CN109379450B - Network interface interaction management method and device, computer equipment and storage medium - Google Patents
Network interface interaction management method and device, computer equipment and storage medium Download PDFInfo
- Publication number
- CN109379450B CN109379450B CN201811184447.3A CN201811184447A CN109379450B CN 109379450 B CN109379450 B CN 109379450B CN 201811184447 A CN201811184447 A CN 201811184447A CN 109379450 B CN109379450 B CN 109379450B
- Authority
- CN
- China
- Prior art keywords
- operator
- network
- network address
- interface
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
Abstract
The embodiment of the invention discloses a network interface interaction management method, a network interface interaction management device, computer equipment and a storage medium, wherein the method comprises the steps of analyzing an interface setting request of a user to set an operator outgoing interface and a server opposite interface; acquiring a preset public network address field and a preset private network address field in the interface setting request; determining each operator outgoing interface and a network address conversion rule corresponding to each server pair interface according to the preset public network address field and the preset private network address field; and respectively configuring all the network address conversion rules to the operator interface and the server interface corresponding to the network address conversion rules, so that the user access request sent by the client realizes network conversion transmission between the operator network and the enterprise server. The invention can reduce the cost of internet export and network delay and improve the network access quality and network reliability by optimizing the process in network transmission.
Description
Technical Field
The present invention relates to the field of computers, and in particular, to a network interface interaction management method, apparatus, computer device, and storage medium.
Background
An ISP (Internet Service Provider) is a telecommunications operator that provides Internet access services, information services, and value-added services to a large number of users in a comprehensive manner. The service provided by enterprises in the market to the internet is mainly realized by accessing the networks of three major operators (such as telecom, Unicom and Mobile), and the ISPs of other minor operators are indirectly communicated through the three major operators. Generally, there are two main ways for an enterprise's servers and ISPs to interface:
one way is for the enterprise server to rent the ISP's address field, which is advertised by the ISP over the internet. The disadvantage is that if the enterprise server rents the address of the telecommunication, the communicating user needs to switch from the communicating network to the telecommunication network when accessing the enterprise server, and the quality and experience of the cross-network transmission are not good. If each enterprise server leases the addresses of three ISPs at the same time, the equipment cost and management complexity of the enterprise may increase.
Another way is that through peer-to-peer connection between the self-purchase address segment and three ISPs through a Border Gateway Protocol (BGP), one address can be used to interface with three ISPs or all ISPs in the country, which ensures the best access experience, but the price is very high, and at the same time, the cost of internet export is also increased, which causes the limitation of address selection of a server cluster.
Disclosure of Invention
Embodiments of the present invention provide a network interface interaction management method, apparatus, computer device, and storage medium, which can reduce internet export cost and network delay, and improve network access quality and network reliability.
In a first aspect, an embodiment of the present invention provides a network interface interaction management method, where the method includes:
analyzing an interface setting request of a user to set an operator outgoing interface and a server docking interface, wherein different operator outgoing interfaces are accessed to different operator networks, and different server docking interfaces are accessed to different enterprise servers;
acquiring a preset public network address field and a preset private network address field in the interface setting request;
determining each operator outgoing interface and a network address conversion rule corresponding to each server pair interface according to the preset public network address field and the preset private network address field;
and respectively configuring all the network address conversion rules to the operator interface and the server interface corresponding to the network address conversion rules, so that the user access request sent by the client realizes network conversion transmission between the operator network and the enterprise server.
In a second aspect, an embodiment of the present invention further provides a network interface interaction management apparatus, where the apparatus includes:
the request analysis unit is used for analyzing the interface setting request of the user so as to set an operator output interface and a server docking interface, wherein different operator output interfaces are accessed to different operator networks, and different server docking interfaces are accessed to different enterprise servers;
the acquisition unit is used for acquiring a preset public network address field and a preset private network address field in the interface setting request;
a rule determining unit, configured to determine, according to the preset public network address field and the preset private network address field, a network address translation rule corresponding to each operator outgoing interface and each server pair interface;
and the rule configuration unit is used for respectively configuring all the network address conversion rules to the operator interface and the server interface corresponding to the network address conversion rules so as to realize network conversion transmission between the operator network and the enterprise server by the user access request sent by the client.
In a third aspect, an embodiment of the present invention further provides a computer device, which includes a memory and a processor, where the memory stores a computer program, and the processor implements the above method when executing the computer program.
In a fourth aspect, the present invention also provides a computer-readable storage medium, which stores a computer program, the computer program including program instructions, which when executed by a processor, implement the above method.
The embodiment of the invention provides a network interface interaction management method, a network interface interaction management device, computer equipment and a storage medium. Wherein the method comprises the following steps: analyzing an interface setting request of a user to set an operator outgoing interface and a server docking interface, wherein different operator outgoing interfaces are accessed to different operator networks, and different server docking interfaces are accessed to different enterprise servers; acquiring a preset public network address field and a preset private network address field in the interface setting request; determining each operator outgoing interface and a network address conversion rule corresponding to each server pair interface according to the preset public network address field and the preset private network address field; and respectively configuring all the network address conversion rules to the operator interface and the server interface corresponding to the network address conversion rules, so that the user access request sent by the client realizes network conversion transmission between the operator network and the enterprise server. According to the embodiment of the invention, through process optimization in network transmission, the enterprise server can quickly perform cross-network transmission on the corresponding data provided by the enterprise server, so that the Internet export cost and the network delay are reduced, and the network access quality and the network reliability are improved.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.
Fig. 1 is a schematic flowchart of a network interface interaction management method according to an embodiment of the present invention;
fig. 1a is a schematic view of an application scenario of a network interface interaction management method according to an embodiment of the present invention;
fig. 2 is a schematic sub-flow diagram of a network interface interaction management method according to an embodiment of the present invention;
fig. 3 is a schematic sub-flow chart of a network interface interaction management method according to an embodiment of the present invention;
FIG. 4 is a schematic block diagram of a network interface interaction management apparatus according to an embodiment of the present invention;
fig. 5 is a schematic block diagram of a rule determining unit of a network interface interaction management apparatus according to an embodiment of the present invention;
fig. 6 is a schematic block diagram of a rule configuration unit of a network interface interaction management apparatus according to an embodiment of the present invention;
fig. 7 is a schematic structural diagram of a computer device according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
It will be understood that the terms "comprises" and/or "comprising," when used in this specification and the appended claims, specify the presence of stated features, integers, steps, operations, elements, and/or components, but do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, and/or groups thereof.
It is also to be understood that the terminology used in the description of the invention herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the invention. As used in the specification of the present invention and the appended claims, the singular forms "a," "an," and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise.
Referring to fig. 1 and fig. 1a, fig. 1 is a schematic flowchart of a network interface interaction management method according to an embodiment of the present application, and fig. 1a is a schematic scene diagram of the network interface interaction management method according to the embodiment of the present application. The network interface interaction management method is applied to the management server 10. The management server 10 controls the private network address preset in the enterprise server 20 to be changed into a rented public network address, and then the public network address is converted into a corresponding operator address according to an operator to which a network belongs when a user transmits data, so that the enterprise server 20 can quickly transmit the corresponding data provided by the enterprise server across networks, the internet export cost and the network delay are reduced, and the network access quality and the network reliability are improved. The steps of the network interface interaction management method will be described in detail below in the perspective of the management server 10.
Referring to fig. 1, fig. 1 is a schematic flowchart of a network interface interaction management method according to an embodiment of the present invention. As shown in fig. 1, the steps of the method include steps S101 to S104.
S101, analyzing the interface setting request of the user to set an operator outgoing interface and a server opposite interface, wherein different operator outgoing interfaces are accessed to different operator networks, and different server opposite interfaces are accessed to different enterprise servers.
In this embodiment, the management server can receive an interface setting request from a user, and set an operator outgoing interface and a server docking interface on the management server according to the interface setting request. The number of the operator outbound interfaces is not limited in this embodiment, and each operator outbound interface is used for accessing a corresponding operator network. In general, the operator network may include a mobile network, a connectivity network, a telecommunications network, a penny doctor network, and the like. According to the number of the network load users in China, the mobile network, the communication network, the telecommunication network and the like can be determined to be three major operator networks in China, and the rest operators can be medium and small operators in China, namely minor operator networks.
In addition, the number of the enterprise servers is not limited herein, each enterprise server corresponds to one IP address, when a user performs data communication between enterprise servers of the same enterprise, a private network that can be set inside the company is adopted, that is, each IP address is a private address, and in order to enable the enterprise servers to perform data communication with the external internet, the management server needs to set a public network address at this time, and each private address is mapped with a corresponding public network address through the server interface, so as to implement communication between the enterprise servers, and between the enterprise servers and external clients or servers.
S102, obtaining the preset public network address field and the preset private network address field in the interface setting request.
In this embodiment, the interface setting request may include a preset public network address field and a preset private network address field, so that the management server performs corresponding rule configuration on the operator outgoing interface and the server interface according to the interface setting request.
The preset public network address field may be an address field included in any operator network such as a leased telecommunication network, a communication network, a mobile network, a peng network, and the like, that is, an address field included in a primary operator network may be leased, and an address field included in a secondary operator network may be leased. Of course, the preset public network address field can also be an address field which is purchased by the user and can be interconnected with other networks.
The preset private network address field can be an address field which is set according to the requirements of the user and can be convenient for managing the local area network formed by the enterprise servers.
S103, determining each operator outgoing interface and a network address conversion rule corresponding to each server pair interface according to the preset public network address field and the preset private network address field.
In this embodiment, the management server can perform data communication with the corresponding operator network through the operator outgoing interface, but when the management server uses a preset public network address segment to perform communication connection with an external operator network, it needs to determine whether the operator network to which the public network address segment belongs is the same as the operator network to be connected, if not, the current public network address segment needs to be converted into an address segment included in the operator network to be connected through a network address conversion rule, and the current network address conversion rule corresponds to the operator outgoing interface to which the operator network to be connected is accessed. The private network address is used for local area network communication between enterprise servers, and in order to perform data communication with an external operator network and reduce the rental cost of a public network address, a private network address field needs to be converted into a public network address field through a corresponding network address conversion rule, and the network address conversion rule corresponds to a server docking interface connected with the enterprise server.
Specifically, the network address translation rule is also called NAT rule, where NAT uses an internal address in an internal network of a local area network, and when an internal node wants to communicate with an external network, the internal address is replaced with an external address at a gateway (which may be understood as an exit, such as a gate of a courtyard), so that the network address translation rule is normally used on an external public network (internet). Although the internal address can be chosen randomly, the following addresses are commonly used: 10.0.0-10.255.255.255, 172.16.0.0-172.16.255.255, 192.168.0-192.168.255.255.
In the present application, the internal address may correspond to a private network address, and the external address may correspond to a public network address, and in general, a large number of network devices may be allocated to a private network address in a local area network, and when they need to perform internet communication, the private network address needs to be converted into a public network address, which is called as NAT rule.
Further, as shown in fig. 2, the operator output interface includes a plurality of main operator output interfaces and a sub-operator output interface, where different main operator output interfaces access different main operator networks, and the sub-operator output interface accesses different sub-operator networks, where the sub-operator networks are other operator networks excluding the main operator network; the step S103 may specifically include steps S201 to S205:
s201, judging whether the public network address field is located in an address field included in one main operator network.
In order to determine the network address translation rule of each operator outbound interface, it is necessary to determine whether the public network address field is included in an address field of one of the main operator networks, that is, whether the public network address field is an address field of one of the leased main operator networks. If it is determined that the public network address field is the address field of one of the main operator networks leased, step S202 is performed.
S202, if the public network address field is located in the address field included in one of the main operator networks, the one of the main operator networks is used as a first main operator network, and the rest of the main operator networks are used as second main operator networks.
If the public network address field is located in the address field included in one of the main operator networks, it indicates that the public network address field is the address field of the leased one of the main operator networks, and at this time, the main operator networks need to be classified into a first main operator network and a second main operator network.
S203, determining that the network address conversion rule corresponding to the main operator output interface accessed by the first main operator network and the network address conversion rule corresponding to the secondary operator output interface accessed by each secondary operator network are the same, and keeping the access address sent by the user unchanged.
When the public network address field is the address field of the first main operator network, the public network address field can directly perform network interconnection communication with the first main operator network and the secondary operator network, and at the moment, the public network address field does not need to be converted.
S204, determining a network address conversion rule corresponding to the main operator output interface accessed by each second main operator network to enable the access address sent by the user to realize conversion transmission between the second main operator network and the enterprise server.
When the public network address field is accessed to the second main operator network, the public network address field needs to be converted into an address field in the second main operator network, and corresponding network intercommunication can be realized.
S205, determining the network address conversion rule corresponding to each server interface to realize the one-to-one conversion between the public network address field and the private network address field.
In order to realize communication between the enterprise server and the external operator network, the private network address field and the public network address field need to be converted in a one-to-one correspondence manner.
Further, before the step S205, the method may further include:
s206, if the public network address field is not located in the address field included in one of the main operator networks, determining the network address conversion rule corresponding to the secondary operator outgoing interface accessed by each secondary operator network to keep the access address sent by the user unchanged.
If the public network address field is not located in the address field included in one of the main operator networks, the public network address field is an address list of a leased medium and small operator or a single public network address is purchased by the public network address field, and the public network address field can be directly communicated with the secondary operator network at the moment and needs to be converted.
S207, determining a network address conversion rule corresponding to a main operator output interface accessed by each main operator network to realize conversion transmission between the main operator network and the enterprise server for the access address sent by the user.
In order to ensure that the public network address segment can be in normal communication connection with the main operator network, the public network address segment needs to be correspondingly converted at the main operator output interface, so that the public network address segment can be ensured to be directly communicated with different main operator networks.
Further, the operator outbound interface includes three primary operator outbound interfaces and one secondary operator outbound interface.
S104, all the network address conversion rules are respectively configured to the operator interface and the server interface corresponding to the network address conversion rules, so that the user access request sent by the client realizes network conversion transmission between the operator network and the enterprise server.
In this embodiment, after the network address translation rules corresponding to the operator interface and the server interface are determined, corresponding configuration needs to be performed, so that the public network address can be automatically translated after reaching the operator interface, and the private network address can be translated with the corresponding public network address at the server interface. For example, when the public network address field is an address field of a telecommunication network, a network address conversion rule configured at a communication network output interface accessed by the communication network can convert a public network address into a corresponding communication network address; the network address conversion rule configured at the mobile network interface of the mobile network access can convert the public network address into a corresponding mobile network address; the network conversion rule configured at the network outlet interface of the secondary operator accessed by the secondary operator network can directly enable the public network address to carry out communication transmission in the secondary operator network, namely the public network address does not need to be converted at the moment. Similarly, the related conversion situation when the public network address segment is the address segment of the mobile network or the address segment of the connected network is the same as the principle described above.
In addition, when the public network address field is not an address field of any one of the communication network, the mobile network and the telecommunication network, it is necessary to configure corresponding network address conversion rules at the communication network outgoing interface accessed by the communication network, the mobile network outgoing interface accessed by the mobile network and the telecommunication network outgoing interface accessed by the telecommunication network to enable the public network address to be correspondingly converted.
Further, as shown in fig. 3, the step S104 of "enabling the user access request sent by the client to implement network switching transmission between the operator network and the enterprise server" may specifically include steps S301 to S304.
S301, if a user access request sent by a client is received, an access address in the user access request is obtained and an operator network where the client is located is determined.
When receiving an access request sent by a client, the operator network where the client is located needs to be determined, so as to find an operator outgoing interface accessed to the operator network.
S302, a network address conversion rule configured by an operator output interface accessed by an operator network where the client is located is called, so that the access address is converted into a public network address in a corresponding public network address field.
The network address conversion rule is called to convert the access address into the public network address, so that the network connection between the management server and the client is realized.
S303, determining a corresponding server interface according to the public network address.
In order to implement communication between the management server and the enterprise server, a server interface corresponding to the public network address needs to be determined.
S304, calling a network address conversion rule configured by the server interface to convert the public network address into a corresponding private network address, thereby determining the enterprise server receiving and processing the user access request.
The method comprises the steps that a network address conversion rule configured by a determined server interface is called, so that a public network address can be converted into a corresponding private network address, and an enterprise server which a client requests to access is determined.
As a further step, before the step S303, the method further includes:
s305, if the access address is failed to be converted into the public network address in the corresponding public network address field, the user access request is transferred to another operator network through a border gateway protocol in a peer-to-peer manner, and the access address in the user access request is updated to be a new access address corresponding to the other operator network.
If the access address is not converted into the public network address in the corresponding public network address segment, the problem of network connection at the moment is indicated, in order to avoid network delay or interruption, a user access request can be equivalently transferred into another operator network through BGP, and then corresponding conversion connection is carried out, so that the continuity of network connection is ensured.
S306, calling a network address conversion rule configured by the operator output interface accessed by the other operator network so as to convert the new access address into a public network address in the corresponding public network address field.
The network address conversion plan configured by the operator output interface counted by the other transferred operator network can be called, so that normal connection of the network is ensured.
As a further step, the step S104 further includes:
and S307, if response information generated by the enterprise server according to the user access request is received, acquiring a target address of the response information. And the target address for acquiring the response information can determine the address of the server needing to acquire the message of the system server.
S308, determining the operator network to which the target address belongs. In order to facilitate network address translation, the operator network to which the target address refers needs to be determined.
S309, calling a network address conversion rule configured by an operator output interface accessed by the operator network to which the target address belongs to convert the public network address into the operator network address to which the target address belongs, thereby realizing the network connection between the enterprise server and the client. In order to realize network connection between the enterprise server and the client, the public network address needs to be converted into an operator network address to which the target address belongs.
S310, according to the network connection, the response information is sent to the target address. After the network connection, the response information acquired from the system server can be sent to the target address to finish the acquisition and transmission of data, thereby saving the network transmission time and improving the efficiency of data exchange
In summary, the embodiment of the present invention enables the enterprise server to quickly perform cross-network transmission on the corresponding data provided by the enterprise server through process optimization in network transmission, reduces internet export cost and network delay, and improves network access quality and network reliability.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program, which can be stored in a computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a Read-Only Memory (ROM), or the like.
Referring to fig. 4, in response to the above-mentioned network interface interaction management method, an embodiment of the present invention further provides a network interface interaction management apparatus, where the apparatus 100 includes: a request analysis unit 101, an acquisition unit 102, a rule determination unit 103, and a rule configuration unit 104.
The request parsing unit 101 is configured to parse an interface setting request of a user to set an operator outbound interface and a server docking interface, where different operator outbound interfaces access different operator networks and different server docking interfaces access different enterprise servers.
The obtaining unit 102 is configured to obtain a preset public network address field and a preset private network address field in the interface setting request.
The rule determining unit 103 is configured to determine, according to the preset public network address field and the preset private network address field, a network address translation rule corresponding to each operator outgoing interface and each server pair interface.
Further, as shown in fig. 5, the rule determining unit 103 may specifically include a first judging unit 201, a preparing unit 202, a first determining unit 203, a second determining unit 204, and a third determining unit 205.
The first determining unit 201 is configured to determine whether the public network address field is located in an address field included in one of the main operator networks.
The allocating unit 202 is configured to, if the public network address segment is located in an address segment included in one of the main operator networks, use the one of the main operator networks as a first main operator network, and use the remaining main operator networks as a second main operator network.
The first determining unit 203 is configured to determine that both the network address translation rule corresponding to the main operator outbound interface accessed by the first main operator network and the network address translation rule corresponding to the secondary operator outbound interface accessed by each secondary operator network keep the access address sent by the user unchanged.
The second determining unit 204 is configured to determine that the network address conversion rule corresponding to the main operator output interface accessed by each second main operator network is to enable the access address sent by the user to implement conversion transmission between the second main operator network and the enterprise server.
The third determining unit 205 is configured to determine that the network address translation rule corresponding to each server interface is to implement one-to-one translation between the public network address field and the private network address field.
Further, before the third determining unit 205, the rule determining unit 103 may further include:
a fourth determining unit 206, configured to determine, if the public network address field is not located in an address field included in one of the primary operator networks, that a network address translation rule corresponding to a secondary operator egress interface accessed by each secondary operator network is to keep an access address sent by the user unchanged.
A fifth determining unit 207, configured to determine a network address translation rule corresponding to the main operator outbound interface accessed by each main operator network, so that the access address sent by the user realizes translation and transmission between the main operator network and the enterprise server.
The rule configuring unit 104 is configured to configure all network address translation rules to the operator interface and the server interface corresponding to the rules, respectively, so that the user access request sent by the client realizes network translation transmission between the operator network and the enterprise server.
Further, as shown in fig. 6, the rule configuring unit 104 may specifically include an access address obtaining unit 301, a first rule invoking unit 302, an interface determining unit 303, and a second rule invoking unit 304.
The access address obtaining unit 301 is configured to, if a user access request sent by a client is received, obtain an access address in the user access request and determine an operator network where the client is located.
The first rule invoking unit 302 is configured to invoke a network address translation rule configured by an operator egress interface to which an operator network where the client is located accesses, so that the access address is translated into a public network address in the corresponding public network address segment.
The interface determining unit 303 is configured to determine a corresponding server interface according to the public network address.
The second rule invoking unit 304 is configured to invoke a network address translation rule configured by the server interface, so that the public network address is translated into a corresponding private network address, thereby determining an enterprise server that receives and processes the user access request.
As a further step, before the interface determining unit 303, the rule configuring unit 104 may further include:
and a forwarding unit 305, configured to, if the access address fails to be converted into the public network address in the corresponding public network address field, forward the user access request peer-to-peer to another operator network through a border gateway protocol, where the access address in the user access request is updated to a new access address corresponding to the another operator network.
A third rule invoking unit 306, configured to invoke a network address translation rule configured by the operator egress interface accessed by the other operator network, so as to translate the new access address into a public network address in the corresponding public network address segment.
As a further step, the rule configuration unit 104 may further include:
and a destination address obtaining unit 307, configured to obtain a destination address of the response information if response information generated by the enterprise server according to the user access request is received.
A network determining unit 308, configured to determine an operator network to which the target address belongs.
A network address invoking unit 309, configured to invoke a network address translation rule configured by an operator outgoing interface of an operator network access to which the target address belongs, so as to translate a public network address into an operator network address to which the target address belongs, thereby implementing network connection between the enterprise server and the client.
An information sending unit 310, configured to send the response information to the destination address according to the network connection.
It should be noted that, as can be clearly understood by those skilled in the art, the specific implementation process of the network interface interaction management apparatus 400 and each unit may refer to the corresponding description in the foregoing method embodiment, and for convenience and conciseness of description, no further description is provided herein.
As can be seen from the above, in terms of hardware implementation, the above request analysis unit 101, the obtaining unit 102, the rule determination unit 103, the rule configuration unit 104, and the like may be embedded in a device that is managed by network interface interaction in a hardware form or independent of the network interface interaction, or may be stored in a memory of the network interface interaction management device in a software form, so that the processor invokes and executes operations corresponding to the above units. The processor can be a Central Processing Unit (CPU), a microprocessor, a singlechip and the like.
The network interface interaction management means may be implemented in the form of a computer program that can be run on a computer device as shown in fig. 7.
FIG. 7 is a schematic diagram of a computer device according to the present invention. The device may be a server, where the server may be an independent server or a server cluster composed of a plurality of servers.
Referring to fig. 7, the computer device 400 includes a processor 402, a memory, an internal memory 404, and a network interface 405 connected by a system bus 401, wherein the memory may include a nonvolatile storage medium 403 and the internal memory 404.
The non-volatile storage medium 403 may store an operating system 4031 and a computer program 4032 that, when executed, may cause the processor 402 to perform a network interface interaction management method.
The processor 402 is used to provide computing and control capabilities that support the operation of the overall computer device 400.
The memory 404 provides an environment for the operation of the computer program 4032 in the non-volatile storage medium 403, which when executed by the processor 402, causes the processor 402 to perform a network interface interaction management method.
The network interface 405 is used for network communication with other devices. Those skilled in the art will appreciate that the architecture shown in fig. 7 is merely a block diagram of some of the structures associated with the disclosed aspects and is not intended to limit the computing device 400 to which the disclosed aspects apply, as a particular computing device 400 may include more or less components than those shown, or may combine certain components, or have a different arrangement of components.
Wherein the processor 402 is configured to run the computer program 4032 stored in the memory to implement the steps of: analyzing an interface setting request of a user to set an operator outgoing interface and a server docking interface, wherein different operator outgoing interfaces are accessed to different operator networks, and different server docking interfaces are accessed to different enterprise servers; acquiring a preset public network address field and a preset private network address field in the interface setting request; determining each operator outgoing interface and a network address conversion rule corresponding to each server pair interface according to the preset public network address field and the preset private network address field; and respectively configuring all the network address conversion rules to the operator interface and the server interface corresponding to the network address conversion rules, so that the user access request sent by the client realizes network conversion transmission between the operator network and the enterprise server.
In one embodiment, the operator egress interface includes a plurality of primary operator egress interfaces and a secondary operator egress interface, different primary operator egress interfaces access different primary operator networks, the secondary operator egress interfaces access different secondary operator networks, the secondary operator networks are other operator networks excluding the primary operator networks; when the processor 402 implements the step of determining the network address conversion rule corresponding to each operator outgoing interface and each server pair interface according to the preset public network address field and private network address field, the following steps are specifically implemented: judging whether the public network address field is positioned in an address field included in one main operator network; if the public network address field is located in an address field included in one of the main operator networks, taking the one of the main operator networks as a first main operator network, and taking the rest of the main operator networks as a second main operator network; determining that the network address translation rule corresponding to the main operator output interface accessed by the first main operator network and the network address translation rule corresponding to the secondary operator output interface accessed by each secondary operator network are both the access address sent by the user is kept unchanged; determining a network address conversion rule corresponding to a main operator output interface accessed by each second main operator network to realize conversion transmission between the second main operator network and the enterprise server for an access address sent by a user; and determining a network address conversion rule corresponding to each server interface to realize one-to-one conversion between the public network address field and the private network address field.
In an embodiment, before implementing the step of determining the network address translation rule corresponding to each server interface to implement one-to-one translation between the public network address field and the private network address field, the processor 402 specifically implements the following steps: if the public network address field is not located in the address field included in one of the main operator networks, determining a network address conversion rule corresponding to a secondary operator output interface accessed by each secondary operator network to keep an access address sent by a user unchanged; and determining a network address conversion rule corresponding to a main operator output interface accessed by each main operator network to realize conversion transmission between the main operator network and the enterprise server for the access address sent by the user.
In an embodiment, when the processor 402 implements the step of enabling the access address sent by the user to implement the conversion transmission between the operator network and the enterprise server, the following steps are specifically implemented: if a user access request sent by a client is received, acquiring an access address in the user access request and determining an operator network where the client is located; calling a network address conversion rule configured by an operator output interface accessed by an operator network where the client is located so as to convert the access address into a public network address in a corresponding public network address field; determining a corresponding server interface according to the public network address; and calling a network address conversion rule configured by the server interface to convert the public network address into a corresponding private network address so as to determine an enterprise server for receiving and processing the user access request.
In an embodiment, before implementing the step of determining the corresponding server interface according to the public network address, the processor 402 specifically implements the following steps: if the access address is failed to be converted into the public network address in the corresponding public network address field, a user access request is transferred to another operator network through a border gateway protocol in a peer-to-peer manner, and the access address in the user access request is updated to a new access address corresponding to the other operator network; and calling a network address conversion rule configured by the operator output interface accessed by the other operator network so as to convert the new access address into a public network address in a corresponding public network address field.
In an embodiment, the processor 402 further implements the steps of: if response information generated by the enterprise server according to the user access request is received, acquiring a target address of the response information; determining an operator network to which the target address belongs; calling a network address conversion rule configured by an operator output interface accessed by the operator network to which the target address belongs to convert the public network address into the operator network address to which the target address belongs, thereby realizing the network connection between the enterprise server and the client; and sending the response information to the target address according to the network connection.
It should be understood that in the embodiment of the present Application, the Processor 402 may be a Central Processing Unit (CPU), and the Processor 402 may also be other general-purpose processors, Digital Signal Processors (DSPs), Application Specific Integrated Circuits (ASICs), Field Programmable Gate Arrays (FPGAs) or other Programmable logic devices, discrete Gate or transistor logic devices, discrete hardware components, and the like. Wherein a general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.
It will be understood by those skilled in the art that all or part of the flow of the method implementing the above embodiments may be implemented by a computer program instructing associated hardware. The computer program may be stored in a storage medium, which is a computer-readable storage medium. The computer program is executed by at least one processor in the computer system to implement the flow steps of the embodiments of the method described above.
Accordingly, the present invention also provides a computer-readable storage medium. The storage medium may be a computer-readable storage medium. The storage medium stores a computer program that, when executed by a processor, causes the processor to perform the steps of: analyzing an interface setting request of a user to set an operator outgoing interface and a server docking interface, wherein different operator outgoing interfaces are accessed to different operator networks, and different server docking interfaces are accessed to different enterprise servers; acquiring a preset public network address field and a preset private network address field in the interface setting request; determining each operator outgoing interface and a network address conversion rule corresponding to each server pair interface according to the preset public network address field and the preset private network address field; and respectively configuring all the network address conversion rules to the operator interface and the server interface corresponding to the network address conversion rules, so that the user access request sent by the client realizes network conversion transmission between the operator network and the enterprise server.
In one embodiment, the operator egress interface includes a plurality of primary operator egress interfaces and a secondary operator egress interface, different primary operator egress interfaces access different primary operator networks, the secondary operator egress interfaces access different secondary operator networks, the secondary operator networks are other operator networks excluding the primary operator networks; when the processor executes the step of determining the network address conversion rule corresponding to each operator outgoing interface and each server pair interface according to the preset public network address field and the preset private network address field, the following steps are specifically executed: judging whether the public network address field is positioned in an address field included in one main operator network; if the public network address field is located in an address field included in one of the main operator networks, taking the one of the main operator networks as a first main operator network, and taking the rest of the main operator networks as a second main operator network; determining that the network address translation rule corresponding to the main operator output interface accessed by the first main operator network and the network address translation rule corresponding to the secondary operator output interface accessed by each secondary operator network are both the access address sent by the user is kept unchanged; determining a network address conversion rule corresponding to a main operator output interface accessed by each second main operator network to realize conversion transmission between the second main operator network and the enterprise server for an access address sent by a user; and determining a network address conversion rule corresponding to each server interface to realize one-to-one conversion between the public network address field and the private network address field.
In an embodiment, before the step of determining the network address translation rule corresponding to each server interface to implement one-to-one translation between the public network address field and the private network address field, the processor specifically executes the following steps: if the public network address field is not located in the address field included in one of the main operator networks, determining a network address conversion rule corresponding to a secondary operator output interface accessed by each secondary operator network to keep an access address sent by a user unchanged; and determining a network address conversion rule corresponding to a main operator output interface accessed by each main operator network to realize conversion transmission between the main operator network and the enterprise server for the access address sent by the user.
In an embodiment, when executing the step of enabling the access address sent by the user to implement conversion transmission between the operator network and the enterprise server, the processor specifically executes the following steps: if a user access request sent by a client is received, acquiring an access address in the user access request and determining an operator network where the client is located; calling a network address conversion rule configured by an operator output interface accessed by an operator network where the client is located so as to convert the access address into a public network address in a corresponding public network address field; determining a corresponding server interface according to the public network address; and calling a network address conversion rule configured by the server interface to convert the public network address into a corresponding private network address so as to determine an enterprise server for receiving and processing the user access request.
In an embodiment, before the step of determining the corresponding server interface according to the public network address is executed, the processor specifically executes the following steps: if the access address is failed to be converted into the public network address in the corresponding public network address field, a user access request is transferred to another operator network through a border gateway protocol in a peer-to-peer manner, and the access address in the user access request is updated to a new access address corresponding to the other operator network; and calling a network address conversion rule configured by the operator output interface accessed by the other operator network so as to convert the new access address into a public network address in a corresponding public network address field.
In one embodiment, the processor further performs the steps of: if response information generated by the enterprise server according to the user access request is received, acquiring a target address of the response information; determining an operator network to which the target address belongs; calling a network address conversion rule configured by an operator output interface accessed by the operator network to which the target address belongs to convert the public network address into the operator network address to which the target address belongs, thereby realizing the network connection between the enterprise server and the client; and sending the response information to the target address according to the network connection.
The storage medium may be a usb disk, a removable hard disk, a Read-Only Memory (ROM), a magnetic disk, or an optical disk, which can store various computer readable storage media.
Those of ordinary skill in the art will appreciate that the elements and algorithm steps of the examples described in connection with the embodiments disclosed herein may be embodied in electronic hardware, computer software, or combinations of both, and that the components and steps of the examples have been described in a functional general in the foregoing description for the purpose of illustrating clearly the interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the implementation. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
In the embodiments provided in the present invention, it should be understood that the disclosed apparatus and method may be implemented in other ways. For example, the above-described apparatus embodiments are merely illustrative. For example, the division of each unit is only one logic function division, and there may be another division manner in actual implementation. For example, various elements or components may be combined or may be integrated into another system, or some features may be omitted, or not implemented.
The steps in the method of the embodiment of the invention can be sequentially adjusted, combined and deleted according to actual needs. The units in the device of the embodiment of the invention can be merged, divided and deleted according to actual needs. In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a storage medium. Based on such understanding, the technical solution of the present invention essentially or partially contributes to the prior art, or all or part of the technical solution can be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a terminal, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention.
While the invention has been described with reference to specific embodiments, the invention is not limited thereto, and various equivalent modifications and substitutions can be easily made by those skilled in the art within the technical scope of the invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (10)
1. A network interface interaction management method is applied to a management server and comprises the following steps:
analyzing an interface setting request of a user to set an operator outgoing interface and a server docking interface, wherein different operator outgoing interfaces are accessed to different operator networks, and different server docking interfaces are accessed to different enterprise servers;
acquiring a preset public network address field and a preset private network address field in the interface setting request;
determining a network address conversion rule corresponding to each operator output interface according to the preset public network address field, and determining a network address conversion rule corresponding to each server pair interface according to the preset public network address field and the private network address field;
and respectively configuring all the network address conversion rules to the operator interface and the server interface corresponding to the network address conversion rules, so that the user access request sent by the client realizes network conversion transmission between the operator network and the enterprise server.
2. The method of claim 1, wherein the operator outbound interface comprises a plurality of primary operator outbound interfaces and a secondary operator outbound interface, different primary operator outbound interfaces accessing different primary operator networks, and a secondary operator outbound interface accessing different secondary operator networks, the secondary operator networks being other operator networks excluding the primary operator networks; the determining of the network address conversion rule corresponding to each operator outgoing interface and each server opposite interface according to the preset public network address field and the preset private network address field comprises:
judging whether the public network address field is positioned in an address field included in one main operator network;
if the public network address field is located in an address field included in one of the main operator networks, taking the one of the main operator networks as a first main operator network, and taking the rest of the main operator networks as a second main operator network;
determining that the network address translation rule corresponding to the main operator output interface accessed by the first main operator network and the network address translation rule corresponding to the secondary operator output interface accessed by each secondary operator network are both the access address sent by the user is kept unchanged;
determining a network address conversion rule corresponding to a main operator output interface accessed by each second main operator network to realize conversion transmission between the second main operator network and the enterprise server for an access address sent by a user;
and determining a network address conversion rule corresponding to each server interface to realize one-to-one conversion between the public network address field and the private network address field.
3. The method of claim 2, wherein before determining the network address translation rule corresponding to each server interface to implement a one-to-one translation between the public network address field and the private network address field, the method further comprises:
if the public network address field is not located in the address field included in one of the main operator networks, determining a network address conversion rule corresponding to a secondary operator output interface accessed by each secondary operator network to keep an access address sent by a user unchanged;
and determining a network address conversion rule corresponding to a main operator output interface accessed by each main operator network to realize conversion transmission between the main operator network and the enterprise server for the access address sent by the user.
4. The method of claim 1, wherein enabling the access address sent by the user to effect a translation transmission between the carrier network and the enterprise server comprises:
if a user access request sent by a client is received, acquiring an access address in the user access request and determining an operator network where the client is located;
calling a network address conversion rule configured by an operator output interface accessed by an operator network where the client is located so as to convert the access address into a public network address in a corresponding public network address field;
determining a corresponding server interface according to the public network address;
and calling a network address conversion rule configured by the server interface to convert the public network address into a corresponding private network address so as to determine an enterprise server for receiving and processing the user access request.
5. The method of claim 4, wherein prior to determining the corresponding server interface based on the public network address, further comprising:
if the access address is failed to be converted into the public network address in the corresponding public network address field, a user access request is transferred to another operator network through a border gateway protocol in a peer-to-peer manner, and the access address in the user access request is updated to a new access address corresponding to the other operator network;
and calling a network address conversion rule configured by the operator output interface accessed by the other operator network so as to convert the new access address into a public network address in a corresponding public network address field.
6. The method of claim 5, wherein the method further comprises:
if response information generated by the enterprise server according to the user access request is received, acquiring a target address of the response information;
determining an operator network to which the target address belongs;
calling a network address conversion rule configured by an operator output interface accessed by the operator network to which the target address belongs to convert the public network address into the operator network address to which the target address belongs, thereby realizing the network connection between the enterprise server and the client;
and sending the response information to the target address according to the network connection.
7. A network interface interaction management device is applied to a management server and comprises the following components:
the request analysis unit is used for analyzing the interface setting request of the user so as to set an operator output interface and a server docking interface, wherein different operator output interfaces are accessed to different operator networks, and different server docking interfaces are accessed to different enterprise servers;
the acquisition unit is used for acquiring a preset public network address field and a preset private network address field in the interface setting request;
a rule determining unit, configured to determine, according to the preset public network address segment, a network address translation rule corresponding to each operator outgoing interface, and determine, according to the preset public network address segment and the preset private network address segment, a network address translation rule corresponding to each server pair interface;
and the rule configuration unit is used for respectively configuring all the network address conversion rules to the operator interface and the server interface corresponding to the network address conversion rules so as to realize network conversion transmission between the operator network and the enterprise server by the user access request sent by the client.
8. The apparatus of claim 7, wherein the rule determining unit comprises:
a first judging unit, configured to judge whether the public network address segment is located in an address segment included in one of the main operator networks;
the equipment unit is used for taking one of the main operator networks as a first main operator network and taking the rest of the main operator networks as a second main operator network if the public network address field is positioned in an address field included in the one of the main operator networks;
a first determining unit, configured to determine that both a network address translation rule corresponding to a primary operator outbound interface to which the first primary operator network accesses and a network address translation rule corresponding to a secondary operator outbound interface to which each secondary operator network accesses are unchanged from an access address sent by a user;
the second determining unit is used for determining a network address conversion rule corresponding to a main operator output interface accessed by each second main operator network to realize conversion transmission between the second main operator network and the enterprise server for the access address sent by the user;
and the third determining unit is used for determining the network address conversion rule corresponding to each server interface to realize the one-to-one conversion between the public network address field and the private network address field.
9. A computer arrangement, characterized in that the computer arrangement comprises a memory having stored thereon a computer program and a processor implementing the method according to any of claims 1-6 when executing the computer program.
10. A computer-readable storage medium, characterized in that the storage medium stores a computer program which, when executed by a processor, causes the processor to carry out the method according to any one of claims 1-6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811184447.3A CN109379450B (en) | 2018-10-11 | 2018-10-11 | Network interface interaction management method and device, computer equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811184447.3A CN109379450B (en) | 2018-10-11 | 2018-10-11 | Network interface interaction management method and device, computer equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109379450A CN109379450A (en) | 2019-02-22 |
| CN109379450B true CN109379450B (en) | 2022-03-22 |
Family
ID=65403659
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811184447.3A Active CN109379450B (en) | 2018-10-11 | 2018-10-11 | Network interface interaction management method and device, computer equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109379450B (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111565438B (en) * | 2020-04-15 | 2022-06-21 | 中国联合网络通信集团有限公司 | Communication method and access network equipment |
| CN111565437B (en) * | 2020-04-15 | 2022-06-21 | 中国联合网络通信集团有限公司 | Communication method and access network equipment |
| CN112866116B (en) * | 2020-12-31 | 2023-06-20 | 平安科技(深圳)有限公司 | Network access detection method, device, equipment and storage medium |
| CN113225308B (en) * | 2021-03-19 | 2022-11-08 | 深圳市网心科技有限公司 | Network access control method, node equipment and server |
| CN114143251B (en) * | 2021-12-08 | 2023-10-13 | 北京天融信网络安全技术有限公司 | Intelligent routing method, intelligent routing device, electronic equipment and computer readable storage medium |
| CN114978669B (en) * | 2022-05-19 | 2024-03-15 | 杭州安恒信息技术股份有限公司 | Method, device, equipment and medium for communication between internal and external networks |
Family Cites Families (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7817547B2 (en) * | 2007-10-02 | 2010-10-19 | Microsoft Corporation | Uncovering the differences in backbone networks |
| CN101217465A (en) * | 2007-12-28 | 2008-07-09 | 北京锐安科技有限公司 | A route selecting method for multi-exit server and router |
| US8094569B2 (en) * | 2008-12-05 | 2012-01-10 | Cisco Technology, Inc. | Failover and failback of communication between a router and a network switch |
| CN101582856B (en) * | 2009-06-29 | 2012-01-11 | 杭州华三通信技术有限公司 | Session setup method of portal server and BAS (broadband access server) device and system thereof |
| CN107547689B (en) * | 2017-09-20 | 2020-12-04 | 新华三技术有限公司 | CGN (Carrier grade network Address translation) method and device |
| CN108306998B (en) * | 2018-01-24 | 2021-06-29 | 新华三技术有限公司 | Network address translation method and device |
-
2018
- 2018-10-11 CN CN201811184447.3A patent/CN109379450B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN109379450A (en) | 2019-02-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109379450B (en) | Network interface interaction management method and device, computer equipment and storage medium | |
| CN112470436B (en) | Systems, methods, and computer-readable media for providing multi-cloud connectivity | |
| WO2020253266A1 (en) | Method for providing edge service, apparatus and device | |
| US20200195511A1 (en) | Network management method and related device | |
| US10313962B2 (en) | Data packet processing method, network traffic management method, apparatus, and system | |
| US9838261B2 (en) | Method, apparatus, and system for providing network traversing service | |
| WO2017036288A1 (en) | Network element upgrading method and device | |
| CN109831548B (en) | Virtual content delivery network vCDN node establishment method and server | |
| US20210400445A1 (en) | Method and system for performing charging processing on network slice customer, and related device | |
| US10419236B1 (en) | Mobile wide area network IP translation configuration | |
| WO2020011152A1 (en) | Pfcp connection processing method and apparatus, network element, system, and storage medium | |
| TW201229779A (en) | Providing virtual networks using multi-tenant relays | |
| CN110896553A (en) | Multi-access edge computing method and platform and communication system | |
| CN116405461A (en) | Data processing method, network element equipment and readable storage medium | |
| CN114726829B (en) | Communication method, user plane gateway and communication system | |
| KR101100602B1 (en) | Method and apparatus regarding use of a service convergence fabric | |
| US10778467B2 (en) | Method for providing virtual CPE service by using single internet line and network function virtualization cloud | |
| CN113542421A (en) | Data forwarding method and device based on 5G user plane functional entity | |
| CN112243036B (en) | Data processing method and device for PaaS service, equipment and storage medium | |
| US11057241B2 (en) | Network interworking method, network element, and system | |
| JP2022533639A (en) | Method, apparatus, apparatus and storage medium for determining edge applications | |
| US20230019667A1 (en) | Network Access Control Method, SDF, CP, UP, and Network System | |
| WO2023035925A1 (en) | Service processing method, apparatus and system | |
| CN114157633B (en) | Message forwarding method and device | |
| US20200196135A1 (en) | Enhanced connectivity in dual-mode networks for single-mode nodes |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |