CN110535730B - IP authentication function test method and device of network equipment - Google Patents
IP authentication function test method and device of network equipment Download PDFInfo
- Publication number
- CN110535730B CN110535730B CN201910900725.9A CN201910900725A CN110535730B CN 110535730 B CN110535730 B CN 110535730B CN 201910900725 A CN201910900725 A CN 201910900725A CN 110535730 B CN110535730 B CN 110535730B
- Authority
- CN
- China
- Prior art keywords
- white list
- network equipment
- item
- address white
- test
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/08—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/50—Testing arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
Abstract
The application provides a method and a device for testing an IP authentication function of network equipment, which are applied to management equipment, wherein the method comprises the following steps: establishing each flow model corresponding to each test item of the IP authentication function of the network equipment in the tester so that the tester sends corresponding test flow to the network equipment according to each flow model; sending each IP network segment white list corresponding to each test item to the network equipment so that the network equipment processes the test flow from the tester according to each IP network segment white list; issuing a corresponding IP address white list or instruction to the network equipment according to the configuration mode of each test item so that the network equipment processes the test flow from the tester according to each IP network segment white list and the received IP address white list or instruction; and acquiring the test result of each test item from the network equipment. By applying the embodiment of the application, the testing steps can be simplified, the consumption of human resources can be reduced, and the consumption time can be reduced.
Description
Technical Field
The present application relates to the field of network communication technologies, and in particular, to a method and an apparatus for testing an Internet Protocol (IP) authentication function of a network device.
Background
The IP authentication function means that the network device confirms the IP address of the terminal accessing the network based on the configured IP address white list, the terminal with the IP address included in the IP address white list can access the network, and the terminal with the IP address not included in the IP address white list can be blocked.
Before network equipment is put into use, the IP authentication function of the network equipment needs to be tested, at present, the testing is mainly carried out in a manual mode, and the testing comprises the testing of items such as IP address white list issuing, IP address white list deleting, terminal online, terminal offline, aging offline, forced offline, function forbidding, function enabling and the like.
Disclosure of Invention
In view of this, the present application provides a method and an apparatus for testing an IP authentication function of a network device, so as to solve the problems of complicated testing steps, high human resource consumption, and long time consumption in the related art.
Specifically, the method is realized through the following technical scheme:
an IP authentication function test method of network equipment is applied to management equipment, and the method comprises the following steps:
establishing each flow model corresponding to each test item of the IP authentication function of the network equipment in a tester so that the tester sends corresponding test flow to the network equipment according to each flow model;
sending each IP network segment white list corresponding to each test item to the network equipment so that the network equipment processes the test traffic from the tester according to each IP network segment white list;
issuing a corresponding IP address white list or instruction to the network equipment according to the configuration mode of each test item so that the network equipment processes the test traffic from the tester according to each IP network segment white list and the received IP address white list or instruction;
and acquiring the test result of each test item from the network equipment.
An IP authentication function testing device of network equipment is applied to management equipment, and the device comprises:
the first sending module is used for establishing each flow model corresponding to each test item of the IP authentication function of the network equipment in a tester so that the tester sends corresponding test flow to the network equipment according to each flow model;
the second sending module is used for sending each IP network segment white list corresponding to each test item to the network equipment so that the network equipment processes the test flow from the tester according to each IP network segment white list;
the issuing module is used for issuing a corresponding IP address white list or instruction to the network equipment according to the configuration mode of each test item so that the network equipment processes the test flow from the tester according to each IP network segment white list and the received IP address white list or instruction;
and the acquisition module is used for acquiring the test result of each test item from the network equipment.
It can be seen from the above technical solutions that the management device can establish each flow model corresponding to each test item of the IP authentication function of the network device in the tester, so that the tester sends corresponding test flow to the network device according to each flow model, the management device also sends each IP network segment white list corresponding to each test item to the network device, so that the network device processes the test flow from the tester according to each IP network segment white list, the management device issues a corresponding IP address white list or instruction to the network device according to the configuration mode of each test item, so that the network device processes the test flow from the tester according to each IP network segment white list and the received IP address white list or instruction, and finally the management device obtains the test result of each test item from the network device, the IP authentication function of the network equipment is automatically tested, manual testing is not needed, and compared with a manual testing mode, the method can simplify testing steps, reduce human resource consumption and reduce time consumption.
Drawings
Fig. 1 is a flowchart illustrating an IP authentication function testing method for a network device according to the present application;
FIG. 2 is a graphical illustration of test results for burn-in-line items shown in the present application;
FIG. 3 is a schematic diagram illustrating a test result of issuing a white list item of a deleted IP address according to the present application;
FIG. 4 is a schematic illustration of the test results of a forced offline item shown in the present application;
FIG. 5 is a schematic diagram of the test results of the functional disable enabled item shown in the present application;
fig. 6 is a schematic structural diagram of an IP authentication function testing apparatus of a network device according to the present application.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, like numbers in different drawings represent the same or similar elements unless otherwise indicated. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with the present application. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the present application, as detailed in the appended claims.
The terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the application. As used in this application and the appended claims, the singular forms "a", "an", and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It should also be understood that the term "and/or" as used herein refers to and encompasses any and all possible combinations of one or more of the associated listed items.
It is to be understood that although the terms first, second, third, etc. may be used herein to describe various information, such information should not be limited to these terms. These terms are only used to distinguish one type of information from another. For example, first information may also be referred to as second information, and similarly, second information may also be referred to as first information, without departing from the scope of the present application. The word "if" as used herein may be interpreted as "at … …" or "when … …" or "in response to a determination", depending on the context.
In order to solve the above problems, embodiments of the present invention provide a method for testing an IP authentication function of a network device, so as to simplify testing steps, reduce human resource consumption, and reduce time consumption. Referring to fig. 1, fig. 1 is a flowchart of an IP authentication function testing method for a network device, which is applied to a management device, where the management device establishes a communication connection with a tester and the network device.
S11: and establishing each flow model corresponding to each test item of the IP authentication function of the network equipment in the tester so that the tester sends corresponding test flow to the network equipment according to each flow model.
The test items are set in various ways, and can be set according to actual needs, and the following description will be given by exemplifying one way.
The off-line mode of the terminal accessed to the network device supporting the IP authentication function may have four modes: aging offline, offline by deleting the IP address of the terminal in the IP address white list, forcibly offline and functionally disabled offline, and based on the four offline modes, setting four test items of the IP authentication function: aging the offline items, issuing the deleted IP address white list items, forcing the offline items, and disabling the enabled items, in order to facilitate checking the test result, each traffic model corresponding to each test item may be set, for example:
1.1.1.1-1.1.100, circulating in a mode of five minutes of flow beating and five minutes of flow stopping;
1.1.2.1-1.1.2.100, continuously flowing;
③ 1.1.3.1-1.1.3.100, and continuously beating;
1.1.4.1-1.1.4.100, and continuously flowing.
And establishing four flow models in the tester, and sending corresponding test flow to the network equipment by the tester according to the four flow models.
S12: and sending each IP network segment white list corresponding to each test item to the network equipment so that the network equipment processes the test flow from the tester according to each IP network segment white list.
Continuing with the above example, the white lists of the IP segments corresponding to the four test items are as follows:
①1.1.1.1-1.1.1.100;
②1.1.2.1-1.1.2.100;
③1.1.3.1-1.1.3.100;
④1.1.4.1-1.1.4.100。
and sending the four IP network segment white lists to the network equipment, and processing the test flow from the tester by the network equipment according to the four IP network segment white lists, so that the batch online condition can be tested.
S13: and issuing a corresponding IP address white list or instruction to the network equipment according to the configuration mode of each test item so that the network equipment processes the test flow from the tester according to each IP network segment white list and the received IP address white list or instruction.
To ensure that the network device has configured the white lists of the IP segments, a fourth duration may be set, and then the fourth duration may be monitored for expiration, and S13 may be executed if the fourth duration is monitored for expiration.
Continuing with the above example, for the burn-in-process test item, the test can be implemented based on the streaming mode of 1.1.1.1-1.1.1.100, and the test modes of the other three test items are respectively described below:
the first method, if the test item is an item for issuing a deleted IP address white list, then issuing a corresponding IP address white list or instruction to the network device according to a configuration mode of each test item, specifically includes:
acquiring an IP address white list corresponding to an item of issuing and deleting the IP address white list, a first set number of times and a first duration;
sending an adding instruction carrying an IP address white list corresponding to the item of issuing and deleting the IP address white list to the network equipment so that the network equipment adds and issues the IP address white list corresponding to the item of issuing and deleting the IP address white list;
after waiting for the first duration, sending a deletion instruction carrying an IP address white list corresponding to the item of issuing the deleted IP address white list to the network equipment so that the network equipment deletes the IP address white list corresponding to the item of issuing the deleted IP address white list;
after waiting for the first time period, increasing the first cycle number by 1;
monitoring whether the first cycle times reach a first set time;
and if the first cycle times are monitored not to reach the first set times, re-executing the step of sending an adding instruction carrying an IP address white list corresponding to the IP address white list deleting item to the network equipment.
The IP address white list corresponding to the IP address white list item for sending and deleting may be configured according to actual needs, and the first set number of times and the first duration may be set according to actual needs, for example, the first set number of times may be but is not limited to be set to 5 times, 7 times, 10 times, and the like, and the first duration may be but is not limited to be set to 3 minutes, 5 minutes, 10 minutes, and the like.
Secondly, if the test items are forced offline items, issuing corresponding IP address white lists or instructions to the network device according to the configuration mode of each test item, specifically including:
acquiring an IP address list, a second set number of times and a second duration corresponding to the forced offline item;
sending a deletion instruction carrying the IP address list corresponding to the forced offline item to the network equipment so that the network equipment deletes the IP address list corresponding to the forced offline item;
after waiting for a second duration, increasing the second cycle number by 1;
monitoring whether the second cycle times reach a second set time;
and if the second cycle number is monitored not to reach the second set number, re-executing the step of sending the deletion instruction carrying the IP address list corresponding to the forced offline item to the network equipment.
The IP address list corresponding to the forced offline item may be configured according to actual needs, and the first set number of times and the first duration may be set according to actual needs, for example, the second set number of times may be, but is not limited to, set to 5 times, 7 times, 10 times, and the like, and the second duration may be, but is not limited to, set to 3 minutes, 5 minutes, 10 minutes, and the like.
Thirdly, if the test item is a function-disabled enabling item, issuing a corresponding IP address white list or instruction to the network device according to the configuration mode of each test item, which specifically includes:
acquiring a third time length and a third set number corresponding to the function forbidding enabled item;
sending a function disabling instruction to the network equipment to enable the network equipment to disable the IP authentication function;
after waiting for the third duration, sending a function enabling instruction to the network equipment to enable the IP authentication function;
after waiting for a third duration, increasing the third cycle number by 1;
monitoring whether the third cycle number reaches a third set number;
and if the third cycle times are monitored not to reach the third set times, re-executing the step of sending the function disabling instruction to the network equipment.
The third set number and the third time period may be set according to actual needs, for example, the third set number may be set to, but is not limited to, 30 minutes, 20 minutes, and the like.
S14: and acquiring the test result of each test item from the network equipment.
Continuing with the above example, the final results can be shown graphically, see fig. 2, 3, 4, 5, where time is shown on the horizontal axis and IP online rate is shown on the vertical axis.
FIG. 2 is a schematic diagram of the test results of the aging offline project shown in the present application, according to the test flow, the IP online rate is 100, and the duration is 7 minutes; the online rate of the IP is 0, and the time duration is 3 minutes; and each half point and the whole point have one off-line, namely the IP on-line rate is 0, and the process is circulated.
Fig. 3 is a schematic diagram of a test result of issuing a white list item of deleting an IP address shown in the present application, where according to the test flow, the IP online rate is 100, and the duration is 3 minutes; and each half point and the whole point have one off-line, namely the IP on-line rate is 0, and the process is circulated.
FIG. 4 is a schematic diagram of a test result of a forced offline item shown in the present application, where the duration is 4 minutes according to the test flow, the IP online rate is 100; and each half point and the whole point have one off-line, namely the IP on-line rate is 0, and the process is circulated.
FIG. 5 is a diagram illustrating test results of the disabled enabled function item shown in the present application, where the IP online rate is 100 and the duration is 30 minutes according to the test interest rate; and each half point and the whole point have one off-line, namely the IP on-line rate is 0, and the process is circulated.
And subsequently, carrying out overall analysis and evaluation on the IP authentication function of the network equipment based on the test result of each test item.
It can be seen from the above technical solutions that the management device can establish each flow model corresponding to each test item of the IP authentication function of the network device in the tester, so that the tester sends corresponding test flow to the network device according to each flow model, the management device also sends each IP network segment white list corresponding to each test item to the network device, so that the network device processes the test flow from the tester according to each IP network segment white list, the management device issues a corresponding IP address white list or instruction to the network device according to the configuration mode of each test item, so that the network device processes the test flow from the tester according to each IP network segment white list and the received IP address white list or instruction, and finally the management device obtains the test result of each test item from the network device, the IP authentication function of the network equipment is automatically tested, manual testing is not needed, and compared with a manual testing mode, the method can simplify testing steps, reduce human resource consumption and reduce time consumption.
Referring to fig. 6, fig. 6 is a schematic structural diagram of an IP authentication function testing apparatus of a network device shown in the present application, which is applied to a management device, and the apparatus includes:
a first sending module 61, configured to establish, in the tester, each traffic model corresponding to each test item of the IP authentication function of the network device, so that the tester sends corresponding test traffic to the network device according to each traffic model;
the second sending module 62 is configured to send each IP segment white list corresponding to each test item to the network device, so that the network device processes the test traffic from the tester according to each IP segment white list;
the issuing module 63 is configured to issue a corresponding IP address white list or instruction to the network device according to the configuration mode of each test item, so that the network device processes the test traffic from the tester according to each IP network segment white list and the received IP address white list or instruction;
the obtaining module 64 is configured to obtain the test result of each test item from the network device.
It can be seen from the above technical solutions that the management device can establish each flow model corresponding to each test item of the IP authentication function of the network device in the tester, so that the tester sends corresponding test flow to the network device according to each flow model, the management device also sends each IP network segment white list corresponding to each test item to the network device, so that the network device processes the test flow from the tester according to each IP network segment white list, the management device issues a corresponding IP address white list or instruction to the network device according to the configuration mode of each test item, so that the network device processes the test flow from the tester according to each IP network segment white list and the received IP address white list or instruction, and finally the management device obtains the test result of each test item from the network device, the IP authentication function of the network equipment is automatically tested, manual testing is not needed, and compared with a manual testing mode, the method can simplify testing steps, reduce human resource consumption and reduce time consumption.
Specifically, if the test item is an issue delete IP address white list item, the issue module 63 is configured to issue a corresponding IP address white list or instruction to the network device according to a configuration mode of each test item, and specifically configured to:
acquiring an IP address white list corresponding to an item of issuing and deleting the IP address white list, a first set number of times and a first duration;
sending an adding instruction carrying an IP address white list corresponding to the item of issuing and deleting the IP address white list to the network equipment so that the network equipment adds and issues the IP address white list corresponding to the item of issuing and deleting the IP address white list;
after waiting for the first duration, sending a deletion instruction carrying an IP address white list corresponding to the item of issuing the deleted IP address white list to the network equipment so that the network equipment deletes the IP address white list corresponding to the item of issuing the deleted IP address white list;
after waiting for the first time period, increasing the first cycle number by 1;
monitoring whether the first cycle times reach a first set time;
and if the first cycle times are monitored not to reach the first set times, re-executing the step of sending an adding instruction carrying an IP address white list corresponding to the IP address white list deleting item to the network equipment.
Specifically, if the test item is a forced offline item, the issuing module 63 is configured to issue a corresponding IP address white list or instruction to the network device according to a configuration mode of each test item, and specifically configured to:
acquiring an IP address list, a second set number of times and a second duration corresponding to the forced offline item;
sending a deletion instruction carrying the IP address list corresponding to the forced offline item to the network equipment so that the network equipment deletes the IP address list corresponding to the forced offline item;
after waiting for a second duration, increasing the second cycle number by 1;
monitoring whether the second cycle times reach a second set time;
and if the second cycle number is monitored not to reach the second set number, re-executing the step of sending the deletion instruction carrying the IP address list corresponding to the forced offline item to the network equipment.
Specifically, if the test item is a disabled function enabling item, the issuing module 63 is configured to issue a corresponding IP address white list or instruction to the network device according to a configuration mode of each test item, and specifically configured to:
acquiring a third time length and a third set number corresponding to the function forbidding enabled item;
sending a function disabling instruction to the network equipment to enable the network equipment to disable the IP authentication function;
after waiting for the third duration, sending a function enabling instruction to the network equipment to enable the IP authentication function;
after waiting for a third duration, increasing the third cycle number by 1;
monitoring whether the third cycle number reaches a third set number;
and if the third cycle times are monitored not to reach the third set times, re-executing the step of sending the function disabling instruction to the network equipment.
Optionally, the apparatus further includes a monitoring module, configured to:
monitoring whether the fourth time period has expired;
and if the fourth time length is monitored to expire, switching to the issuing module.
For the device embodiments, since they substantially correspond to the method embodiments, reference may be made to the partial description of the method embodiments for relevant points. The above-described embodiments of the apparatus are merely illustrative, and the units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the modules can be selected according to actual needs to achieve the purpose of the scheme of the application. One of ordinary skill in the art can understand and implement it without inventive effort.
The above description is only exemplary of the present application and should not be taken as limiting the present application, as any modification, equivalent replacement, or improvement made within the spirit and principle of the present application should be included in the scope of protection of the present application.
Claims (10)
1. A method for testing an Internet Protocol (IP) authentication function of network equipment is applied to management equipment, and is characterized by comprising the following steps:
establishing each flow model corresponding to each test item of the IP authentication function of the network equipment in a tester so that the tester sends corresponding test flow to the network equipment according to each flow model;
sending each IP network segment white list corresponding to each test item to the network equipment so that the network equipment processes the test traffic from the tester according to each IP network segment white list;
issuing a corresponding IP address white list or instruction to the network equipment according to the configuration mode of each test item so that the network equipment processes the test traffic from the tester according to each IP network segment white list and the received IP address white list or instruction;
and acquiring the test result of each test item from the network equipment.
2. The method of claim 1, wherein if the test item is an issue delete IP address white list item, issuing a corresponding IP address white list or instruction to the network device according to a configuration manner of each test item, specifically comprising:
acquiring an IP address white list corresponding to the item of issuing the deleted IP address white list, a first set number of times and a first duration;
sending an adding instruction carrying the IP address white list corresponding to the white list item of the issued and deleted IP addresses to the network equipment so that the network equipment adds the IP address white list corresponding to the white list item of the issued and deleted IP addresses;
after waiting for the first duration, sending a deletion instruction carrying the IP address white list corresponding to the item of the issued and deleted IP address white list to the network equipment so that the network equipment deletes the IP address white list corresponding to the item of the issued and deleted IP address white list;
after waiting for the first duration, increasing the first cycle number by 1;
monitoring whether the first cycle number reaches the first set number;
and if the first cycle times are monitored not to reach the first set times, re-executing the step of sending an adding instruction carrying the IP address white list corresponding to the item of issuing the deleted IP address white list to the network equipment.
3. The method of claim 1, wherein if the test item is a forced offline item, issuing a corresponding IP address white list or instruction to the network device according to a configuration manner of each test item, specifically comprising:
acquiring an IP address white list, a second set number of times and a second duration corresponding to the forced offline item;
sending a deletion instruction carrying the IP address white list corresponding to the forced offline item to the network equipment so that the network equipment deletes the IP address white list corresponding to the forced offline item;
after waiting for the second duration, increasing the second cycle number by 1;
monitoring whether the second cycle number reaches the second set number;
and if the second cycle frequency is monitored not to reach the second set frequency, re-executing the step of sending a deletion instruction carrying the IP address white list corresponding to the forced offline item to the network equipment.
4. The method of claim 1, wherein if the test item is a function disabled enabled item, issuing a corresponding IP address white list or instruction to the network device according to a configuration manner of each test item, specifically comprising:
acquiring a third time length and a third set number corresponding to the function forbidding enabled item;
sending a function disabling instruction to the network device to cause the network device to disable the IP authentication function;
after waiting for the third duration, sending a function enabling instruction to the network equipment so as to enable the network equipment to enable the IP authentication function;
after waiting for the third duration, increasing the third cycle number by 1;
monitoring whether the third cycle number reaches the third set number;
and if the third cycle times are monitored not to reach the third set times, re-executing the step of sending the function disabling instruction to the network equipment.
5. The method according to any one of claims 1 to 4, wherein before issuing the corresponding IP address white list or instruction to the network device according to the configuration mode of each test item, the method further comprises:
monitoring whether a fourth time length expires, wherein the fourth time length is set to ensure that network equipment can configure each IP network segment white list;
and if the fourth time is monitored to expire, the step of issuing a corresponding IP address white list or instruction to the network equipment according to the configuration mode of each test item is executed.
6. An IP authentication function testing apparatus of a network device, applied to a management device, the apparatus comprising:
the first sending module is used for establishing each flow model corresponding to each test item of the IP authentication function of the network equipment in a tester so that the tester sends corresponding test flow to the network equipment according to each flow model;
the second sending module is used for sending each IP network segment white list corresponding to each test item to the network equipment so that the network equipment processes the test flow from the tester according to each IP network segment white list;
the issuing module is used for issuing a corresponding IP address white list or instruction to the network equipment according to the configuration mode of each test item so that the network equipment processes the test flow from the tester according to each IP network segment white list and the received IP address white list or instruction;
and the acquisition module is used for acquiring the test result of each test item from the network equipment.
7. The apparatus according to claim 6, wherein if the test item is an item for issuing a whitelist of deleted IP addresses, the issuing module is configured to issue a corresponding whitelist of IP addresses or an instruction to the network device according to a configuration manner of each test item, and is specifically configured to:
acquiring an IP address white list corresponding to the item of issuing the deleted IP address white list, a first set number of times and a first duration;
sending an adding instruction carrying the IP address white list corresponding to the white list item of the issued and deleted IP addresses to the network equipment so that the network equipment adds the IP address white list corresponding to the white list item of the issued and deleted IP addresses;
after waiting for the first duration, sending a deletion instruction carrying the IP address white list corresponding to the item of the issued and deleted IP address white list to the network equipment so that the network equipment deletes the IP address white list corresponding to the item of the issued and deleted IP address white list;
after waiting for the first duration, increasing the first cycle number by 1;
monitoring whether the first cycle number reaches the first set number;
and if the first cycle times are monitored not to reach the first set times, re-executing the step of sending an adding instruction carrying the IP address white list corresponding to the item of issuing the deleted IP address white list to the network equipment.
8. The apparatus of claim 6, wherein if the test item is a forced offline item, the issuing module is configured to issue a corresponding IP address white list or an instruction to the network device according to a configuration manner of each test item, and is specifically configured to:
acquiring an IP address white list, a second set number of times and a second duration corresponding to the forced offline item;
sending a deletion instruction carrying the IP address white list corresponding to the forced offline item to the network equipment so that the network equipment deletes the IP address white list corresponding to the forced offline item;
after waiting for the second duration, increasing the second cycle number by 1;
monitoring whether the second cycle number reaches the second set number;
and if the second cycle frequency is monitored not to reach the second set frequency, re-executing the step of sending a deletion instruction carrying the IP address white list corresponding to the forced offline item to the network equipment.
9. The apparatus according to claim 6, wherein if the test item is a function-disabled enabled item, the issuing module is configured to issue a corresponding IP address white list or an instruction to the network device according to a configuration manner of each test item, and is specifically configured to:
acquiring a third time length and a third set number corresponding to the function forbidding enabled item;
sending a function disabling instruction to the network device to cause the network device to disable the IP authentication function;
after waiting for the third duration, sending a function enabling instruction to the network equipment so as to enable the network equipment to enable the IP authentication function;
after waiting for the third duration, increasing the third cycle number by 1;
monitoring whether the third cycle number reaches the third set number;
and if the third cycle times are monitored not to reach the third set times, re-executing the step of sending the function disabling instruction to the network equipment.
10. The apparatus of any of claims 6-9, further comprising a monitoring module to:
monitoring whether a fourth time length expires, wherein the fourth time length is set to ensure that network equipment can configure each IP network segment white list;
and if the fourth time length is monitored to expire, turning to the issuing module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910900725.9A CN110535730B (en) | 2019-09-23 | 2019-09-23 | IP authentication function test method and device of network equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910900725.9A CN110535730B (en) | 2019-09-23 | 2019-09-23 | IP authentication function test method and device of network equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110535730A CN110535730A (en) | 2019-12-03 |
| CN110535730B true CN110535730B (en) | 2020-12-29 |
Family
ID=68669721
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910900725.9A Active CN110535730B (en) | 2019-09-23 | 2019-09-23 | IP authentication function test method and device of network equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110535730B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111107083B (en) * | 2019-12-18 | 2021-11-23 | 杭州迪普科技股份有限公司 | White list specification testing method and device |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103036906A (en) * | 2012-12-28 | 2013-04-10 | 福建星网锐捷网络有限公司 | Network device authentication method and device and access device and controllable device |
| CN103475542A (en) * | 2013-09-04 | 2013-12-25 | 上海斐讯数据通信技术有限公司 | Network equipment handling capacity performance testing system and method |
| CN103916389A (en) * | 2014-03-19 | 2014-07-09 | 汉柏科技有限公司 | Method for preventing HttpFlood attack and firewall |
| CN108260144A (en) * | 2018-01-12 | 2018-07-06 | 四川斐讯信息技术有限公司 | The automatic test device and method of a kind of wireless radio frequency index |
| CN109104335A (en) * | 2018-08-27 | 2018-12-28 | 广东电网有限责任公司 | A kind of industrial control equipment network attack test method and system |
| CN109120483A (en) * | 2018-10-30 | 2019-01-01 | 杭州迪普科技股份有限公司 | A kind of firewall box performance test methods and device |
| CN110113325A (en) * | 2019-04-25 | 2019-08-09 | 成都卫士通信息产业股份有限公司 | Network Data Control method, apparatus and storage medium based on third party SDK |
| CN110213135A (en) * | 2019-06-12 | 2019-09-06 | 武汉通威电子有限公司 | A kind of fire wall performance test method and device |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102299828B (en) * | 2011-08-30 | 2014-01-08 | 中国科学院计算技术研究所 | Test traffic synthesis method and device for test on performance of network security equipment |
| CN102510346B (en) * | 2011-11-18 | 2014-12-24 | 百度在线网络技术(北京)有限公司 | Method, system and device for testing network equipment |
| WO2013119862A1 (en) * | 2012-02-07 | 2013-08-15 | Mts Systems Corporation | A mobile or cloud communication platform for test system applications, a mobile application tool and graphical user interface |
| CN107277146B (en) * | 2017-06-26 | 2021-01-08 | 苏州浪潮智能科技有限公司 | Distributed storage service flow model generation method and system |
-
2019
- 2019-09-23 CN CN201910900725.9A patent/CN110535730B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103036906A (en) * | 2012-12-28 | 2013-04-10 | 福建星网锐捷网络有限公司 | Network device authentication method and device and access device and controllable device |
| CN103475542A (en) * | 2013-09-04 | 2013-12-25 | 上海斐讯数据通信技术有限公司 | Network equipment handling capacity performance testing system and method |
| CN103916389A (en) * | 2014-03-19 | 2014-07-09 | 汉柏科技有限公司 | Method for preventing HttpFlood attack and firewall |
| CN108260144A (en) * | 2018-01-12 | 2018-07-06 | 四川斐讯信息技术有限公司 | The automatic test device and method of a kind of wireless radio frequency index |
| CN109104335A (en) * | 2018-08-27 | 2018-12-28 | 广东电网有限责任公司 | A kind of industrial control equipment network attack test method and system |
| CN109120483A (en) * | 2018-10-30 | 2019-01-01 | 杭州迪普科技股份有限公司 | A kind of firewall box performance test methods and device |
| CN110113325A (en) * | 2019-04-25 | 2019-08-09 | 成都卫士通信息产业股份有限公司 | Network Data Control method, apparatus and storage medium based on third party SDK |
| CN110213135A (en) * | 2019-06-12 | 2019-09-06 | 武汉通威电子有限公司 | A kind of fire wall performance test method and device |
Non-Patent Citations (1)
| Title |
|---|
| "防火墙自动化测试工具的研究与实现";王丽,;《中国优秀硕士学位论文全文数据库-信息科技辑》;20160115;I139-36起全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110535730A (en) | 2019-12-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106452955B (en) | A kind of detection method and system of abnormal network connection | |
| EP2932340B1 (en) | Analyzing noise in a household appliance | |
| CN110535730B (en) | IP authentication function test method and device of network equipment | |
| CN109615102A (en) | A kind of Laboratory Instruments resource-sharing management method and system | |
| CN106792707A (en) | The detection method and device of counterfeit WAP | |
| CN104113443A (en) | Network equipment detection method, device and cloud detection system | |
| CN105721406A (en) | Method and device for obtaining IP black list | |
| CN110968072B (en) | Electrical automation equipment monitoring system and method based on artificial intelligence | |
| CN109995614B (en) | Alpha testing method and device | |
| CN101895587A (en) | Method, device and system for preventing users from modifying IP addresses privately | |
| EP3267661A1 (en) | Network system, cloud connector and method for identification of network devices | |
| CN114968313B (en) | Vehicle-mounted terminal offline configuration method, system, storage medium and equipment | |
| CN103973639A (en) | Network access control method, device and system | |
| CN108537043A (en) | The risk control method and system of mobile terminal | |
| CN106598793B (en) | Test system and test method based on BIOS serial port log data | |
| CN108881929A (en) | A kind of method and apparatus that direct broadcasting room login prompt is set | |
| CN103532947A (en) | Management device and management method for mobile internet on-line user identifiers | |
| CN106302475A (en) | Family's Internet service authorization method and server | |
| CN112448967A (en) | Data uploading control method and device, control equipment and automobile | |
| CN109669841A (en) | A kind of monitoring method, device, server, client terminal and monitoring system | |
| CN105391720A (en) | User terminal login method and device | |
| CN112488491B (en) | Petri network-based train control vehicle-mounted equipment access process reliability evaluation method | |
| CN104506498A (en) | Socket communication based audio/video accelerator card data processing method and device | |
| CN104023086B (en) | A kind of WEB cluster codes update method, apparatus and system | |
| CN109286947B (en) | Detection method and device of wireless access equipment and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |