CN109936524A - A kind of smart phone flow agent management system and method - Google Patents
A kind of smart phone flow agent management system and method Download PDFInfo
- Publication number
- CN109936524A CN109936524A CN201711348173.2A CN201711348173A CN109936524A CN 109936524 A CN109936524 A CN 109936524A CN 201711348173 A CN201711348173 A CN 201711348173A CN 109936524 A CN109936524 A CN 109936524A
- Authority
- CN
- China
- Prior art keywords
- user
- gateway
- data
- server
- management
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention provides a kind of smart phone flow agent management system and method, and wherein system includes: the end mobile phone terminal app program, for realizing user's registration and logs in and use traffic management;The server-side administrative center is checked for realizing user management, proxy gateway management and system running log;The proxy gateway, data forwarding service is provided for user, for smart phone app end program the uplink traffic of mobile phone by being sent to proxy gateway after encryption, proxy gateway carries out data forwarding, then the data received using being sent to the end smart phone app program after encryption;The gateway charging, the network packet for passing through gateway using the packet capturing function of libpcap, crawl.Using the above scheme, stability is good, highly-safe, can check that user connects quantity and using bandwidth, the system expandability is strong, can be by way of increasing physical machine come range of activating business at any time from the background.
Description
Technical field
The invention belongs to field of communication technology more particularly to a kind of smart phone flow agent management system and sides
Method.
Background technique
At full speed with mobile internet surfing equipment is popularized, and people are in life, work, in study too busy to get away wireless network, hand
The machine network user using upper, chats in APP, sees that video, browsing webpage have become major demands.Such as wechat, Taobao, discussion bar
The higher application of frequency of use, it is larger to expend flow using picture, video as main contents by three, and 3G/4G flow rate are high
It is expensive, so the traffic management technology based on orientation flow has been more and more widely used.
Current traffic management is oriented traffic management primarily directed to the flow of the single app of smart phone, can not
It is widely used in the orientation traffic management of whole mobile phone flow.
Therefore, the prior art is defective, needs to improve.
Summary of the invention
Object of the present invention is to realize a kind of smart phone flow system of operation and management, flowtube is carried out to whole mobile phone network
Reason provides safe and stable internet for user using financial level data protection mode based on operator's orientation flow techniques
Access, and a kind of smart phone flow system of operation and management and method are provided.
Technical scheme is as follows:
A kind of smart phone flow agent management system, wherein include: the end smart phone app program, server-side administrative center,
Proxy gateway and gateway charging;The end mobile phone terminal app program for realizing user's registration and logs in and uses traffic management;
The server-side administrative center is checked for realizing user management, proxy gateway management and system running log;The agency
Gateway provides data forwarding service for user, and smart phone app end program is sent to after the uplink traffic of mobile phone is passed through encryption
Proxy gateway, proxy gateway carry out data forwarding, then the data received using being sent to the end smart phone app journey after encryption
Sequence;The gateway charging, the network packet for passing through gateway using the packet capturing function of libpcap, crawl.
Furthermore, the essential information that the user management provides registration user checks that user authentication, customer flow make
With the information inspection and increase of situation, modification and deletion;The proxy gateway management, for providing proxy gateway server
Increase, modification and deletion, and is the suitable orientation flow link of user's distribution of different operators.
Furthermore, the data for providing data forwarding service for user are carried out using aes256 Encryption Algorithm
Encryption.
Furthermore, the gateway charging, since the port numbers that each user connects gateway are different, meters
Take program and according to the port numbers of data packet judge that the data packet is the data on flows packet of which user, then cumulative data packet is big
It is small, obtain the total flow size that the user uses.
Furthermore, the gateway charging, the every 10 seconds flow feelings that all users for being connected to the gateway can be used
Condition is sent to server-side administrative center, and server-side administrative center carries out the charge on traffic behavior of user according to the data reported.
A kind of management method of smart phone flow agent management system, comprising the following steps:
Step 1: user opens mobile phone terminal app, logs in and successfully clicks connection button afterwards;
Step 2: initiating management authorization requests to server-side administrative center;
Step 3: server-side administrative center enters step 4 after distributing corresponding management gateway according to the operator of user and ip;
Step 4: user's connection management gateway, after enter step 5;
Step 5: carrying out second of authorisation process, authorization enters step 6 after passing through;If authorization does not pass through, then 7 are entered step;
Step 6: gateway accounting routine starts charging;
Step 7: by proxy surfing, entering step 8;
Step 8: disconnecting agency's connection, enter step 9;
Step 9: cleaning user data enters step 10;
Step 10: closing charging.
The step 1: user uses cell-phone number and code entry mobile phone terminal app, clicks connection button;It is described further and
Speech, step 2: requesting connection authorization to server-side administrative center.
The step 3: server-side administrative center judges the ownership place of user according to the cell-phone number and ip of user, obtains distance
The nearest proxy gateway of ownership place.
The step 4: server-side administrative center requests to authorize to proxy gateway simultaneously, proxy gateway return a string 64
Random string returns to server-side administrative center as authorization token and one port numbers for mobile phone terminal app connection,
The authorization token that the ip of proxy gateway, previous step return and connecting pin slogan are returned to mobile phone terminal by server-side administrative center
app。
The step 5: mobile phone terminal App connects proxy gateway with port by ip, after successful connection, all nets of this mobile phone
Network communication data will use token as key to carry out aes256 encrypted transmission to proxy gateway, and proxy gateway gets number
According to rear, data deciphering is carried out using the token of the user, if data deciphering fails, then shows that the user token is invalid
, the forwarding that not will do it data in next step extracts original purpose ip and the port of data packet, net if successful decryption
The communication data packet putting row data forwarding into, while will acquire carries out aes256 encryption using token and is sent to the end app, app
It receives data to be decrypted, submits to each application program, complete the forwarding process of data.
Step 6: running accounting routine on proxy gateway simultaneously, accounting routine carries out network interface card by using libpcap and grabs
Packet, extracts the port information in data packet to judge user, while recording the communication flows size of user, primary transmission in 10 seconds
The billing operation of user is carried out to server-side administrative center.
Technical solution of the present invention beneficial effect is: stability is good, highly-safe, can check that user connects at any time from the background
Quantity and use bandwidth, the system expandability is strong, can be by way of increasing physical machine come range of activating business.
Detailed description of the invention
Fig. 1 is flow chart of the method for the present invention.
Specific embodiment
Below in conjunction with the drawings and specific embodiments, the present invention is described in detail.
Embodiment 1
Present system is made of four major parts: the end smart phone app program (android/ios), server-side administrative center, generation
Manage gateway and gateway accounting routine;It is specific:
1, the end mobile phone terminal app program
App provide user's registration and log in and using traffic management function.User, can a key point inside app after logging in
It hits and uses mobile data traffic management function.
2, server-side administrative center
Administrative center includes that user management, proxy gateway management and system running log such as check at the functions.Wherein, user management
The essential information for providing registration user checks, user authentication, the information inspection of customer flow service condition and modification, deletion etc.
Function.
Proxy gateway management provides the increase of proxy gateway server, modification and deletion function and relevant link distribution
The function of management, the as suitable orientation flow link of user's distribution of different operators.
3, proxy gateway
Proxy gateway provides data forwarding service for user, and data are encrypted using aes256 Encryption Algorithm, app handle
For the uplink traffic of machine by being sent to proxy gateway after encryption, proxy gateway carries out data forwarding, then the data received are made
With being sent to the end app after encryption.
4, gateway charging
Accounting routine uses the packet capturing function of libpcap, grabs the network packet by gateway, since each user connects net
The port numbers of pass are different, therefore accounting routine may determine which user is the data packet be according to the port numbers of data packet
Data on flows packet, then the size of cumulative data packet, the total flow size that the available user uses.Accounting routine every 10 seconds
The traffic conditions that all users for being connected to the gateway use can be sent to server-side administrative center, administrative center is according to charging
The data that program reports carry out the charge on traffic behavior of user.
The management process of present system entirety is as follows:
Step 1: user opens mobile phone terminal app, logs in and successfully clicks connection button afterwards;
Step 2: initiating management authorization requests to server-side administrative center;
Step 3: server-side administrative center enters step 4 after distributing corresponding management gateway according to the operator of user and ip;
Step 4: user's connection management gateway, after enter step 5;
Step 5: carrying out second of authorisation process, authorization enters step 6 after passing through;If authorization does not pass through, then 7 are entered step;
Step 6: gateway accounting routine starts charging;
Step 7: by proxy surfing, entering step 8;
Step 8: disconnecting agency's connection, enter step 9;
Step 9: cleaning user data enters step 10;
Step 10: closing charging.
Furthermore, step 1: user uses cell-phone number and code entry mobile phone terminal app, clicks connection button;
Furthermore, step 2: requesting connection authorization to server-side administrative center;
Furthermore, step 3: server-side administrative center judges the ownership place of user according to the cell-phone number and ip of user, obtains
The proxy gateway nearest apart from ownership place,
Furthermore, step 4: server-side administrative center requests to authorize to proxy gateway simultaneously, and proxy gateway returns a string 64
The random string of position returns to server-side management as authorization token and one port numbers for mobile phone terminal app connection
The authorization token that the ip of proxy gateway, previous step return and connecting pin slogan are returned to mobile phone by center, server-side administrative center
Hold app.
Furthermore, step 5: mobile phone terminal App connects proxy gateway with port by ip, after successful connection, this hand
Machine all-network communication data will use token as key to carry out aes256 encrypted transmission to proxy gateway, proxy gateway
After getting data, data deciphering is carried out using the token of the user, if data deciphering fails, then shows the user token
Be it is invalid, not will do it the forwardings of data in next step and extract original purpose ip and the end of data packet if successful decryption
Mouthful, gateway carries out data forwarding, while the communication data packet that will acquire carries out aes256 encryption using token and is sent to app
End, app receive data and are decrypted, submit to each application program, complete the forwarding process of data.
Furthermore, step 6: running accounting routine simultaneously on proxy gateway, accounting routine is by using libpcap
Network interface card packet capturing is carried out, extracts the port information in data packet to judge user, while recording the communication flows size of user, 10
Second is once sent to the billing operation that server-side administrative center carries out user.
Technical solution of the present invention beneficial effect is: stability is good, highly-safe, can check that user connects quantity at any time from the background
With use bandwidth, the system expandability is strong, can be by way of increasing physical machine come range of activating business.
It should be understood that for those of ordinary skills, it can be modified or changed according to the above description,
And all these modifications and variations should all belong to the protection domain of appended claims of the present invention.
Claims (10)
1. a kind of smart phone flow agent management system characterized by comprising the end smart phone app program, service end pipe
Reason center, proxy gateway and gateway charging;The end mobile phone terminal app program for realizing user's registration and logs in and uses stream
Buret reason;The server-side administrative center is checked for realizing user management, proxy gateway management and system running log;
The proxy gateway provides data forwarding service for user, and the uplink traffic of mobile phone is passed through encryption by smart phone app end program
After be sent to proxy gateway, proxy gateway carries out data forwarding, then the data received using being sent to intelligent hand after encryption
The end machine app program;The gateway charging, the network packet for passing through gateway using the packet capturing function of libpcap, crawl.
2. smart phone flow agent management system as described in claim 1, which is characterized in that the user management provides note
Volume user essential information check, user authentication, the information inspection of customer flow service condition and increase, modification and deletion;
The proxy gateway management is modified and is deleted, and be the use of different operators for providing the increase of proxy gateway server
The suitable orientation flow link of family distribution.
3. smart phone flow agent management system as described in claim 1, which is characterized in that described to provide data for user
The data of forwarding service are encrypted using aes256 Encryption Algorithm.
4. smart phone flow agent management system as described in claim 1, which is characterized in that the gateway charging, due to
The port numbers that each user connects gateway are different, therefore accounting routine judges the data packet according to the port numbers of data packet
It is the data on flows packet of which user, then the size of cumulative data packet, obtains the total flow size that the user uses.
5. smart phone flow agent management system as claimed in claim 4, which is characterized in that the gateway charging, every 10
The traffic conditions that all users for being connected to the gateway use can be sent to server-side administrative center, server-side administrative center by the second
The charge on traffic behavior of user is carried out according to the data reported.
6. a kind of management method of smart phone flow agent management system as described in claim 1, which is characterized in that including
Following steps:
Step 1: user opens mobile phone terminal app, logs in and successfully clicks connection button afterwards;
Step 2: initiating management authorization requests to server-side administrative center;
Step 3: server-side administrative center enters step 4 after distributing corresponding management gateway according to the operator of user and ip;
Step 4: user's connection management gateway, after enter step 5;
Step 5: carrying out second of authorisation process, authorization enters step 6 after passing through;If authorization does not pass through, then 7 are entered step;
Step 6: gateway accounting routine starts charging;
Step 7: by proxy surfing, entering step 8;
Step 8: disconnecting agency's connection, enter step 9;
Step 9: cleaning user data enters step 10;
Step 10: closing charging.
7. management method as claimed in claim 6, which is characterized in that the step 1: user uses cell-phone number and code entry
Mobile phone terminal app clicks connection button;It is described furthermore, step 2: to server-side administrative center request connection authorization.
8. management method as claimed in claim 6, which is characterized in that the step 3: server-side administrative center is according to user's
Cell-phone number and ip judge the ownership place of user, obtain the proxy gateway nearest apart from ownership place.
9. management method as claimed in claim 6, which is characterized in that the step 4: server-side administrative center is simultaneously to agency
Gateway requests authorization, proxy gateway return a string 64 random string as authorization token and one for mobile phone terminal
The port numbers of app connection return to server-side administrative center, and server-side administrative center returns to the ip of proxy gateway, previous step
Authorization token and connecting pin slogan return to mobile phone terminal app.
10. management method as claimed in claim 6, which is characterized in that the step 5: mobile phone terminal App is connected by ip and port
Proxy gateway is connect, after successful connection, this mobile phone all-network communication data will use token as key to carry out aes256
Encrypted transmission is to proxy gateway, after proxy gateway gets data, carries out data deciphering using the token of the user, in full
Fail according to decryption, then show the user token be it is invalid, not will do it the forwardings of data in next step, if successful decryption,
Original purpose ip and the port of data packet are extracted, the communication data packet that gateway carries out data forwarding, while will acquire uses
Token carries out aes256 encryption and is sent to the end app, and app receives data and is decrypted, and submits to each application program, completes number
According to forwarding process.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711348173.2A CN109936524A (en) | 2017-12-15 | 2017-12-15 | A kind of smart phone flow agent management system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711348173.2A CN109936524A (en) | 2017-12-15 | 2017-12-15 | A kind of smart phone flow agent management system and method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN109936524A true CN109936524A (en) | 2019-06-25 |
Family
ID=66979719
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201711348173.2A Pending CN109936524A (en) | 2017-12-15 | 2017-12-15 | A kind of smart phone flow agent management system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109936524A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2021196915A1 (en) * | 2020-04-02 | 2021-10-07 | 深圳壹账通智能科技有限公司 | Encryption and decryption operation-based data transmission methods and systems, and computer device |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104468269A (en) * | 2014-12-01 | 2015-03-25 | 郭丹 | Directional traffic monitoring method based on Android terminal device |
| CN104936159A (en) * | 2015-06-18 | 2015-09-23 | 广东隆之源科技有限公司 | Device and method for lowering traffic charge of mobile terminal |
| CN106101177A (en) * | 2016-05-27 | 2016-11-09 | 北京小米移动软件有限公司 | Network access method and device |
| US20160359694A1 (en) * | 2011-09-27 | 2016-12-08 | At&T Intellectual Property L, L.P. | Method and apparatus for dynamic service provisioning for machine to machine (m2m) devices in a communications network |
| CN106529280A (en) * | 2016-10-20 | 2017-03-22 | 乐视控股(北京)有限公司 | Method and device for controlling VPN application of mobile equipment |
| CN106961339A (en) * | 2017-03-24 | 2017-07-18 | 网宿科技股份有限公司 | Realize the method and system of orientation flow |
| CN106973107A (en) * | 2017-03-29 | 2017-07-21 | 小沃科技有限公司 | A kind of mobile client orientation flow agency plant realized based on hook modes and method |
| CN106998316A (en) * | 2016-01-22 | 2017-08-01 | 中国移动通信集团公司 | A kind of method for authenticating, applications client and gateway device |
-
2017
- 2017-12-15 CN CN201711348173.2A patent/CN109936524A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20160359694A1 (en) * | 2011-09-27 | 2016-12-08 | At&T Intellectual Property L, L.P. | Method and apparatus for dynamic service provisioning for machine to machine (m2m) devices in a communications network |
| CN104468269A (en) * | 2014-12-01 | 2015-03-25 | 郭丹 | Directional traffic monitoring method based on Android terminal device |
| CN104936159A (en) * | 2015-06-18 | 2015-09-23 | 广东隆之源科技有限公司 | Device and method for lowering traffic charge of mobile terminal |
| CN106998316A (en) * | 2016-01-22 | 2017-08-01 | 中国移动通信集团公司 | A kind of method for authenticating, applications client and gateway device |
| CN106101177A (en) * | 2016-05-27 | 2016-11-09 | 北京小米移动软件有限公司 | Network access method and device |
| CN106529280A (en) * | 2016-10-20 | 2017-03-22 | 乐视控股(北京)有限公司 | Method and device for controlling VPN application of mobile equipment |
| CN106961339A (en) * | 2017-03-24 | 2017-07-18 | 网宿科技股份有限公司 | Realize the method and system of orientation flow |
| CN106973107A (en) * | 2017-03-29 | 2017-07-21 | 小沃科技有限公司 | A kind of mobile client orientation flow agency plant realized based on hook modes and method |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2021196915A1 (en) * | 2020-04-02 | 2021-10-07 | 深圳壹账通智能科技有限公司 | Encryption and decryption operation-based data transmission methods and systems, and computer device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104601327B (en) | A kind of safe verification method, relevant device and system | |
| CN103581108B (en) | Login authentication method, login authentication client, login authentication server and login authentication system | |
| CN107995499B (en) | Media data processing method and device and related equipment | |
| CN103875211B (en) | A kind of internet account number management method, manager, server and system | |
| CN104158824B (en) | Genuine cyber identification authentication method and system | |
| US10142322B2 (en) | Methods and apparatus for authenticating identity of web access from a network element | |
| WO2011035684A1 (en) | Network selection method based on multi-link and apparatus thereof | |
| CN103221943A (en) | Enterprise access control and accounting allocation for access networks | |
| WO2019095726A1 (en) | Convergent charging method and device | |
| JP2010515977A (en) | Network processing and information processing system and method using persistence / anonymous identifier | |
| CN106789834A (en) | Method, gateway, PCRF network elements and system for identifying user identity | |
| CN104768188B (en) | A kind of flow control methods and device | |
| CN103067342B (en) | A kind of equipment, system and method that external authentication is carried out using EAP | |
| CN104038937A (en) | Network access authentication method applicable to satellite mobile communication network | |
| CN103201730B (en) | The network system of adaptation network strategy is configured based on device service processor | |
| CN106534129B (en) | Connection control method and device | |
| CN101247239A (en) | Authenticated authorization accounting system and implementing method thereof | |
| CN104683296B (en) | Safety certifying method and system | |
| Escudero-Pascual et al. | Questioning lawful access to traffic data | |
| CN109286506B (en) | Method, system and device for charging flow | |
| CN103581864B (en) | Towards the QoS real-time monitoring methods and system of mobile value-added service | |
| CN103621125B (en) | The system and method that OpenID and communication network are integrated | |
| CN105871824A (en) | Payment type Web Portal authentication method, device and system | |
| CN109936524A (en) | A kind of smart phone flow agent management system and method | |
| WO2016101595A1 (en) | Method, apparatus and system for accessing third-party resource through application |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20190625 |
|
| RJ01 | Rejection of invention patent application after publication |