CN111669400A - Method for filtering website of wireless router - Google Patents
Method for filtering website of wireless router Download PDFInfo
- Publication number
- CN111669400A CN111669400A CN202010564534.2A CN202010564534A CN111669400A CN 111669400 A CN111669400 A CN 111669400A CN 202010564534 A CN202010564534 A CN 202010564534A CN 111669400 A CN111669400 A CN 111669400A
- Authority
- CN
- China
- Prior art keywords
- wireless router
- address
- website
- cloud server
- blacklist
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a method for filtering a website of a wireless router, which comprises the following steps: s1: a terminal initiates a network access request to a wireless router; s2: if the requested target is the website, the wireless router inquires the DNS server about the IP address corresponding to the website, and if the requested target is the IP address, the wireless router does not need to inquire about the DNS; s3: the wireless router sends the requested target website and the IP address or the independent IP address to the cloud server; s4: the cloud server compares the website or the IP address reported by the wireless router in a website blacklist and an IP address blacklist respectively, if the website or the IP address reported by the wireless router is not in the blacklist, the cloud server replies OK to the wireless router, and if not, the cloud server replies NO; s5: the wireless router executes the reply according to the reply received by the cloud server; the invention can break through the limit of the local processing capacity of the router, effectively block a large number of bad websites including websites and IP, and provide a good environment for teenagers to surf the internet.
Description
Technical Field
The invention belongs to the technical field of communication, and particularly relates to a method for filtering a website of a wireless router.
Background
In the internet era, WiFi internet access is ubiquitous, almost all family members can access the internet through a wireless router, but for minors, because the mind of the minors is not fully mature, yellow gambling poison content on the network can seriously affect the healthy growth of teenagers, and a healthy network environment needs to be created for the minors. The public network fact has a large number of bad websites which are not blocked, the local storage and calculation capacity of the WiFi router is limited at present, although the WiFi router has a local filtering function, few websites which can be locally filtered and blocked cannot execute massive website and IP blacklist blocking, and the risk that parents can control children to surf the internet to contact inappropriate information of children is not provided, which is a serious social problem to be solved urgently. Therefore, we propose a method for filtering the website of the wireless router to solve the above mentioned problems in the background art.
Disclosure of Invention
The invention aims to solve the defects in the prior art and provides a method for filtering a wireless router website.
In order to achieve the purpose, the invention provides the following technical scheme:
a method for filtering a website of a wireless router comprises the following steps:
s1: a terminal initiates a network access request to a wireless router, the target of the request is a website or an IP address, and a TCP/UDP protocol is embedded in the wireless router;
s2: if the requested target is the website, the wireless router inquires the DNS server about the IP address corresponding to the website, and if the requested target is the IP address, the wireless router does not need to inquire about the DNS;
s3: the wireless router sends a target website and an IP address or an independent IP address requested by the terminal to the cloud server;
s4: the cloud server compares the website or the IP address reported by the wireless router in a website blacklist and an IP address blacklist respectively, if the website or the IP address reported by the wireless router is not in the blacklist, the cloud server replies OK to the wireless router, and if not, the cloud server replies NO;
s5: the wireless router executes according to the reply received by the cloud server, if the reply of the cloud server is OK, the wireless router allows the terminal to continue accessing the requested target website or IP address, and if the reply of the cloud server is NO, the wireless router refuses the terminal to access the requested target website or IP address;
s6: the method comprises the steps that a timer group T is set on the wireless router, the unit is ms, a rule parameter R is set, the wireless router starts timing when a website address and an IP (Internet protocol) which are required to be accessed by a terminal are sent to a cloud server, if the T is overtime and a reply of the cloud server is still not received, execution is carried out according to the preset rule parameter R, when the T is set to be OK, execution is carried out according to release, and when the T is set to be NO, execution is carried out according to refusal.
Preferably, the number of the terminals in the step S1 is at least one, and the wireless router may send multiple requests to the cloud server concurrently regardless of whether the number of the terminals exceeds one.
Preferably, the website blacklist and the IP address blacklist in step S4 are both preset in the cloud server.
Preferably, the wireless router judges that the blacklist can establish a temporary library locally to contain 1000 websites, the websites are judged by the cloud, the websites are not sent repeatedly within 3 hours, the temporary library is first in and first out, if the temporary library is full, the temporary library covers the old websites, if the temporary library is less than 3 hours, the temporary library is normally covered, and the local temporary library does not need to be sent to the cloud for judgment; the domain name, web address, and URL are collectively referred to as a web address.
Compared with the prior art, the invention has the beneficial effects that: compared with the prior art, the method for filtering the website of the wireless router can break through the limitation of the local processing capability of the router, effectively block a large number of bad websites including websites and IP, and provide a good environment for teenagers to surf the internet.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is further described in detail with reference to the following embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
A method for filtering a website of a wireless router comprises the following steps:
s1: a terminal initiates a network access request to a wireless router, the target of the request is a website or an IP address, and a TCP/UDP protocol is embedded in the wireless router;
s2: if the requested target is the website, the wireless router inquires the DNS server about the IP address corresponding to the website, and if the requested target is the IP address, the wireless router does not need to inquire about the DNS;
s3: the wireless router sends the requested target website and the IP address or the independent IP address to the cloud server;
s4: the cloud server compares the website or the IP address reported by the wireless router in a website blacklist and an IP address blacklist respectively, if the website or the IP address reported by the wireless router is not in the blacklist, the cloud server replies OK to the wireless router, and if not, the cloud server replies NO;
s5: the wireless router executes according to the reply received by the cloud server, if the reply of the cloud server is OK, the wireless router allows the terminal to continue accessing the requested target website or IP address, and if the reply of the cloud server is NO, the wireless router refuses the terminal to access the requested target website or IP address;
s6: the method comprises the steps that a timer group T is set on the wireless router, the unit is ms, a rule parameter R is set, the wireless router starts timing when a website address and an IP (Internet protocol) which are required to be accessed by a terminal are sent to a cloud server, if the T is overtime and a reply of the cloud server is still not received, execution is carried out according to the preset rule parameter R, when the T is set to be OK, execution is carried out according to release, and when the T is set to be NO, execution is carried out according to refusal.
Specifically, the number of the terminals in step S1 is at least one, and no matter whether the number of the terminals exceeds one, the wireless router may send multiple requests to the cloud server, and the wireless router sends the requests to the cloud server one by one for judgment.
A terminal:
the terminal A accesses the Xinlang www.sina.com.cn, the router sends www.sina.com.cn to DNS to search IP to obtain IP36.159.95.166, then sends www.sina.com.cn, 36.159.95.166 and the event ID to the cloud server, starts T at the same time, obtains the response of the cloud server before T overtime, executes according to the response, does not obtain the response after T overtime, executes according to R, and even if the obtained cloud server does not use the response about the event ID.
The newwave web page accessed by the terminal a is a web page nested with a plurality of URLs, and the terminal a subsequently initiates access to a plurality of URLs, such as: the wireless router will likewise send the access to the two URLs to the cloud server for judgment, respectively, according to the URL1 and the URL 2.
Reporting an event ID1 (accessing URL 1), a URL1 (website address) and an IP (IP address), simultaneously starting T (URL 1), reporting an event ID2 (accessing URL 2), a URL2 (website address) and an IP (IP address), simultaneously starting T (URL 2), and waiting for a cloud server to reply.
A plurality of terminals:
and so on.
Specifically, the website blacklist and the IP address blacklist in step S4 are both preset in the cloud server.
Specifically, the wireless router judges that the blacklist can establish a temporary library locally to contain 1000 websites, the websites are judged by the cloud, the websites are not sent repeatedly within 3 hours, the temporary library is first in and first out, if the temporary library is full, the temporary library covers the old websites, even if the temporary library is not covered within 3 hours, the temporary library is normal, and the local temporary library does not need to be sent to the cloud for judgment.
The domain name, web site, and URL are collectively referred to herein as a web site.
In summary, the following steps: compared with the prior art, the method for filtering the website of the wireless router can break through the limitation of the local processing capability of the router, effectively block a large number of bad websites including websites and IP, and provide a good environment for teenagers to surf the internet.
Finally, it should be noted that: although the present invention has been described in detail with reference to the foregoing embodiments, it will be apparent to those skilled in the art that modifications may be made to the embodiments or portions thereof without departing from the spirit and scope of the invention.
Claims (4)
1. A method for filtering a website of a wireless router is characterized in that: the method comprises the following steps:
s1: a terminal initiates a network access request to a wireless router, the target of the request is a website or an IP address, and a TCP/UDP protocol is embedded in the wireless router;
s2: if the requested target is the website, the wireless router inquires the DNS server about the IP address corresponding to the website, and if the requested target is the IP address, the wireless router does not need to inquire about the DNS;
s3: the wireless router sends a target website and an IP address or an independent IP address requested by the terminal to the cloud server;
s4: the cloud server compares the website or the IP address reported by the wireless router in a website blacklist and an IP address blacklist respectively, if the website or the IP address reported by the wireless router is not in the blacklist, the cloud server replies OK to the wireless router, and if not, the cloud server replies NO;
s5: the wireless router executes the reply according to the received cloud server, if the reply of the cloud server is OK, the wireless router allows the terminal to continue accessing the requested target website or IP address, and if the reply of the cloud server is NO, the wireless router refuses the terminal to access the requested target website or IP address;
s6: the method comprises the steps that a timer group T is set on the wireless router, the unit is ms, a rule parameter R is set, the wireless router starts timing when a website address and an IP (Internet protocol) which are required to be accessed by a terminal are sent to a cloud server, if the T is overtime and a reply of the cloud server is still not received, execution is carried out according to the preset rule parameter R, when the T is set to be OK, execution is carried out according to release, and when the T is set to be NO, execution is carried out according to refusal.
2. The method of claim 1, wherein the method comprises: the number of the terminals in the step S1 is at least one, and the wireless router may send multiple requests to the cloud server concurrently no matter whether the number of the terminals exceeds one.
3. The method of claim 1, wherein the method comprises: the website blacklist and the IP address blacklist in the step S4 are both preset in the cloud server.
4. The method of claim 1, wherein the method comprises: the wireless router judges that the blacklist can establish a temporary library locally to contain 1000 websites, the websites are judged by the cloud, the websites are not sent repeatedly within 3 hours, the temporary library is first in and first out, if the blacklist is full, the temporary library is covered, if the blacklist is not covered within 3 hours, the temporary library is normal, and the local temporary library does not need to be judged by the cloud; the domain name, web address, and URL are collectively referred to as a web address.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010564534.2A CN111669400A (en) | 2020-06-19 | 2020-06-19 | Method for filtering website of wireless router |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010564534.2A CN111669400A (en) | 2020-06-19 | 2020-06-19 | Method for filtering website of wireless router |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111669400A true CN111669400A (en) | 2020-09-15 |
Family
ID=72388963
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010564534.2A Pending CN111669400A (en) | 2020-06-19 | 2020-06-19 | Method for filtering website of wireless router |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111669400A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115442159A (en) * | 2022-11-07 | 2022-12-06 | 深圳市华曦达科技股份有限公司 | Household routing-based risk management and control method, system and storage medium |
| WO2024116185A1 (en) * | 2022-12-01 | 2024-06-06 | Kawe Chaim Menachem | System and method for restrictive communication control over personal communication devices |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102930211A (en) * | 2012-11-07 | 2013-02-13 | 北京奇虎科技有限公司 | Method for intercepting malicious URLs in multi-kernel browser and multi-kernel browser |
| CN103491543A (en) * | 2013-09-30 | 2014-01-01 | 北京奇虎科技有限公司 | Method for detecting malicious websites through wireless terminal, and wireless terminal |
| WO2018006684A1 (en) * | 2016-07-08 | 2018-01-11 | 中兴通讯股份有限公司 | Message processing method and device, and router |
| CN109005187A (en) * | 2018-08-21 | 2018-12-14 | 广州飞硕信息科技股份有限公司 | A kind of communication information guard method and device |
| CN110855543A (en) * | 2019-10-24 | 2020-02-28 | 广西信恒科技有限公司 | Website filtering method and device based on cloud technology |
-
2020
- 2020-06-19 CN CN202010564534.2A patent/CN111669400A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102930211A (en) * | 2012-11-07 | 2013-02-13 | 北京奇虎科技有限公司 | Method for intercepting malicious URLs in multi-kernel browser and multi-kernel browser |
| CN103491543A (en) * | 2013-09-30 | 2014-01-01 | 北京奇虎科技有限公司 | Method for detecting malicious websites through wireless terminal, and wireless terminal |
| WO2018006684A1 (en) * | 2016-07-08 | 2018-01-11 | 中兴通讯股份有限公司 | Message processing method and device, and router |
| CN109005187A (en) * | 2018-08-21 | 2018-12-14 | 广州飞硕信息科技股份有限公司 | A kind of communication information guard method and device |
| CN110855543A (en) * | 2019-10-24 | 2020-02-28 | 广西信恒科技有限公司 | Website filtering method and device based on cloud technology |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115442159A (en) * | 2022-11-07 | 2022-12-06 | 深圳市华曦达科技股份有限公司 | Household routing-based risk management and control method, system and storage medium |
| CN115442159B (en) * | 2022-11-07 | 2023-03-24 | 深圳市华曦达科技股份有限公司 | Household routing-based risk management and control method, system and storage medium |
| WO2024116185A1 (en) * | 2022-12-01 | 2024-06-06 | Kawe Chaim Menachem | System and method for restrictive communication control over personal communication devices |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3090529B1 (en) | Processing service requests for digital content | |
| CN101674293B (en) | Method and system for processing abnormal request in distributed application | |
| CN111669400A (en) | Method for filtering website of wireless router | |
| US20130346552A1 (en) | Download method, system, and device for mobile terminal | |
| US8910282B2 (en) | System and method for protecting devices on dynamically configured network | |
| US20050283831A1 (en) | Security system and method using server security solution and network security solution | |
| CN105208026A (en) | Hostile attack preventing method and network system | |
| CN109660593B (en) | Internet of things platform access management method, device and system | |
| CN101378312B (en) | Safety payment control system and method based on broadband network | |
| CN113347155A (en) | Method, system and device for defending ARP spoofing | |
| CN105848149B (en) | Security authentication method for wireless local area network | |
| US20150135268A1 (en) | System and method to improve network security | |
| KR102685997B1 (en) | Harmful ip determining method | |
| CN111147468A (en) | User access method, device, electronic equipment and storage medium | |
| US10320784B1 (en) | Methods for utilizing fingerprinting to manage network security and devices thereof | |
| CN107508840A (en) | A kind of method that monitoring DNS domain name based on DNS Proxy is attacked | |
| EP2077018B1 (en) | Method for controlling access to a network in a communication system | |
| CN109413220B (en) | Method for avoiding DNS propagation in DDOS cloud protection system accessed in alias mode | |
| CN113347136B (en) | Access authentication method, device, equipment and storage medium | |
| CN112188300B (en) | Method for realizing efficient domain name resolution based on smart television local DNS service | |
| TWI852130B (en) | Automatic proxy system and automatic proxy method | |
| CN114710365B (en) | Intranet environment establishing method, electronic equipment and storage medium | |
| CN114301686B (en) | Security policy matching method and device and storage medium | |
| CN118102351B (en) | Mobile signal enhancement method and system based on multi-parameter dynamic adjustment strategy | |
| CN111385113B (en) | Differential access method and system for VPN server cluster |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20200915 |
|
| RJ01 | Rejection of invention patent application after publication |