kind of to be for establish direct-connected vpn tunneling in net work teaching system in another of the invention specific embodiment System, first link block are also used to:
Control live streaming terminal NAT device generate the live streaming terminal private network IP address and corresponding end slogan and public network mapping The mapping table of IP address and corresponding end slogan;
Private network IP address and corresponding end slogan of the control live streaming terminal based on the live streaming terminal, to the Master Control Room service Vpn tunneling request is established in device transmission;
The NAT device of control live streaming terminal establishes the private network IP address and correspondence that terminal is broadcast live described in vpn tunneling request The public network that port numbers are converted to the live streaming terminal is sent to the Master Control Room server after mapping IP address and port numbers;It is described What Master Control Room server responded the live streaming terminal establishes vpn tunneling request, completes itself and the live streaming terminal room vpn tunneling It establishes.
It is a kind of to be for establish direct-connected vpn tunneling in net work teaching system in another of the invention specific embodiment System, first link block are also used to:
Control monitoring device NAT device generate the monitoring device private network IP address and corresponding end slogan and public network mapping The mapping table of IP address and corresponding end slogan;
Private network IP address and corresponding end slogan of the monitoring device based on the monitoring device are controlled, to the Master Control Room service Vpn tunneling request is established in device transmission;
The NAT device of control monitoring device establishes the private network IP address and correspondence of monitoring device described in vpn tunneling request The public network that port numbers are converted to the monitoring device is sent to the Master Control Room server after mapping IP address and port numbers;It is described The vpn tunneling of establishing that Master Control Room server responds the monitoring device is requested, its vpn tunneling between the monitoring device is completed It establishes.
It is a kind of to be for establish direct-connected vpn tunneling in net work teaching system in another of the invention specific embodiment System, first link block are also used to:
Agreement is passed through come the cross-over NAT equipment that burrows by NAT between control live streaming terminal and monitoring device, establishes the two Between UDP connection.
It is a kind of to be for establish direct-connected vpn tunneling in net work teaching system in another of the invention specific embodiment System, second link block are also used to:
Controlling Master Control Room server distribution monitoring device and live streaming terminal is respectively vpn tunneling role server and VPN tunnel Terminal role is broadcast live in road, issues configuration information to the live streaming terminal and the monitoring device, so that the live streaming terminal and institute It states monitoring device and direct-connected vpn tunneling is established by UDP connection.
It is a kind of to be for establish direct-connected vpn tunneling in net work teaching system in another of the invention specific embodiment System, first link block are also used to:
Control Master Control Room server obtains the public network mapping IP address and corresponding end slogan and described of the live streaming terminal The public network mapping IP address and corresponding end slogan of monitoring device, by the public network mapping IP address and corresponding ports of the live streaming terminal Number it is sent to the monitoring device, the public network of the monitoring device is mapped into IP address and corresponding end slogan is sent to client, So that the live streaming terminal and the monitoring device carry out the passing through NAT that burrows based on the IP address and corresponding end slogan respectively received Equipment establishes the UDP connection between the live streaming terminal and the monitoring device.
It is a kind of to be for establish direct-connected vpn tunneling in net work teaching system in another of the invention specific embodiment System, second link block are also used to:
Controlling Master Control Room server and distributing the monitoring device is vpn tunneling server, issues the use of vpn tunneling server Microsoft Loopback Adapter address and the vpn tunneling Microsoft Loopback Adapter address that uses of live streaming terminal to the monitoring device, issue and authenticated Username and password gives the monitoring device;Described in the message completion that the monitoring device is issued based on the Master Control Room server The configuration of vpn tunneling server;Process is listened in starting on the private network IP address of monitoring device and private network port numbers, is listened to described The vpn tunneling connection request of vpn tunneling live streaming terminal;Subscription authentication and response are carried out after listening to vpn tunneling connection request; PPP Microsoft Loopback Adapter interface is generated in monitoring device, which is the vpn tunneling service that Master Control Room server issues The Microsoft Loopback Adapter address that device uses;
Controlling Master Control Room server and distributing the live streaming terminal is that terminal is broadcast live in vpn tunneling, notifies the live streaming terminal VPN The IP address and port numbers of tunnel server are that the public network of the monitoring device maps IP address and public network port number, and issue into The username and password of row authentication gives the live streaming terminal, and the live streaming terminal establishes vpn tunneling connection to monitoring device transmission Request, the monitoring device listens to after this establishes vpn tunneling connection request and carries out subscription authentication and response, and Master Control Room is taken It is handed down to the live streaming terminal in the Microsoft Loopback Adapter address that business device distributes to the vpn tunneling live streaming terminal;The live streaming terminal connects The Microsoft Loopback Adapter address that the vpn tunneling live streaming terminal that monitoring device issues uses is received, generates PPP Microsoft Loopback Adapter in live streaming terminal Interface completes the foundation of direct-connected vpn tunneling.
Fig. 3 shows a kind of for establishing the knot of the equipment of direct-connected vpn tunneling in net work teaching system of the embodiment of the present application Structure block diagram.
Referring to Fig. 3, a kind of equipment for establishing direct-connected vpn tunneling in net work teaching system, comprising: processor (processor) 301, memory (memory) 302 and bus 303;
Wherein,
The processor 301 and memory 302 complete mutual communication by the bus 303;
The processor 301 is used to call the program instruction in the memory 302, to execute above-mentioned each method embodiment Provided method, for example, step 1, Master Control Room server establishes vpn tunneling with live streaming terminal and monitoring device respectively; UDP connection is established between the live streaming terminal and the monitoring device;Step 2, the Master Control Room server is based on the foundation Its vpn tunneling between the live streaming terminal and the monitoring device, build between the live streaming terminal and described monitoring device Vertical UDP connection, establishes the direct-connected vpn tunneling between the live streaming terminal and the monitoring device.
The present embodiment discloses a kind of computer program product, and the computer program product includes being stored in non-transient calculating Computer program on machine readable storage medium storing program for executing, the computer program include program instruction, when described program instruction is calculated When machine executes, computer is able to carry out method provided by above-mentioned each method embodiment, for example, step 1, Master Control Room service Device establishes vpn tunneling with live streaming terminal and monitoring device respectively;UDP company is established between the live streaming terminal and the monitoring device It connects;Step 2, its VPN between the live streaming terminal and the monitoring device of the Master Control Room server based on the foundation UDP connection is established between tunnel, the live streaming terminal and the monitoring device, establishes the live streaming terminal and the monitoring device Between direct-connected vpn tunneling.
The present embodiment provides a kind of non-transient computer readable storage medium, the non-transient computer readable storage medium Computer instruction is stored, the computer instruction makes the computer execute method provided by above-mentioned each method embodiment, example It such as include: step 1, Master Control Room server establishes vpn tunneling with live streaming terminal and monitoring device respectively;The live streaming terminal and institute It states and establishes UDP connection between monitoring device;Step 2, itself and the live streaming of the Master Control Room server based on the foundation be eventually It holds and establishes UDP connection between the vpn tunneling between the monitoring device, the live streaming terminal and the monitoring device, establish institute State the direct-connected vpn tunneling between live streaming terminal and the monitoring device.
Those of ordinary skill in the art will appreciate that: realize that all or part of the steps of above method embodiment can pass through The relevant hardware of program instruction is completed, and program above-mentioned can be stored in a computer readable storage medium, the program When being executed, step including the steps of the foregoing method embodiments is executed;And storage medium above-mentioned includes: ROM, RAM, magnetic disk or light The various media that can store program code such as disk.
Described above is only to illustrate for establishing the embodiments such as equipment of direct-connected vpn tunneling in net work teaching system Property, wherein the unit as illustrated by the separation member may or may not be physically separated, as unit The component of display may or may not be physical unit, it can and it is in one place, or may be distributed over more In a network unit.Some or all of the modules therein can be selected to realize this embodiment scheme according to the actual needs Purpose.Those of ordinary skill in the art are without paying creative labor, it can understand and implement.
Through the above description of the embodiments, those skilled in the art can be understood that each embodiment can It realizes by means of software and necessary general hardware platform, naturally it is also possible to pass through hardware.Based on this understanding, on Stating technical solution, substantially the part that contributes to existing technology can be embodied in the form of software products in other words, should Computer software product may be stored in a computer readable storage medium, such as ROM/RAM, magnetic disk, CD, including several fingers It enables and using so that a computer equipment (can be personal computer, server or the network equipment etc.) executes each implementation Method described in certain parts of example or embodiment.
Finally, the present processes are only preferable embodiment, it is not intended to limit the scope of the present invention.It is all Within the spirit and principles in the present invention, any modification, equivalent replacement, improvement and so on should be included in protection of the invention Within the scope of.

Claims (10)

1. a kind of method for establishing direct-connected vpn tunneling in net work teaching system characterized by comprising
Step 1, Master Control Room server establishes vpn tunneling with live streaming terminal and monitoring device respectively;The live streaming terminal with it is described UDP connection is established between monitoring device;
Step 2, its VPN between the live streaming terminal and the monitoring device of the Master Control Room server based on the foundation UDP connection is established between tunnel, the live streaming terminal and the monitoring device, establishes the live streaming terminal and the monitoring device Between direct-connected vpn tunneling.
2. the method as described in claim 1, which is characterized in that Master Control Room server described in the step 1 and live streaming terminal The step of establishing vpn tunneling further comprises:
Live streaming terminal NAT device generate the live streaming terminal private network IP address and corresponding end slogan and public network mapping IP address and The mapping table of corresponding end slogan;
Private network IP address and corresponding end slogan of the terminal based on the live streaming terminal is broadcast live, is built to Master Control Room server transmission Vertical vpn tunneling request;
The private network IP address and corresponding end slogan that the NAT device of live streaming terminal establishes live streaming terminal described in vpn tunneling request turn The Master Control Room server is sent to after being changed to the public network mapping IP address and port numbers of the live streaming terminal;The Master Control Room clothes The vpn tunneling of establishing that business device responds the live streaming terminal is requested, and the foundation of itself and the live streaming terminal room vpn tunneling is completed.
3. the method as described in claim 1, which is characterized in that Master Control Room server and monitoring device described in the step 1 The step of establishing vpn tunneling further comprises:
The NAT device of monitoring device generate the monitoring device private network IP address and corresponding end slogan and public network mapping IP address and The mapping table of corresponding end slogan;
Private network IP address and corresponding end slogan of the monitoring device based on the monitoring device are built to Master Control Room server transmission Vertical vpn tunneling request;
The NAT device of monitoring device establishes the private network IP address of monitoring device described in vpn tunneling request and corresponding end slogan turns The Master Control Room server is sent to after being changed to the public network mapping IP address and port numbers of the monitoring device;The Master Control Room clothes The vpn tunneling of establishing that business device responds the monitoring device is requested, and the foundation of its vpn tunneling between the monitoring device is completed.
4. the method as described in claim 1, which is characterized in that establish UDP between the live streaming terminal and the monitoring device The step of connection, further comprises:
Agreement is passed through come the cross-over NAT equipment that burrows by NAT between live streaming terminal and monitoring device, establishes UDP between the two Connection.
5. the method as described in claim 1, which is characterized in that the step 2 further comprises:
Master Control Room server distribution monitoring device and live streaming terminal are respectively that vpn tunneling role server and vpn tunneling live streaming are whole Role is held, issues configuration information to the live streaming terminal and the monitoring device, so that the live streaming terminal and the monitoring are set It is standby that direct-connected vpn tunneling is established by UDP connection.
6. method as claimed in claim 4, which is characterized in that establish UDP between the live streaming terminal and the monitoring device The step of connection, further comprises:
The public network that Master Control Room server obtains the live streaming terminal maps IP address and corresponding end slogan and the monitoring device Public network mapping IP address and corresponding end slogan, the public network mapping IP address of the live streaming terminal and corresponding end slogan are sent to The public network of the monitoring device is mapped IP address and corresponding end slogan is sent to client, for described by the monitoring device Terminal and the monitoring device is broadcast live, the cross-over NAT equipment that burrows is carried out based on the IP address and corresponding end slogan respectively received, builds Stand the UDP connection between the live streaming terminal and the monitoring device.
7. method as claimed in claim 5, which is characterized in that the step 2 further comprises:
It is vpn tunneling server that Master Control Room server, which distributes the monitoring device, issues the virtual net that vpn tunneling server uses Card address and the vpn tunneling Microsoft Loopback Adapter address that uses of live streaming terminal to the monitoring device, issue carry out authentication user name and Password gives the monitoring device;The monitoring device completes the vpn tunneling based on the message that the Master Control Room server issues The configuration of server;Process is listened in starting on the private network IP address of monitoring device and private network port numbers, listens to the vpn tunneling The vpn tunneling connection request of terminal is broadcast live;Subscription authentication and response are carried out after listening to vpn tunneling connection request;It is monitoring PPP Microsoft Loopback Adapter interface is generated in equipment, which is that the vpn tunneling server that Master Control Room server issues uses Microsoft Loopback Adapter address;
It is that terminal is broadcast live in vpn tunneling that Master Control Room server, which distributes the live streaming terminal, notifies the live streaming terminal vpn tunneling service The IP address and port numbers of device be that the public network of the monitoring device maps IP address and public network port number, and issues and authenticated Username and password gives the live streaming terminal, and the live streaming terminal establishes vpn tunneling connection request to monitoring device transmission, described Monitoring device listens to after this establishes vpn tunneling connection request and carries out subscription authentication and response, and Master Control Room server is distributed The live streaming terminal is handed down to the Microsoft Loopback Adapter address of vpn tunneling live streaming terminal;The live streaming terminal receives monitoring and sets The Microsoft Loopback Adapter address that the standby vpn tunneling live streaming terminal issued uses, generates PPP Microsoft Loopback Adapter interface in live streaming terminal, complete At the foundation of direct-connected vpn tunneling.
8. a kind of system for establishing direct-connected vpn tunneling in net work teaching system characterized by comprising
First link block establishes vpn tunneling with live streaming terminal and monitoring device respectively for controlling Master Control Room server;Control UDP connection is established between the live streaming terminal and the monitoring device;
Second link block, for control the Master Control Room server based on the foundation it is with the live streaming terminal and described Vpn tunneling, the live streaming terminal between monitoring device and UDP connection is established between the monitoring device, establishes the live streaming eventually Direct-connected vpn tunneling between end and the monitoring device.
9. system as claimed in claim 8, which is characterized in that first link block is also used to:
The NAT device of control live streaming terminal generates the private network IP address and corresponding end slogan and public network mapping IP of the live streaming terminal The mapping table of location and corresponding end slogan;
Private network IP address and corresponding end slogan of the control live streaming terminal based on the live streaming terminal, send out to the Master Control Room server It send and establishes vpn tunneling request;
The NAT device of control live streaming terminal establishes the private network IP address and corresponding ports that terminal is broadcast live described in vpn tunneling request The Master Control Room server is sent to after number being converted to the public network mapping IP address and port numbers of the live streaming terminal;The master control The vpn tunneling of establishing that room server responds the live streaming terminal is requested, and completes it with described and building for terminal room vpn tunneling is broadcast live It is vertical.
10. system as claimed in claim 8, which is characterized in that first link block is also used to:
The NAT device of control monitoring device generates the private network IP address and corresponding end slogan and public network mapping IP of the monitoring device The mapping table of location and corresponding end slogan;
Private network IP address and corresponding end slogan of the monitoring device based on the monitoring device are controlled, is sent out to the Master Control Room server It send and establishes vpn tunneling request;
The NAT device of control monitoring device establishes the private network IP address and corresponding ports of monitoring device described in vpn tunneling request The Master Control Room server is sent to after number being converted to the public network mapping IP address and port numbers of the monitoring device;The master control What room server responded the monitoring device establishes vpn tunneling request, completes its vpn tunneling between the monitoring device and builds It is vertical.
CN201710481207.9A 2017-06-22 2017-06-22 It is a kind of for establishing the method and system of direct-connected vpn tunneling in net work teaching system Pending CN109120491A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710481207.9A CN109120491A (en) 2017-06-22 2017-06-22 It is a kind of for establishing the method and system of direct-connected vpn tunneling in net work teaching system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710481207.9A CN109120491A (en) 2017-06-22 2017-06-22 It is a kind of for establishing the method and system of direct-connected vpn tunneling in net work teaching system

Publications (1)

Publication Number Publication Date
CN109120491A true CN109120491A (en) 2019-01-01

Family

ID=64732624

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710481207.9A Pending CN109120491A (en) 2017-06-22 2017-06-22 It is a kind of for establishing the method and system of direct-connected vpn tunneling in net work teaching system

Country Status (1)

Country Link
CN (1) CN109120491A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110740087A (en) * 2019-09-18 2020-01-31 视联动力信息技术股份有限公司 Message transmission method, terminal, gateway device, electronic device and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103426281A (en) * 2013-07-31 2013-12-04 宏景电子(芜湖)有限公司 Test car remote monitoring and management system and control method thereof
CN104506802A (en) * 2014-12-17 2015-04-08 浙江宇视科技有限公司 Video monitoring system, and method for monitoring video data through traversing NAT (Network Address Translation)
CN105933198A (en) * 2016-04-21 2016-09-07 浙江宇视科技有限公司 Device for establishing direct connection VPN tunnel

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103426281A (en) * 2013-07-31 2013-12-04 宏景电子(芜湖)有限公司 Test car remote monitoring and management system and control method thereof
CN104506802A (en) * 2014-12-17 2015-04-08 浙江宇视科技有限公司 Video monitoring system, and method for monitoring video data through traversing NAT (Network Address Translation)
CN105933198A (en) * 2016-04-21 2016-09-07 浙江宇视科技有限公司 Device for establishing direct connection VPN tunnel

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110740087A (en) * 2019-09-18 2020-01-31 视联动力信息技术股份有限公司 Message transmission method, terminal, gateway device, electronic device and storage medium

Similar Documents

Publication Publication Date Title
US20190182155A1 (en) Distributed Network Sharing And Traffic Isolation
US11588683B2 (en) Stitching enterprise virtual private networks (VPNs) with cloud virtual private clouds (VPCs)
JP6322727B2 (en) Low latency connectivity to workspaces in cloud computing environments
US9491002B1 (en) Managing communications involving external nodes of provided computer networks
US7840701B2 (en) Dynamic system and method for virtual private network (VPN) packet level routing using dual-NAT method
EP2840743B1 (en) Method and system for realizing virtual network
US9973379B1 (en) Managing integration of external nodes into provided computer networks
EP2619959B1 (en) Providing virtual networks using multi-tenant relays
US9356860B1 (en) Managing external communications for provided computer networks
CN106209643B (en) Message forwarding method and device
EP2351315B1 (en) A virtualization platform
US10033622B2 (en) Controller-based dynamic routing in a software defined network environment
US20110317698A1 (en) Multicast-Enabled Address Resolution Protocol (ME-ARP)
JP2016171591A (en) Provision of logical networking function for managed computer network
JP2014007681A (en) Network system, and management device thereof, switch thereof
CN103685026A (en) Virtual network access method and system
CN106878133B (en) Message forwarding method and device
US11659058B2 (en) Provider network connectivity management for provider network substrate extensions
CN102845123A (en) Virtual private cloud connection method and tunnel proxy server
CN111698346B (en) Private network address conversion method and device, private network gateway and storage medium
EP3371933A1 (en) Automatic provisioning of lisp mobility networks
JP2019519146A (en) Routing establishment, packet transmission
CN107547403B (en) Message forwarding method, message assistance device, controller and host
CN107659930A (en) A kind of AP connection control methods and device
US11411771B1 (en) Networking in provider network substrate extensions

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20190101