CN110324318B - Intranet access method and related device - Google Patents
Intranet access method and related device Download PDFInfo
- Publication number
- CN110324318B CN110324318B CN201910498916.7A CN201910498916A CN110324318B CN 110324318 B CN110324318 B CN 110324318B CN 201910498916 A CN201910498916 A CN 201910498916A CN 110324318 B CN110324318 B CN 110324318B
- Authority
- CN
- China
- Prior art keywords
- intranet
- firewall
- wireless access
- mobile wireless
- target
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0209—Architectural arrangements, e.g. perimeter networks or demilitarized zones
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/141—Setup of application sessions
Abstract
The embodiment of the invention is suitable for access control in security protection, and discloses an intranet access method and a related device, wherein the method comprises the following steps: when receiving an intranet connection request, the intranet firewall allocation equipment triggers the test of network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet; the intranet firewall distribution equipment acquires the network delay and determines a firewall corresponding to the minimum network delay as a first intranet firewall; the intranet firewall distribution equipment sends the first IP address of the first intranet firewall to the mobile wireless access equipment, so that after the wireless access equipment establishes connection with the first intranet firewall according to the first IP address, service for accessing a target intranet is provided for a user terminal. The access efficiency aiming at the target intranet can be improved through the method and the device.
Description
Technical Field
The present application relates to the field of computers, and in particular, to an intranet access method and related apparatus.
Background
With the integration of global economy, more and more enterprises have developed related businesses around the world, which requires that employees of the enterprises be dispatched to work around the world. In some office scenarios, the enterprise employee at a foreign location needs to access some resources of the intranet server, such as accessing intranet web pages, accessing files stored in a shared folder in the intranet file server, and so on. In a conventional manner, the VPN (Virtual Private Network) is usually implemented, a VPN server needs to be established in an intranet of a company, and after an external employee connects to the internet locally through a mobile phone, a computer, or the like, the external employee connects to the VPN server in the intranet through the internet, and then accesses the intranet through the VPN server. When an enterprise employee connects to the intranet through a terminal such as a computer, it is necessary to configure parameters for connecting to the intranet VPN, such as an address of an intranet VPN server, a login name and a password of a user, and then dial up and connect. The user operation is more and the latency is longer, comparatively influences connection efficiency.
Disclosure of Invention
The application provides an intranet access method and a related device, and the access efficiency aiming at a target intranet can be improved through the intranet access method and the related device.
A first aspect of an embodiment of the present invention provides an intranet access method, including:
the method comprises the steps that when an intranet firewall distribution device receives an intranet connection request aiming at a target intranet and sent by mobile wireless access equipment, network delay testing between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet is triggered;
the intranet firewall allocation equipment acquires network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet;
the intranet firewall distribution equipment determines a firewall corresponding to the minimum network delay in the network delays between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet as a first intranet firewall;
the intranet firewall allocation equipment sends a first IP address of the first intranet firewall to the mobile wireless access equipment, so that after the connection between the first IP address and the first intranet firewall is established, the first intranet firewall routes an intranet access request of the target intranet sent by the user terminal through the mobile wireless access equipment to an intranet server of the target intranet, and the first intranet firewall further sends an intranet request response message returned by the intranet server in response to the intranet access request to the user terminal through the mobile wireless access equipment.
With reference to the first aspect of the embodiment of the present invention, in a first possible implementation manner, when receiving an intranet connection request for a target intranet sent by a mobile wireless access device, the intranet firewall allocating device triggering a test of a network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet includes:
when the intranet firewall distribution equipment receives an intranet connection request aiming at a target intranet sent by the mobile wireless access equipment, sending an access device IP address of the mobile wireless access device to each intranet firewall deployed for the target intranet, so that each intranet firewall deployed for the target intranet sends a network delay test message to the mobile wireless access equipment according to the IP address of the access equipment, the mobile wireless access equipment forwards the received network delay test message to the intranet firewall distribution equipment, the network delay test message received by the intranet firewall distribution equipment carries the sending time data of each firewall deployed aiming at the target intranet for sending the network delay test message, and the mobile wireless access device receiving the reception time data of the network delay test message;
and the intranet firewall distribution equipment determines the network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the sending time data and the receiving time data carried in each received network delay test message.
With reference to the first aspect of the embodiment of the present invention, in a second possible implementation manner, when receiving an intranet connection request for a target intranet sent by a mobile wireless access device, the intranet firewall allocation device triggering a test of network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet, includes:
when the intranet firewall distribution equipment receives an intranet connection request aiming at a target intranet sent by mobile wireless access equipment, sending firewall IP addresses of each intranet firewall deployed for the target intranet to the mobile wireless access equipment, so that the mobile wireless access equipment sends network delay test messages to all firewalls deployed aiming at the target intranet according to the IP addresses of the firewalls, and forwards the received network delay test messages to the intranet firewall distribution equipment aiming at all the firewalls deployed at the target intranet, the network delay test message received by the intranet firewall distribution equipment carries the sending time data of the network delay test message sent by the mobile wireless access equipment, receiving the receiving time data of the network delay test message by each firewall deployed aiming at the target intranet;
and the intranet firewall distribution equipment determines the network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the sending time data and the receiving time data carried in each received network delay test message.
With reference to the first aspect of the embodiment of the present invention, in a third possible implementation manner, after the intranet firewall allocation device sends the first IP address of the first intranet firewall to the mobile wireless access device, the method further includes:
the intranet firewall distribution equipment periodically acquires real-time network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet;
when the intranet firewall distribution equipment determines that the intranet firewall with the minimum real-time network delay between the mobile wireless access equipment and the plurality of intranet firewalls deployed for the target intranet is not the first intranet firewall according to the real-time network delay, the intranet firewall with the minimum real-time network delay between the mobile wireless access equipment and the plurality of intranet firewalls deployed for the target intranet is determined as a second intranet firewall;
and the intranet firewall distribution equipment sends a second IP address of the second intranet firewall to the mobile wireless access equipment so that the mobile wireless access equipment establishes connection with the second intranet firewall according to the second IP address and disconnects connection with the first intranet firewall.
A second aspect of the present invention provides an intranet access method, including:
the method comprises the steps that a mobile wireless access device sends an intranet connection request aiming at a target intranet to an intranet firewall distribution device, so that the intranet firewall distribution device triggers the test of network delay between the mobile wireless access device and each intranet firewall deployed aiming at the target intranet when receiving the intranet connection request, and after the intranet firewall distribution device obtains the network delay between the mobile wireless access device and each intranet firewall deployed aiming at the target intranet, the intranet firewall corresponding to the minimum network delay in the network delay is determined as a first intranet firewall;
the mobile wireless access equipment receives a first IP address of the first intranet firewall sent by the intranet firewall distribution equipment;
the mobile wireless access equipment sends a firewall connection request to the first intranet firewall according to the first IP address, so that the first intranet firewall establishes connection with the mobile wireless access equipment according to the firewall connection request;
after receiving an intranet access request aiming at the target intranet and sent by a user terminal, the mobile wireless access equipment routes the intranet access request to an intranet server of the target intranet through the first intranet firewall;
and after receiving an intranet request response message returned by the intranet server responding to the intranet access request through the first intranet firewall, the mobile wireless access equipment sends the intranet request response message to the user terminal.
With reference to the second aspect of the embodiment of the present invention, in a first possible implementation manner, after the mobile wireless access device sends an intranet connection request for a target intranet to an intranet firewall allocation device, the method further includes:
the mobile wireless access equipment receives the IP addresses of the intranet firewalls deployed aiming at the target intranet and sent by the intranet firewall distribution equipment;
the mobile wireless access equipment sends a network delay test message to each intranet firewall deployed aiming at the target intranet according to the IP address, so that each intranet firewall deployed aiming at the target intranet returns the network delay test message to the mobile wireless access equipment after receiving the network delay test message;
and the mobile wireless access equipment determines the network delay between the mobile wireless access equipment and each intranet firewall deployed for the target intranet according to the sending time data of the network delay test message sent to each intranet firewall deployed for the target intranet and the receiving time data of the network delay test message returned by each firewall deployed for the target intranet.
With reference to the second aspect of the embodiment of the present invention, in a second possible implementation manner, the method further includes:
the mobile wireless access equipment periodically acquires real-time network delay of the mobile wireless access equipment and the first intranet firewall;
when the mobile wireless access equipment determines that the real-time network delay is larger than a preset delay threshold value, sending a firewall switching request to intranet firewall distribution equipment so that the intranet firewall distribution equipment triggers the test of the current network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the fact that the firewall switching request is received, and after the intranet firewall distribution equipment obtains the current network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet, determining a firewall corresponding to the minimum network delay in the current network delay as a third intranet firewall;
the mobile wireless access equipment receives a third IP address of the third intranet firewall sent by the intranet firewall distribution equipment;
the mobile wireless access equipment sends a firewall connection request to the third intranet firewall according to the third IP address so that the third intranet firewall establishes connection with the mobile wireless access equipment according to the firewall connection request;
and the mobile wireless access equipment is disconnected with the first intranet firewall.
A third aspect of the embodiments of the present invention provides a mobile wireless access device, including:
the device comprises a request sending unit and an intranet firewall distribution unit, wherein the request sending unit is used for sending an intranet connection request aiming at a target intranet to intranet firewall distribution equipment so that the intranet firewall distribution equipment triggers the test of network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet when receiving the intranet connection request, and the intranet firewall distribution equipment determines a firewall corresponding to the minimum network delay in the network delay as a first intranet firewall after acquiring the network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet;
the address receiving unit is used for receiving the first IP address of the first intranet firewall sent by the intranet firewall distribution equipment;
the firewall connection unit is used for sending a firewall connection request to the first intranet firewall according to the first IP address so that the first intranet firewall establishes connection with the mobile wireless access equipment according to the firewall connection request;
the message transmission unit is used for routing the intranet access request to an intranet server of the target intranet through the first intranet firewall after receiving the intranet access request aiming at the target intranet and sent by the user terminal;
the message transmission unit is further configured to send an intranet request response message to the user terminal after receiving an intranet request response message returned by the intranet server through the first intranet firewall in response to the intranet access request.
A fourth aspect of the embodiments of the present invention provides a mobile wireless access device, including a processor, a memory, and a communication interface, where the processor, the memory, and the communication interface are connected to each other, where the communication interface is configured to receive and transmit data, and the memory is configured to store program codes, and when the program codes are executed by a computer, the computer is configured to execute any one of the above-mentioned second aspect and possible implementation manners of the second aspect.
A fifth aspect of embodiments of the present invention provides a computer storage medium, which stores a computer program, where the computer program includes program instructions, and when the program instructions are executed by a computer, the computer executes any one of the above first aspect and each possible implementation manner of the first aspect, and any one of the above second aspect and each possible implementation manner of the second aspect.
In the embodiment of the invention, after receiving an intranet connection request aiming at a target intranet sent by mobile wireless access equipment, intranet firewall allocation equipment triggers a network delay test between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the intranet connection request, determines a firewall corresponding to the minimum network delay as a first intranet firewall, and establishes connection with the first intranet firewall according to a second IP address of the first intranet firewall sent by the intranet firewall allocation equipment. The mobile wireless access equipment routes the intranet access request to an intranet server of the target intranet through the first intranet firewall after receiving an intranet access request aiming at the target intranet and sent by a user terminal, and sends the intranet request response message to the user terminal after receiving an intranet request response message returned by the intranet server through the first intranet firewall responding to the intranet access request. The user terminal realizes the access to the target intranet through the intranet access frame based on the mobile wireless access equipment and the firewall deployed aiming at the target intranet, and any parameter does not need to be configured before the access, so that the access efficiency aiming at the target intranet is improved.
Drawings
In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings needed to be used in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art that other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a schematic diagram of a framework of an intranet access system according to an embodiment of the present invention;
fig. 2 is a system interaction diagram of an intranet access method according to an embodiment of the present invention;
fig. 3 is a system interaction diagram of another intranet access method according to an embodiment of the present invention;
fig. 4 is a system interaction diagram of another intranet access method provided in the embodiment of the present invention;
fig. 5 is a schematic structural diagram of a mobile wireless access device according to an embodiment of the present invention;
fig. 6 is a schematic structural diagram of another mobile wireless access device according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Fig. 1 is a schematic diagram of a framework of an intranet access system according to an embodiment of the present invention, as shown in the figure, in the framework of the intranet access system, an intranet firewall 1, an intranet firewall 2, and an intranet firewall 3 are 3 intranet firewalls deployed for a target intranet, a mobile wireless access device 1 and a mobile wireless access device 2 are respectively connected to the intranet firewall 1, the mobile wireless access device 3 is connected to the intranet firewall 3, a user terminal 1 is connected to the mobile wireless access device 2, and the user terminal 2 is connected to the mobile wireless access device.
Here, the target intranet is a local area communication network that connects various computers, servers, databases, and the like within a local geographical range of a specific enterprise, a specific organization, a specific school, and the like to one another. When a terminal or a server in a target intranet carries out communication, the communication is realized through a data link layer, and communication messages do not need to be routed through a router; when the terminal or the server outside the target intranet communicates, the communication is achieved through the network layer, communication messages sent by the terminal or the server inside the target intranet need to be routed to the terminal or the server outside the target intranet after being converted by the router through network address, and communication messages returned by the terminal or the server outside the target intranet need to be routed to the terminal or the server inside the target intranet after being converted by the router through the network address.
Here, the intranet firewall deployed for the target intranet may be a firewall deployed in each global place and configured to filter data packets entering and exiting the target intranet, and the intranet firewall is connected to the router of the target intranet through the wide area network, and further connected to the intranet server of the target intranet through the router of the target intranet.
Here, the mobile wireless access device is a mobile wireless access device which can transmit wireless network signals and has a routing function. The mobile wireless access device accesses a data network by inserting a Subscriber Identity Module (SIM) card, accesses a wired network by inserting a network cable, and accesses a wireless network by connecting a wireless fidelity (WIFI). The user terminal can access the wireless network transmitted by the mobile wireless access equipment to connect with the mobile wireless access equipment.
Here, the intranet firewall allocation apparatus may be a device, such as a GTM (Global Traffic Manager) device, which has a domain name resolution function for the target intranet and stores the IP addresses and the deployment locations of the firewalls deployed for the target intranet.
Here, the user terminal may be a terminal device having a wireless network receiving function, including a notebook computer, a mobile phone, a tablet computer, and the like.
Fig. 2 is a system interaction schematic diagram of an intranet access method provided in an embodiment of the present invention, and as shown in the figure, the intranet access method may include:
s201, the mobile wireless access equipment sends an intranet connection request aiming at a target intranet to intranet firewall distribution equipment.
Specifically, the mobile wireless access device may send an intranet connection request to the intranet firewall distribution device after being triggered to start, may send an intranet connection request to the intranet firewall distribution device after receiving a function start instruction sent by a user to access a target intranet, or may send an intranet connection request to the intranet firewall distribution device when receiving an intranet access request sent by a connected user terminal for the target intranet. The intranet connection request may carry the intranet domain name of the target intranet, so that the intranet firewall distribution device resolves the intranet domain name and then determines the intranet connection request as the intranet connection request for the target intranet.
And S202, when the intranet firewall distribution equipment receives the intranet connection request, the intranet firewall distribution equipment triggers a test of network delay between the mobile wireless access equipment and each intranet firewall deployed for the target intranet.
Here, the intranet firewall may trigger a test of a network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet after receiving the intranet connection request, may trigger a test of a network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet by the mobile wireless access device, and may trigger a test of a network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet by each intranet firewall deployed for the target intranet. The network delay between the mobile wireless access device and each intranet firewall may be a one-way network delay between the mobile wireless access device and each intranet firewall, or a round-trip network delay.
One implementation manner of the intranet firewall allocation device testing the network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet may be: the intranet firewall distribution equipment sends an access equipment IP address of the mobile wireless access equipment to each intranet firewall, each intranet firewall sends a network delay test message to the mobile wireless access equipment according to the access equipment IP address, the mobile wireless access equipment forwards the received network delay test message to the intranet firewall distribution equipment, the network delay test message received by the intranet firewall distribution equipment carries sending time data of the network delay test message sent by each intranet firewall deployed aiming at the target intranet, the mobile wireless access equipment receives receiving time data of the network delay test message, and the intranet firewall distribution equipment sends the sending time data and the receiving time data of the network delay test message according to the sending time data and the receiving time data carried in each received network delay test message, determining a one-way network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet.
Another implementation manner of the intranet firewall allocation device testing the network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet may be: the intranet firewall distribution equipment sends firewall IP addresses of all intranet firewalls deployed for the target intranet to the mobile wireless access equipment, the mobile wireless access equipment sends network delay test messages to all intranet firewalls according to the firewall IP addresses, all intranet firewalls forward the received network delay test messages to the intranet firewall distribution equipment, the network delay test messages received by the intranet firewall distribution equipment carry sending time data of the network delay test messages sent by the mobile wireless access equipment, and all intranet firewalls deployed for the target intranet receive receiving time data of the network delay test messages; and the intranet firewall distribution equipment determines the one-way network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the sending time data and the receiving time data carried in each received network delay test message.
One way for the mobile wireless access device to test the network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet may be: the intranet firewall allocation equipment sends firewall IP addresses of the intranet firewalls deployed for the target intranet to the mobile wireless access equipment, the mobile wireless access equipment sends network delay test messages to the intranet firewalls according to the IP addresses, and the intranet firewalls return the network delay test messages to the mobile wireless access equipment after receiving the network delay test messages; and the mobile wireless access equipment determines the round-trip network delay between the mobile wireless access equipment and each intranet firewall according to the sending time data of the network delay test message sent to each intranet firewall and the receiving time data of the network delay test message returned by each intranet firewall.
One implementation way of determining the network delay between the mobile wireless access device and the mobile wireless access device for each intranet firewall deployed in the target intranet may be: the intranet firewall distribution equipment sends an access equipment IP address of the mobile wireless access equipment to each intranet firewall, each intranet firewall sends a network delay test message to the mobile wireless access equipment according to the access equipment IP address, the mobile wireless access equipment returns the received network delay test message to each intranet firewall after receiving the network delay test message sent by each intranet firewall, and each intranet firewall determines the round-trip network delay between the mobile wireless access equipment and the intranet firewall according to the sending time data of the network delay test message sent to the mobile wireless access equipment and the receiving time data of the network delay test message returned by the mobile wireless access equipment.
S203, the intranet firewall allocation equipment acquires network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet.
Here, if the network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet in step S202 is obtained by the test of the intranet firewall distribution device, in step S203, the network delay determined in step S202 is obtained; step S202 is a step of sending, by the mobile wireless access device, the network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet, to the intranet firewall distribution device if the network delay is obtained by the mobile wireless access device through testing; in step S202, the network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet is determined, and if the network delay is determined by each intranet firewall deployed for the target intranet, in step S203, each intranet firewall deployed for the target intranet sends the network delay between itself and the mobile wireless access device to the intranet firewall allocation device.
And S204, the intranet firewall distribution equipment determines the firewall corresponding to the minimum network delay in the network delays between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet as a first intranet firewall.
Here, the intranet firewall allocation device determines a firewall corresponding to a network delay that is the minimum of the network delay between the mobile wireless access devices as a first intranet firewall recommended to the mobile wireless access device, and ensures the network quality of the access target intranet service provided for the user terminal after the mobile wireless access device is connected with the intranet firewall.
S205, the intranet firewall allocation device sends the first IP address of the first intranet firewall to the mobile wireless access device.
S206, the mobile wireless access equipment establishes connection with the first intranet firewall according to the first IP address.
Specifically, the mobile wireless access device sends a firewall connection request to the first intranet firewall according to the first IP address, so that the first intranet firewall establishes connection with the mobile wireless access device after passing the identity authentication of the mobile access device according to the firewall connection request.
In one implementation manner, the firewall connection request carries an access device identifier, such as an MAC address, of the mobile wireless access device, and the first intranet firewall determines that the identity authentication of the mobile wireless access device passes when determining that the access device identifier is one of the preset access device identifiers that allow connection.
In another implementation manner, the firewall connection request carries a user name and a password input by a user through the mobile wireless access device, and the first intranet firewall determines that the identity authentication of the mobile wireless access device passes when determining that the user name and the password are one of preset user names and passwords allowed to be connected.
In yet another implementation manner, the firewall connection request carries a digital certificate of the mobile wireless access device, and the first intranet firewall determines a certificate issuer of the digital certificate of the access device according to issuer information of the digital certificate of the access device carried in the digital certificate of the access device; after the first intranet firewall acquires the issuer digital certificate of the certificate issuer, the certificate fingerprint of the access equipment digital certificate is obtained by decrypting the digital signature in the access equipment digital certificate through the issuer public key contained in the issuer digital certificate and using the issuer public key, and the first intranet firewall performs hash calculation on the access equipment digital certificate by using a specified hash algorithm to obtain a digital certificate hash value; and when the first intranet firewall determines that the digital certificate hash value obtained by performing hash calculation on the first intranet firewall is consistent with the certificate fingerprint of the access equipment, determining that the identity authentication of the mobile wireless access equipment passes.
Specifically, the mobile wireless access device initiates a three-way handshake to establish a connection based on a TCP/IP protocol with the first intranet firewall, and the specific steps are as follows: the mobile wireless access equipment sends SYN (synchronization Sequence Numbers) data packets to the first intranet firewall; after receiving the SYN packet, the first intranet firewall sends a SYN + ACK (acknowledgement Character) packet to the mobile wireless access device; after receiving the SYN + ACK data packet, the mobile wireless access equipment feeds back an ACK data packet to the first intranet firewall; and after the first intranet firewall receives the ACK data packet fed back by the mobile wireless access equipment, the connection establishment between the mobile wireless access equipment and the first intranet firewall is completed.
And S207, the user terminal sends an intranet access request aiming at the target intranet to the mobile wireless access equipment.
Specifically, before step S207, the user terminal may send a wireless network connection request to the mobile wireless access device, and the mobile wireless access device may directly establish a connection with the user terminal, or establish a connection with the user terminal after being verified through user terminal identity information carried in the wireless network connection request. The user terminal identity information may be a user name and a password of a wireless network established by the mobile wireless access device and input by the user, which are received by the user terminal, or may be biometric information input by the user and received by the user terminal, or may be terminal device identification information of the user terminal.
It is understood that step S207 may be performed at any time before step S208 after the mobile wireless access device establishes a connection with the user terminal.
S208, the mobile wireless access equipment sends the intranet access request to the first intranet firewall.
S209, the first intranet firewall routes the intranet access request to the intranet server of the target intranet.
Specifically, the intranet access request is an access request for a server in a target intranet, for example, an access request for a Web server in the target intranet, an access request for an FTP server in the target intranet, an access request for a mail server in the target intranet, and the like. After receiving an intranet access request sent by the mobile wireless access equipment, the first intranet firewall sends the intranet access request to the router of the target intranet through an extranet, and the router of the target intranet routes the intranet access request to a corresponding intranet server in the target intranet through the target intranet.
S210, the intranet server returns an intranet request response message responding to the intranet access request to the first intranet firewall.
Specifically, after responding to the intranet access request and generating an intranet request response message, the intranet server sends the intranet request response message to the router of the target intranet through the target intranet, and the router of the target intranet sends the intranet request response message to the first intranet firewall through an extranet. For example, if the intranet access request requests to obtain a certain file in a file server in the target intranet, the intranet request response message may be the file sent by the file server.
And S211, the first intranet firewall sends the intranet request response message to the mobile wireless access equipment.
S212, the mobile wireless access device sends the intranet request response message to the user terminal.
In the embodiment of the invention, after receiving an intranet connection request aiming at a target intranet sent by mobile wireless access equipment, intranet firewall allocation equipment triggers a network delay test between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the intranet connection request, determines a firewall corresponding to the minimum network delay as a first intranet firewall, and establishes connection with the first intranet firewall according to a second IP address of the first intranet firewall sent by the intranet firewall allocation equipment. The mobile wireless access equipment routes the intranet access request to an intranet server of the target intranet through the first intranet firewall after receiving an intranet access request aiming at the target intranet and sent by a user terminal, and sends the intranet request response message to the user terminal after receiving an intranet request response message returned by the intranet server through the first intranet firewall responding to the intranet access request. The user terminal realizes the access to the target intranet through the intranet access frame based on the mobile wireless access equipment and the firewall deployed aiming at the target intranet, and any parameter does not need to be configured before the access, so that the access efficiency aiming at the target intranet is improved.
Referring to fig. 3, fig. 3 is a schematic system interaction diagram of another intranet access method according to an embodiment of the present invention, where after the mobile wireless access device establishes a connection with the first intranet firewall of the target intranet, the intranet firewall allocation device may monitor whether the mobile wireless access device needs to switch the connected first intranet firewall, and the specific implementation steps may be as follows:
s301, the intranet firewall allocation device periodically obtains real-time network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet.
Here, an implementation manner of the intranet firewall allocation device acquiring the real-time network delay may refer to an implementation manner of the intranet firewall allocation device acquiring the network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet in step S202 in the embodiment corresponding to fig. 2, which is not described herein again.
S302, the intranet firewall judges whether the first intranet firewall is an intranet firewall with minimum real-time network delay between the mobile wireless access equipment and the intranet firewalls deployed for the target intranet.
If the determination result is yes, no processing is performed, and if the determination result is no, step S303 is executed.
And S303, the intranet firewall distribution equipment determines an intranet firewall with the minimum real-time network delay between the mobile wireless access equipment and the plurality of intranet firewalls deployed for the target intranet as a second intranet firewall.
S304, the intranet firewall allocation device sends the second IP address of the second intranet firewall to the mobile wireless access device.
S305, the mobile wireless access equipment establishes connection with the second intranet firewall according to the second IP address.
S306, the mobile wireless access equipment is disconnected with the first intranet firewall.
Here, the mobile wireless access device disconnects the TCP/IP connection with the first intranet firewall by initiating four waving, and the specific steps are as follows: the mobile wireless access equipment sends a FIN (Finish Character) data packet to the first intranet firewall; after receiving the FIN data packet, the first intranet firewall sends an ACK data packet to the mobile wireless access equipment; the first intranet firewall sends a FIN data packet to the mobile wireless access equipment; after receiving the FIN data packet, the mobile wireless access equipment sends an ACK data packet to the first intranet firewall; and after the first intranet firewall distribution equipment receives the ACK data packet, the connection between the mobile wireless access equipment and the first intranet firewall is disconnected.
In the embodiment of the present invention, after the mobile wireless access device establishes a connection with the first intranet firewall of the target intranet, the intranet firewall allocation device periodically monitors whether the mobile wireless access device needs to switch the connected first intranet firewall according to the implemented network delay between the mobile wireless access device and each intranet firewall, and when it is determined that the first intranet firewall is not the intranet firewall with the minimum real-time network delay between the mobile wireless access device and the plurality of intranet firewalls deployed for the target intranet, allocates the second intranet firewall with the minimum real-time network delay between the mobile wireless access device and the plurality of intranet firewalls deployed for the target intranet to the mobile wireless access device, so as to realize that the intranet firewall connected with the mobile wireless access device always has the minimum network delay between the intranet firewall and the mobile wireless access device And the firewall ensures the access network quality of the user terminal accessing the target intranet through the connection between the mobile wireless access equipment and the firewall of the target intranet.
Referring to fig. 4, fig. 4 is a schematic system interaction diagram of another intranet access method provided in the embodiment of the present invention, after the mobile wireless access device establishes a connection with the first intranet firewall of the target intranet, the mobile wireless access device may monitor whether it needs to switch the connected first intranet firewall, and specific implementation steps may be as follows:
s401, the mobile wireless access device periodically sends a network delay test message to the first intranet firewall.
S402, the first intranet firewall returns the network delay test message to the mobile wireless access equipment after receiving the network delay test message.
And S403, the mobile wireless access equipment determines the real-time network delay between the mobile wireless access equipment and the first intranet firewall according to the sending time data of the network delay test message sent to the first intranet firewall and the receiving time data of the network delay test message returned by the first intranet firewall.
S404, the mobile wireless access device determines whether the real-time network delay is greater than a preset delay threshold.
S405, when the mobile wireless access device determines that the real-time network delay is larger than a preset delay threshold value, the mobile wireless access device sends a firewall switching request to the intranet firewall distribution device.
S406, the intranet firewall distribution equipment triggers the test of the current network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the firewall switching request received.
Here, an implementation manner of the intranet firewall allocation device obtaining the current network delay may refer to an implementation manner of the network delay test between the mobile wireless access device and each intranet firewall deployed for the target intranet in step S202 in the embodiment corresponding to fig. 2, and is not described herein again.
And S407, after the intranet firewall allocation device obtains the current network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet, determining the firewall corresponding to the minimum network delay in the current network delay as a third intranet firewall.
S408, the intranet firewall allocation device sends the third IP address of the third intranet firewall to the mobile wireless access device.
And S409, the mobile wireless access equipment establishes connection with the third intranet firewall according to the third IP address.
And S410, the mobile wireless access equipment is disconnected from the first intranet firewall.
In the embodiment of the invention, after the mobile wireless access equipment establishes connection with the first intranet firewall of the target intranet, the mobile wireless access equipment periodically monitors whether the mobile wireless access equipment needs to switch the connected first intranet firewall according to the implementation network delay between the mobile wireless access equipment and the first intranet firewall, and when the implementation network delay between the mobile wireless access equipment and the first intranet firewall is determined to be greater than a preset delay threshold value, the mobile wireless access equipment sends a firewall switching request to the intranet firewall distribution equipment, is connected with the third intranet firewall distributed by the intranet firewall distribution equipment again according to the current network delay between the mobile wireless access equipment and each intranet firewall, and is disconnected with the first intranet firewall. The network delay between the intranet firewalls connected with the mobile wireless access equipment is always within a preset delay threshold value, and the access network quality of a user terminal accessing a target intranet through the connection of the mobile wireless access equipment and the target intranet firewall is guaranteed.
Referring to fig. 5, fig. 5 is a schematic structural diagram of a mobile wireless access device according to an embodiment of the present invention, and as shown in the drawing, the mobile wireless access device 50 at least includes: a request sending unit 501, an address receiving unit 502, a firewall connecting unit 503, and a message transmitting unit 504, wherein:
the request sending unit 501 is configured to send an intranet connection request for a target intranet to an intranet firewall distribution device, so that when the intranet firewall distribution device receives the intranet connection request, the intranet firewall distribution device triggers a test of network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet, and after obtaining the network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet, the intranet firewall distribution device determines a firewall corresponding to a minimum network delay in the network delay as a first intranet firewall.
An address receiving unit 502, configured to receive the first IP address of the first intranet firewall sent by the intranet firewall allocation device.
A firewall connection unit 503, configured to send a firewall connection request to the first intranet firewall according to the first IP address, so that the first intranet firewall establishes a connection with the mobile wireless access device according to the firewall connection request.
A message transmission unit 504, configured to route the intranet access request to the intranet server of the target intranet through the first intranet firewall after receiving the intranet access request for the target intranet sent by the user terminal.
The message transmission unit 504 is further configured to send an intranet request response message to the user terminal after receiving an intranet request response message returned by the intranet server responding to the intranet access request through the first intranet firewall.
In a specific implementation, the mobile wireless access device may execute, through each built-in functional module thereof, each step executed by the mobile wireless access device in the intranet access method in fig. 2 to 4, and specific implementation details may refer to implementation details of each step in the embodiment corresponding to fig. 2 to 4, which are not described herein again.
In the embodiment of the invention, after receiving an intranet connection request aiming at a target intranet sent by a request sending unit, intranet firewall allocation equipment triggers a network delay test between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the intranet connection request, determines a firewall corresponding to the minimum network delay as a first intranet firewall, and establishes connection between the firewall connection unit and the first intranet firewall according to an IP address of the first intranet firewall sent by the intranet firewall allocation equipment and received by an address receiving unit. The message transmission unit routes the intranet access request to an intranet server of the target intranet through the first intranet firewall after receiving an intranet access request aiming at the target intranet and sent by a user terminal, and sends the intranet request response message to the user terminal after receiving an intranet request response message returned by the intranet server through the first intranet firewall responding to the intranet access request. The user terminal realizes the access to the target intranet through the intranet access frame based on the mobile wireless access equipment and the firewall deployed aiming at the target intranet, and any parameter does not need to be configured before the access, so that the access efficiency aiming at the target intranet is improved.
Referring to fig. 6, fig. 6 is a schematic structural diagram of another mobile wireless access device according to an embodiment of the present invention, and as shown in the drawing, the mobile wireless access device 60 includes a processor 601, a memory 602, and a communication interface 603. The processor 601 is connected to a memory 602 and a communication interface 603, e.g. the processor 601 may be connected to the memory 602 and the communication interface 603 via a bus.
The processor 601 is configured to support the intranet firewall distribution device to perform the corresponding functions of the mobile wireless access device in the intranet access method described in fig. 2-4. The Processor 601 may be a Central Processing Unit (CPU), a Network Processor (NP), a hardware chip, or any combination thereof. The hardware chip may be an Application-Specific Integrated Circuit (ASIC), a Programmable Logic Device (PLD), or a combination thereof. The PLD may be a Complex Programmable Logic Device (CPLD), a Field-Programmable Gate Array (FPGA), General Array Logic (GAL), or any combination thereof.
The memory 602 is used for storing program codes and the like. The memory 602 includes internal memory that may include at least one of: volatile memory (e.g., Dynamic Random Access Memory (DRAM), Static RAM (SRAM), Synchronous Dynamic RAM (SDRAM), etc.) and non-volatile memory (e.g., one-time programmable read-only memory (OTPROM), Programmable ROM (PROM), Erasable Programmable ROM (EPROM), electrically erasable programmable ROM (EEPROM.) memory 602 may also include external memory that may include at least one of a Hard Disk (Hard Disk Drive, HDD) or Solid-State Drive (SSD), a flash Drive such as high density flash (CF), Secure Digital (SD), micro SD, mini SD, extreme digital (xD), memory sticks, etc.
The communication interface 603 is used for receiving or transmitting data.
The processor 601 may call the program code to perform the following operations:
sending an intranet connection request aiming at a target intranet to intranet firewall distribution equipment, so that when the intranet firewall distribution equipment receives the intranet connection request, the intranet firewall distribution equipment triggers a test of network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet, and after the intranet firewall distribution equipment obtains the network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet, determining the firewall corresponding to the minimum network delay in the network delay as a first intranet firewall;
receiving a first IP address of the first intranet firewall sent by the intranet firewall distribution equipment;
sending a firewall connection request to the first intranet firewall according to the first IP address so that the first intranet firewall establishes connection with the mobile wireless access equipment according to the firewall connection request;
after receiving an intranet access request aiming at the target intranet and sent by a user terminal, routing the intranet access request to an intranet server of the target intranet through the first intranet firewall;
and after receiving an intranet request response message returned by the intranet server responding to the intranet access request through the first intranet firewall, sending the intranet request response message to the user terminal.
It should be noted that, the implementation of each operation may also correspond to the corresponding description of the method embodiments shown in fig. 2 to fig. 4; the processor 601 may also be configured to perform other operations in the above method embodiments.
Embodiments of the present invention further provide a computer storage medium, which stores a computer program, where the computer program includes program instructions, where the program instructions, when executed by a computer, cause the computer to perform the method according to the foregoing embodiments, and the computer may be a part of the above mentioned intranet firewall distribution apparatus or the mobile wireless access apparatus.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program, which can be stored in a computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), or the like.
Claims (10)
1. An intranet access method, comprising:
when receiving an intranet connection request aiming at a target intranet sent by mobile wireless access equipment, intranet firewall distribution equipment triggers a test of network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet, wherein the target intranet is a local communication network which connects a computer, a server and a database in a local geographic range;
the intranet firewall allocation equipment acquires network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet, wherein the network delay comprises one-way network delay between the mobile wireless access equipment and each intranet firewall;
the intranet firewall distribution equipment determines a firewall corresponding to the minimum network delay in the network delays between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet as a first intranet firewall, and the first intranet firewall is used for directly establishing connection with the mobile wireless access equipment and receiving an intranet access request aiming at the target intranet, sent by the mobile wireless access equipment;
the intranet firewall allocation equipment sends a first IP address of the first intranet firewall to the mobile wireless access equipment, so that after the wireless access equipment establishes connection with the first intranet firewall according to the first IP address, the first intranet firewall routes an intranet access request of a user terminal sent by the mobile wireless access equipment to an intranet server of a target intranet through the intranet access request of the target intranet, and the first intranet firewall further sends an intranet request response message returned by the intranet access request to the user terminal through the mobile wireless access equipment.
2. The method according to claim 1, wherein the intranet firewall allocation device, upon receiving an intranet connection request for a target intranet sent by a mobile wireless access device, triggers a test of network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet, comprising:
when the intranet firewall distribution equipment receives an intranet connection request aiming at a target intranet sent by mobile wireless access equipment, sending an access device IP address of the mobile wireless access device to each intranet firewall deployed for the target intranet, so that each intranet firewall deployed for the target intranet sends a network delay test message to the mobile wireless access equipment according to the IP address of the access equipment, the mobile wireless access equipment forwards the received network delay test message to the intranet firewall distribution equipment, the network delay test message received by the intranet firewall distribution equipment carries the sending time data of each firewall deployed aiming at the target intranet for sending the network delay test message, and the mobile wireless access device receiving the reception time data of the network delay test message;
and the intranet firewall distribution equipment determines the network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the sending time data and the receiving time data carried in each received network delay test message.
3. The method according to claim 1, wherein the intranet firewall distribution device, upon receiving an intranet connection request for a target intranet sent by a mobile wireless access device, triggers a test of network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet, comprising:
when the intranet firewall distribution equipment receives an intranet connection request aiming at a target intranet sent by the mobile wireless access equipment, sending firewall IP addresses of each intranet firewall deployed for the target intranet to the mobile wireless access equipment, so that the mobile wireless access equipment sends network delay test messages to all firewalls deployed aiming at the target intranet according to the IP addresses of the firewalls, and forwards the received network delay test messages to the intranet firewall distribution equipment aiming at all the firewalls deployed aiming at the target intranet, the network delay test message received by the intranet firewall distribution equipment carries the sending time data of the network delay test message sent by the mobile wireless access equipment, receiving the receiving time data of the network delay test message by each firewall deployed aiming at the target intranet;
and the intranet firewall distribution equipment determines the network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the sending time data and the receiving time data carried in each received network delay test message.
4. The method according to claim 1, wherein after the intranet firewall assignment device sends the first IP address of the first intranet firewall to the mobile wireless access device, the method further comprises:
the intranet firewall distribution equipment periodically acquires real-time network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet;
when the intranet firewall distribution equipment determines that the intranet firewall with the minimum real-time network delay between the mobile wireless access equipment and the plurality of intranet firewalls deployed for the target intranet is not the first intranet firewall according to the real-time network delay, the intranet firewall with the minimum real-time network delay between the mobile wireless access equipment and the plurality of intranet firewalls deployed for the target intranet is determined as a second intranet firewall;
and the intranet firewall distribution equipment sends a second IP address of the second intranet firewall to the mobile wireless access equipment so that the mobile wireless access equipment establishes connection with the second intranet firewall according to the second IP address and disconnects connection with the first intranet firewall.
5. An intranet access method, the method comprising:
the method comprises the steps that a mobile wireless access device sends an intranet connection request aiming at a target intranet to an intranet firewall distribution device, so that the intranet firewall distribution device triggers a test of network delay between the mobile wireless access device and each intranet firewall deployed aiming at the target intranet when receiving the intranet connection request, the intranet firewall distribution device further determines a firewall corresponding to the minimum network delay in the network delay as a first intranet firewall after acquiring the network delay between the mobile wireless access device and each intranet firewall deployed aiming at the target intranet, wherein the network delay comprises one-way network delay between the mobile wireless access device and each intranet firewall, and the first intranet firewall is used for directly establishing connection with the mobile wireless access device and receiving the intranet access request aiming at the target intranet sent by the mobile wireless access device, the target intranet is a local area communication network which connects a computer, a server and a database in a local geographic range;
the mobile wireless access equipment receives a first IP address of the first intranet firewall sent by the intranet firewall distribution equipment;
the mobile wireless access equipment sends a firewall connection request to the first intranet firewall according to the first IP address so that the first intranet firewall establishes connection with the mobile wireless access equipment according to the firewall connection request;
after receiving an intranet access request aiming at the target intranet and sent by a user terminal, the mobile wireless access equipment routes the intranet access request to an intranet server of the target intranet through the first intranet firewall;
and after receiving an intranet request response message returned by the intranet server responding to the intranet access request through the first intranet firewall, the mobile wireless access equipment sends the intranet request response message to the user terminal.
6. The method according to claim 5, wherein after the mobile wireless access device sends an intranet connection request for the target intranet to the intranet firewall distribution device, the method further comprises:
the mobile wireless access equipment receives the IP addresses of the intranet firewalls deployed aiming at the target intranet and sent by the intranet firewall distribution equipment;
the mobile wireless access equipment sends a network delay test message to each intranet firewall deployed aiming at the target intranet according to the IP address, so that each intranet firewall deployed aiming at the target intranet returns the network delay test message to the mobile wireless access equipment after receiving the network delay test message;
and the mobile wireless access equipment determines the network delay between the mobile wireless access equipment and each intranet firewall deployed for the target intranet according to the sending time data of the network delay test message sent to each intranet firewall deployed for the target intranet and the receiving time data of the network delay test message returned by each firewall deployed for the target intranet.
7. The method of claim 5, wherein the method further comprises:
the mobile wireless access equipment periodically acquires real-time network delay of the mobile wireless access equipment and the first intranet firewall;
when the mobile wireless access equipment determines that the real-time network delay is larger than a preset delay threshold value, sending a firewall switching request to intranet firewall distribution equipment so that the intranet firewall distribution equipment triggers the test of the current network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet according to the fact that the firewall switching request is received, and after the intranet firewall distribution equipment obtains the current network delay between the mobile wireless access equipment and each intranet firewall deployed aiming at the target intranet, determining a firewall corresponding to the minimum network delay in the current network delay as a third intranet firewall;
the mobile wireless access equipment receives a third IP address of the third intranet firewall sent by the intranet firewall distribution equipment;
the mobile wireless access equipment sends a firewall connection request to the third intranet firewall according to the third IP address so that the third intranet firewall establishes connection with the mobile wireless access equipment according to the firewall connection request;
and the mobile wireless access equipment is disconnected with the first intranet firewall.
8. A mobile wireless access device, comprising:
a request sending unit, configured to send an intranet connection request for a target intranet to an intranet firewall distribution device, so that the intranet firewall distribution device triggers a test of network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet when receiving the intranet connection request, and after obtaining the network delay between the mobile wireless access device and each intranet firewall deployed for the target intranet, the intranet firewall distribution device further determines, as a first intranet firewall, a firewall corresponding to a minimum network delay in the network delay, where the network delay includes a one-way network delay between the mobile wireless access device and each intranet firewall, and the first intranet firewall is used to directly establish a connection with the mobile wireless access device and receive the intranet access request sent by the mobile wireless access device for the target intranet The target intranet is a local area communication network which connects a computer, a server and a database in a local geographic range;
the address receiving unit is used for receiving the first IP address of the first intranet firewall sent by the intranet firewall distribution equipment;
the firewall connection unit is used for sending a firewall connection request to the first intranet firewall according to the first IP address so that the first intranet firewall establishes connection with the mobile wireless access equipment according to the firewall connection request;
the message transmission unit is used for routing the intranet access request to an intranet server of the target intranet through the first intranet firewall after receiving the intranet access request aiming at the target intranet and sent by the user terminal;
the message transmission unit is further configured to send an intranet request response message to the user terminal after receiving an intranet request response message returned by the intranet server in response to the intranet access request through the first intranet firewall.
9. A mobile radio access device comprising a processor, a memory and a communication interface, the processor, the memory and the communication interface being interconnected, wherein the communication interface is configured to receive and transmit data, the memory is configured to store program code, and the processor is configured to invoke the program code to perform the method of any of claims 1-7.
10. A computer storage medium, characterized in that the computer storage medium stores a computer program comprising program instructions that, when executed by a processor, cause the processor to perform the method according to any one of claims 1-7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910498916.7A CN110324318B (en) | 2019-06-10 | 2019-06-10 | Intranet access method and related device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910498916.7A CN110324318B (en) | 2019-06-10 | 2019-06-10 | Intranet access method and related device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110324318A CN110324318A (en) | 2019-10-11 |
| CN110324318B true CN110324318B (en) | 2022-08-23 |
Family
ID=68120842
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910498916.7A Active CN110324318B (en) | 2019-06-10 | 2019-06-10 | Intranet access method and related device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110324318B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113572775A (en) * | 2021-07-27 | 2021-10-29 | 广东电网有限责任公司 | Intranet access method, equipment and storage medium |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101980486A (en) * | 2010-10-12 | 2011-02-23 | 北京星网锐捷网络技术有限公司 | Address library data updating method and network equipment |
| CN108989352A (en) * | 2018-09-03 | 2018-12-11 | 平安科技(深圳)有限公司 | Method of realizing fireproof wall, device, computer equipment and storage medium |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CA2439396A1 (en) * | 2000-02-28 | 2001-09-07 | Gregory Demopulos | Use of internet site as a registry for results of medical tests |
| US7886348B2 (en) * | 2003-10-03 | 2011-02-08 | Verizon Services Corp. | Security management system for monitoring firewall operation |
| CN109688100B (en) * | 2018-09-07 | 2022-06-17 | 平安科技(深圳)有限公司 | NAT (network Address translation) penetration method, device, equipment and storage medium |
-
2019
- 2019-06-10 CN CN201910498916.7A patent/CN110324318B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101980486A (en) * | 2010-10-12 | 2011-02-23 | 北京星网锐捷网络技术有限公司 | Address library data updating method and network equipment |
| CN108989352A (en) * | 2018-09-03 | 2018-12-11 | 平安科技(深圳)有限公司 | Method of realizing fireproof wall, device, computer equipment and storage medium |
Non-Patent Citations (1)
| Title |
|---|
| 关于计算机网络内部防火墙系统应用设计的几点思考;焦迎春;《才智》;20110315(第08期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110324318A (en) | 2019-10-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106878135B (en) | Connection method and device | |
| CN108234522B (en) | Method and device for preventing Address Resolution Protocol (ARP) attack, computer equipment and storage medium | |
| US11943297B2 (en) | Distributed network security system providing isolation of customer data | |
| CN110266674B (en) | Intranet access method and related device | |
| CN112437456A (en) | Communication method and device in non-public network | |
| CN105430059A (en) | Smart client routing | |
| CN110336794B (en) | Intranet access method, system and related device | |
| WO2022247751A1 (en) | Method, system and apparatus for remotely accessing application, device, and storage medium | |
| EP3016423A1 (en) | Network safety monitoring method and system | |
| CN109936515B (en) | Access configuration method, information providing method and device | |
| CN110336793B (en) | Intranet access method and related device | |
| CN110324318B (en) | Intranet access method and related device | |
| CN110891056A (en) | HTTPS request authentication method and device, electronic equipment and storage medium | |
| CN110311785B (en) | Intranet access method and related device | |
| CN110324826B (en) | Intranet access method and related device | |
| CN110213769B (en) | Intranet access method and related device | |
| CN114500059B (en) | Webpage authentication method and device of terminal equipment, storage medium and processor | |
| US11496516B2 (en) | Secure multiplexed routing | |
| CN108307683B (en) | Communication method, micro base station controller, terminal and system | |
| CN110830513A (en) | Cloud engine, method for remotely accessing application, system thereof and storage medium | |
| JP4878043B2 (en) | Access control system, connection control device, and connection control method | |
| US11652781B2 (en) | Data processing method based on MEC platform, device, and storage medium | |
| CN113676540B (en) | Connection establishment method and device | |
| CN114499965B (en) | Internet surfing authentication method and system based on POP3 protocol | |
| CN114338167A (en) | Communication encryption system, method, storage medium and electronic device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |