CN111988576B - PON (passive optical network) network camera access control method, device, equipment and storage medium - Google Patents

PON (passive optical network) network camera access control method, device, equipment and storage medium Download PDF

Info

Publication number
CN111988576B
CN111988576B CN202010895563.7A CN202010895563A CN111988576B CN 111988576 B CN111988576 B CN 111988576B CN 202010895563 A CN202010895563 A CN 202010895563A CN 111988576 B CN111988576 B CN 111988576B
Authority
CN
China
Prior art keywords
ipc
information
xpon
security gateway
core security
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202010895563.7A
Other languages
Chinese (zh)
Other versions
CN111988576A (en
Inventor
羿龙
陈健辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Xinlongpeng Technology Co ltd
Original Assignee
Shenzhen Xinlongpeng Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Xinlongpeng Technology Co ltd filed Critical Shenzhen Xinlongpeng Technology Co ltd
Priority to CN202010895563.7A priority Critical patent/CN111988576B/en
Publication of CN111988576A publication Critical patent/CN111988576A/en
Application granted granted Critical
Publication of CN111988576B publication Critical patent/CN111988576B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/18Closed-circuit television [CCTV] systems, i.e. systems in which the video signal is not broadcast
    • H04N7/181Closed-circuit television [CCTV] systems, i.e. systems in which the video signal is not broadcast for receiving images from a plurality of remote sources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q11/00Selecting arrangements for multiplex systems
    • H04Q11/0001Selecting arrangements for multiplex systems using optical switching
    • H04Q11/0062Network aspects
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q11/00Selecting arrangements for multiplex systems
    • H04Q11/0001Selecting arrangements for multiplex systems using optical switching
    • H04Q11/0062Network aspects
    • H04Q11/0067Provisions for optical access or distribution networks, e.g. Gigabit Ethernet Passive Optical Network (GE-PON), ATM-based Passive Optical Network (A-PON), PON-Ring

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Multimedia (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Small-Scale Networks (AREA)

Abstract

The invention discloses a PON (passive optical network) network camera access control method, a PON network camera access control device, PON network camera access control equipment and a storage medium. Firstly, acquiring networking success states of an IPC, an xPON, an OLT, a core security gateway and a server management end; acquiring first IPC attribute information and second IPC attribute information according to the successful networking state, recording the first IPC attribute information as an appearance Table1, and recording the second IPC attribute information as an appearance Table2; reporting the appearance Table1 and the appearance Table2 to xPON; the control server management end issues an IP address in a core security gateway to the xPON; adding xPON into a core security gateway according to the IP address; the xPON sends information messages of the first IPC and the second IPC to the core security gateway according to the representation Table1 in a preset period; a control server management end analyzes the legality of a received Pkt information message in a core gateway; and if the received Pkt information message in the core gateway is illegal, carrying out centralized management on a plurality of IPCs. The invention can realize the centralized and efficient management of a plurality of network cameras and realize the safe centralized management and control.

Description

PON (passive optical network) network camera access control method, device, equipment and storage medium
Technical Field
The present invention relates to the field of PON technologies, and in particular, to a method, an apparatus, a device, and a storage medium for controlling access to a PON network camera.
Background
With the continuous acceleration of city construction, more and higher requirements are put forward for continuously improving the management level of cities, communities and streets, and security monitoring plays an indispensable role in continuously improving the management level. The network camera (IPC) plays the first-in-the-first-place role, and new requirements are also synchronously put forward for the remote, batch and efficient management modes of the network camera. In addition, the network access connection mode adopted by the existing network camera is mostly interfered greatly, and the network communication condition of the IPC is often seriously influenced by rainstorm and thunder weather. Therefore, it is an urgent need to solve the problem of providing a reliable centralized management method for IPC network.
Disclosure of Invention
In order to overcome the above drawbacks, embodiments of the present invention provide a PON network camera access control method, apparatus, device, and storage medium, so as to solve the problems in the prior art.
In a first aspect, an embodiment of the present invention provides a PON network camera access control method, where the method includes:
acquiring networking success states of an IPC (IP Camera), an xPON (x PON), an OLT (optical line terminal), a core security gateway and a server management end;
acquiring first IPC attribute information and second IPC attribute information according to the networking success state, recording the first IPC attribute information as an appearance Table1, and recording the second IPC attribute information as an appearance Table2;
the first IPC attribute information comprises MAC information, IP information, vendor information, type information and connection state of the first IPC; the second IPC attribute information comprises MAC information, IP information, vendor information, type information and a second IPC connection state of the second IPC;
reporting the appearance Table1 and the appearance Table2 to the xPON;
controlling the server management end to issue an IP address in the core security gateway to the xPON;
adding the xPON into the core security gateway according to the IP address;
the xPON sends information messages of a first IPC and a second IPC to the core security gateway according to the representation Table1 and the representation Table2 in a preset period, and records the information messages as Pkt;
controlling the server management end to analyze the legality of the received Pkt information message in the core gateway;
and if the received Pkt information message in the core gateway is illegal, controlling the server management end to perform centralized management on the first IPC and the second IPC in an ssh mode.
Preferably, the adding the xPON to the core security gateway according to the IP address includes:
the core security gateway sends a management request to the xPON;
and if the xPON responds to the core security gateway with a keep-alive heartbeat signal, the receiving is successful.
Preferably, if the Pkt information packet received by the core gateway is illegal, the controlling the server management end to perform centralized management on the first IPC and the second IPC in an ssh manner includes:
and closing the LAN ports where the first IPC and the second IPC are located.
Preferably, if the Pkt information packet received by the core gateway is illegal, the step of controlling the server management terminal to perform centralized management on the first IPC and the second IPC in an ssh manner further includes:
and appointing a source IP and an MAC message, and discarding and recovering the first IPC and the second IPC through an ACL rule.
Preferably, the first IPC attribute information includes MAC information, IP information, vendor information, type information of the first IPC, and a connection state of the first IPC; the second IPC attribute information includes MAC information, IP information, vendor information, type information and a second IPC connection state of the second IPC.
Preferably, the information packet includes: the information message includes PON SN information, device Type information, PON MAC information, LAN ID information, PON MAC information, IPC IP information, IPC Vendor information, and Type information.
Preferably, if the information data in the Table1 and the Table2 are changed, the first IPC and the second IPC are controlled to report the xPON.
In a second aspect, an embodiment of the present invention provides an access control apparatus for a network camera based on a PON, where the apparatus includes:
the networking state judgment module is used for acquiring the networking success states of the IPC, the xPON, the OLT, the core security gateway and the server management end;
the attribute information acquisition module is used for acquiring first IPC attribute information and second IPC attribute information according to the networking success state and recording the first IPC attribute information and the second IPC attribute information as an appearance Table1;
the first IPC attribute information comprises MAC information, IP information, vendor information, type information and connection state of the first IPC; the second IPC attribute information comprises MAC information, IP information, vendor information, type information and a second IPC connection state of the second IPC;
the information reporting module is used for reporting the appearance Table1 to the xPON;
the address issuing module is used for controlling the server management end to issue the IP address in the core security gateway to the xPON;
the adding module is used for adding the xPON into the core security gateway according to the IP address;
wherein the adding the xPON to the core security gateway according to the IP address comprises:
the core security gateway sends a management request to the xPON;
if the xPON responds to the keep-alive heartbeat signal to the core security gateway, the receiving is successful;
the information message uploading module is used for sending information messages of the first IPC and the second IPC to the core security gateway according to the representation Table1 in a preset period by the xPON, and recording the information messages as Pkt;
a legal judgment module, configured to control the server management end to analyze the validity of the Pkt information packet received in the core gateway;
and the centralized management module is used for controlling the server management end to perform centralized management on the first IPC and the second IPC in an ssh mode if the received Pkt information message in the core gateway is illegal.
In a third aspect, an embodiment of the present invention provides a PON network camera access control method and device, including: at least one processor, at least one memory, and computer program instructions stored in the memory, which when executed by the processor, implement the method of the first aspect of the embodiments described above.
In a fourth aspect, embodiments of the present invention provide a storage medium having stored thereon computer program instructions, which when executed by a processor, implement the method of the first aspect in the above embodiments.
In summary, the embodiments of the present invention provide a PON network camera access control method, an apparatus, a device, and a storage medium. Firstly, acquiring networking success states of an IPC (International Committee computer), an xPON (x-passive optical network), an OLT (optical line terminal), a core security gateway and a server management end; acquiring first IPC attribute information and second IPC attribute information according to the networking success state, recording the first IPC attribute information as an appearance Table1, and recording the second IPC attribute information as an appearance Table2; controlling the server management end to issue an IP address in the core security gateway to the xPON; adding the xPON into the core security gateway according to the IP address; the xPON sends information messages of a first IPC and a second IPC to the core security gateway according to the representation Table1 and the representation Table2 in a preset period, and records the information messages as Pkt; controlling the server management end to analyze the legality of the received Pkt information message in the core gateway; and if the received Pkt information message in the core gateway is illegal, controlling the server management end to perform centralized management on the first IPC and the second IPC in an ssh mode. Therefore, the invention remotely controls IPC in batches through the attributes of IPC such as MAC, IP, vendor, type and the like, and meets the requirements of batch IPC networking management and intelligent monitoring management; the network cameras are efficiently managed in a centralized manner through cooperation of the xPON equipment and the core security gateway, so that the purpose of centralized management and control of security is achieved, and control is accurate; in addition, the PON is a pure medium network, so that the electromagnetic interference and lightning influence of external equipment are avoided, the fault rate of lines and the external equipment is reduced, the reliability of the system is improved, and the maintenance cost is saved; compared with an active system, the PON has the advantages of saving optical cable resources, sharing bandwidth resources, saving machine room investment, high equipment safety, high networking speed, low comprehensive networking cost and the like.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings required to be used in the embodiments of the present invention will be briefly described below, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1 is a flowchart of a PON network camera access control method according to an embodiment of the present invention.
Fig. 2 is a schematic view of a working principle of a PON network camera access control method according to an embodiment of the present invention.
Fig. 3 is a schematic structural diagram of a network camera access control device based on a PON according to an embodiment of the present invention.
Fig. 4 is a schematic structural diagram of a PON-based network camera access control device according to an embodiment of the present invention.
Detailed Description
Features of various aspects and exemplary embodiments of the present invention will be described in detail below, and in order to make objects, technical solutions and advantages of the present invention more apparent, the present invention will be further described in detail below with reference to the accompanying drawings and the embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not to be construed as limiting the invention. It will be apparent to one skilled in the art that the present invention may be practiced without some of these specific details. The following description of the embodiments is merely intended to provide a better understanding of the present invention by illustrating examples of the present invention.
It is noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrases "comprising 8230; \8230;" 8230; "does not exclude the presence of additional like elements in a process, method, article, or apparatus that comprises the element.
Referring to fig. 1, an embodiment of the present invention provides a PON network camera access control method, where the method performs batch remote control on IPCs through attributes of the IPCs, such as MAC, IP, vendor, and Type, so as to meet requirements of batch IPC networking management and intelligent monitoring management; a plurality of network cameras are efficiently managed in a centralized mode through cooperation of xPON equipment and a core security gateway, the purpose of safe centralized management and control is achieved, and control is accurate. In addition, the network camera access control method is realized based on the PON, avoids the electromagnetic interference and lightning influence of external equipment, reduces the fault rate of circuits and the external equipment, improves the reliability of the system, and saves the maintenance cost; compared with an active system, the PON has the advantages of saving optical cable resources, sharing bandwidth resources, saving machine room investment, high equipment safety, high networking speed, low comprehensive networking cost and the like.
The method comprises the following steps:
s1, acquiring networking success states of an IPC (IPC), an xPON (x PON), an OLT (optical line terminal), a core security gateway and a server management terminal;
specifically, in this embodiment, after the first IPC and the second IPC obtain the IP address of xPON through the ARP message, TCP communication is established between xPON and IPC. It is understood that ARP (Address Resolution Protocol), i.e. Address Resolution Protocol, is a TCP/IP Protocol that obtains a physical Address according to an IP Address. When the first IPC and the second IPC send information, an ARP request containing a target IP address is broadcasted to an xPON host on a local area network, and a return message is received, so that the physical address of the xPON target is determined.
S2, acquiring first IPC attribute information and second IPC attribute information according to the networking success state, and recording the first IPC attribute information as an appearance Table1. Recording the second IPC attribute information as an appearance Table2;
preferably, the first IPC attribute information includes MAC information, IP information, vendor information, type information of the first IPC, and a connection state of the first IPC; the second IPC attribute information includes MAC information, IP information, vendor information, type information, and a second PC connection state of the second IPC.
Preferably, first IPC attribute information, second IPC attribute information, third IPC attribute information, and fourth IPC attribute information may also be obtained according to the networking success state, and the first IPC attribute information, the second IPC attribute information, the third IPC attribute information, and the fourth IPC attribute information are respectively recorded as Table1, table2, table _3, and Table _4; in this embodiment, the xPON specification supports 4 LAN ports at most, and an IPC is connected below each LAN port to form a networking; or the switch is connected with the lower part of the LAN interface, and each interface under the switch is connected with the IPC. It is understood that, in another preferred embodiment, the number of IPCs may be plural, and is not limited herein.
S3, reporting the expression Table1 and the expression Table2 to the xPON;
s4, controlling the server management end to issue an IP address in the core security gateway to the xPON;
s5, adding the xPON into the core security gateway according to the IP address;
preferably, the adding the xPON to the core security gateway according to the IP address includes:
the core security gateway sends a management request to the xPON;
and if the xPON responds a keep-alive heartbeat signal to the core security gateway, the receiving is successful.
S6, the xPON sends information messages of the first IPC and the second IPC to the core security gateway according to the representation Table1 and the representation Table2 in a preset period, and records the information messages as Pkt;
preferably, the information packet includes: the information message includes PON SN information, device Type information, PON MAC information, LAN ID information, PON MAC information, IPC IP information, IPC Vendor information, and Type information.
S7, controlling the server management end to analyze the legality of the received Pkt information message in the core gateway;
and S8, if the received Pkt information message in the core gateway is illegal, controlling the server management end to perform centralized management on the first IPC and the second IPC in an ssh mode.
Preferably, if the Pkt information packet received by the core gateway is illegal, the controlling the server management end to perform centralized management on the first IPC and the second IPC in an ssh manner includes:
and closing the LAN ports where the first IPC and the second IPC are located.
Preferably, if the Pkt information packet received by the core gateway is illegal, the step of controlling the server management terminal to perform centralized management on the first IPC and the second IPC in an ssh manner further includes:
and designating a source IP and an MAC message, and discarding and recovering the first IPC and the second IPC through an ACL rule. It will be appreciated that SSH is a shorthand for (Secure SHell protocol), i.e. Secure SHell protocol (SSH) is a protocol that provides Secure telnet and other Secure network services over an insecure network. SSH carries out encryption processing on all data including passwords, can carry out safer remote operation and effectively ensures that the security of data transmission is increased.
Preferably, if the information data in the Table1 changes, the first IPC and the second IPC are controlled to report the xPON. Therefore, the xPON can monitor the state information of the first IPC and the second IPC in real time, and effective management is achieved.
Referring to fig. 3, an embodiment of the present invention provides an access control apparatus for a network camera based on a PON, where the apparatus includes:
the networking state judgment module 1 is used for acquiring networking success states of an IPC, an xPON, an OLT, a core security gateway and a server management end;
the attribute information acquisition module 2 is used for acquiring first IPC attribute information and second IPC attribute information according to the networking success state, and recording the first IPC attribute information as a representation Table1 and recording the second IPC attribute information as a representation Table2;
the first IPC attribute information comprises MAC information, IP information, vendor information, type information and connection state of the first IPC; the second IPC attribute information comprises MAC information, IP information, vendor information, type information and a second IPC connection state of the second IPC;
an information reporting module 3, configured to report the representation Table1 to the xPON;
the address issuing module 4 is configured to control the server management end to issue an IP address in the core security gateway to the xPON;
an adding module 5, configured to add the xPON to the core security gateway according to the IP address;
wherein the adding the xPON to the core security gateway according to the IP address comprises:
the core security gateway sends a management request to the xPON;
if the xPON responds to the core security gateway with a keep-alive heartbeat signal, the receiving is successful;
an information message uploading module 6, configured to send, by the xPON, information messages of the first IPC and the second IPC to the core security gateway according to the representation Table1 and the representation Table2 in a preset period, and record the information messages as Pkt;
a legality judging module 7, configured to control the server management end to analyze legality of the Pkt information packet received in the core gateway;
and the centralized management module 8 is configured to control the server management end to perform centralized management on the first IPC and the second IPC in an ssh manner if the Pkt information message received by the core gateway is illegal.
In addition, the PON network camera access control method according to the embodiment of the present invention described in conjunction with fig. 1 may be implemented by a PON-based network camera access control device. Fig. 4 shows a schematic diagram of a hardware structure of a PON network camera access control method device provided in an embodiment of the present invention.
The PON based network camera access control device may comprise a processor 401 and a memory 402 storing computer program instructions.
Specifically, the processor 401 may include a Central Processing Unit (CPU), or an Application Specific Integrated Circuit (ASIC), or may be configured as one or more Integrated circuits implementing embodiments of the present invention.
Memory 402 may include mass storage for data or instructions. By way of example, and not limitation, memory 402 may include a Hard Disk Drive (HDD), floppy Disk Drive, flash memory, optical Disk, magneto-optical Disk, tape, or Universal Serial Bus (USB) Drive or a combination of two or more of these. Memory 402 may include removable or non-removable (or fixed) media, where appropriate. The memory 402 may be internal or external to the data processing apparatus, where appropriate. In a particular embodiment, the memory 402 is non-volatile solid-state memory. In a particular embodiment, the memory 402 includes Read Only Memory (ROM). Where appropriate, the ROM may be mask-programmed ROM, programmable ROM (PROM), erasable PROM (EPROM), electrically Erasable PROM (EEPROM), electrically Alterable ROM (EAROM), or flash memory, or a combination of two or more of these.
The processor 401 reads and executes the computer program instructions stored in the memory 402 to implement any one of the PON network camera access control methods in the above embodiments.
In one example, the PON-based network camera access control device may further include a communication interface 403 and a bus 410. As shown in fig. 4, the processor 401, the memory 402, and the communication interface 403 are connected via a bus 410 to complete communication therebetween.
The communication interface 403 is mainly used for implementing communication between modules, apparatuses, units and/or devices in the embodiments of the present invention.
The bus 410 includes hardware, software, or both to couple the components of the PON network camera access control method apparatus to each other. By way of example, and not limitation, a bus may include an Accelerated Graphics Port (AGP) or other graphics bus, an Enhanced Industry Standard Architecture (EISA) bus, a Front Side Bus (FSB), a Hypertransport (HT) interconnect, an Industry Standard Architecture (ISA) bus, an infiniband interconnect, a Low Pin Count (LPC) bus, a memory bus, a Micro Channel Architecture (MCA) bus, a Peripheral Component Interconnect (PCI) bus, a PCI-Express (PCI-X) bus, a Serial Advanced Technology Attachment (SATA) bus, a video electronics standards association local (VLB) bus, or other suitable bus or a combination of two or more of these. Bus 410 may include one or more buses, where appropriate. Although specific buses have been described and illustrated with respect to embodiments of the invention, any suitable buses or interconnects are contemplated by the invention.
In addition, with reference to the PON network camera access control method in the foregoing embodiment, an embodiment of the present invention may provide a computer-readable storage medium to implement the method. The computer readable storage medium having stored thereon computer program instructions; the computer program instructions, when executed by a processor, implement any one of the PON network camera access control methods in the above embodiments.
In summary, the PON network camera access control method, apparatus, device, and storage medium provided in the embodiments of the present invention. Firstly, acquiring networking success states of an IPC, an xPON, an OLT, a core security gateway and a server management end; acquiring first IPC attribute information and second IPC attribute information according to the networking success state, and recording the first IPC attribute information and the second IPC attribute information as an appearance Table1; reporting the expression Table1 to the xPON; controlling the server management end to issue an IP address in the core security gateway to the xPON; adding the xPON into the core security gateway according to the IP address; the xPON sends information messages of a first IPC and a second IPC to the core security gateway according to the representation Table1 in a preset period, and records the information messages as Pkt; controlling the server management end to analyze the legality of the received Pkt information message in the core gateway; and if the received Pkt information message in the core gateway is illegal, controlling the server management end to perform centralized management on the first IPC and the second IPC in an ssh mode. Therefore, the IPC is remotely controlled in batches through the attributes of the IPC, such as MAC, IP, vendor, type and the like, and the requirements of batch IPC networking management and intelligent monitoring management are met; the network cameras are efficiently managed in a centralized manner through cooperation of the xPON equipment and the core security gateway, so that the purpose of centralized management and control of security is achieved, and control is accurate; in addition, the PON is a pure medium network, so that the electromagnetic interference and lightning influence of external equipment are avoided, the fault rate of lines and the external equipment is reduced, the reliability of the system is improved, and the maintenance cost is saved; compared with an active system, the PON has the advantages of saving optical cable resources, sharing bandwidth resources, saving machine room investment, being high in equipment safety, high in network building speed, low in comprehensive network building cost and the like.
It should also be noted that the exemplary embodiments mentioned in this patent describe some methods or systems based on a series of steps or devices. However, the present invention is not limited to the order of the above-described steps, that is, the steps may be performed in the order mentioned in the embodiments, may be performed in an order different from the order in the embodiments, or may be performed simultaneously.
As described above, only the specific embodiments of the present invention are provided, and it can be clearly understood by those skilled in the art that, for convenience and brevity of description, the specific working processes of the system, the module and the unit described above may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again. It should be understood that the scope of the present invention is not limited thereto, and any equivalent modifications or substitutions can be easily made by those skilled in the art within the technical scope of the present invention.

Claims (8)

1. A PON (passive optical network) network camera access control method is characterized by comprising the following steps:
acquiring networking success states of an IPC, an xPON, an OLT, a core security gateway and a server management end;
acquiring first IPC attribute information and second IPC attribute information according to the networking success state, recording the first IPC attribute information as an appearance Table1, and recording the second IPC attribute information as an appearance Table2;
the first IPC attribute information comprises MAC information, IP information, vendor information, type information and connection state of the first IPC; the second IPC attribute information comprises MAC information, IP information, vendor information, type information and a second IPC connection state of the second IPC;
reporting the appearance Table1 and the appearance Table2 to the xPON at the same time;
controlling the server management end to issue an IP address in the core security gateway to the xPON;
adding the xPON into the core security gateway according to the IP address;
wherein the adding the xPON to the core security gateway according to the IP address comprises:
the core security gateway sends a management request to the xPON;
if the xPON responds to the core security gateway with a keep-alive heartbeat signal, the receiving is successful;
the xPON sends information messages of a first IPC and a second IPC to the core security gateway according to the representation Table1 and the representation Table2 in a preset period, and records the information messages as Pkt;
controlling the server management end to analyze the legality of the received Pkt information message in the core security gateway;
and if the received Pkt information message in the core security gateway is illegal, controlling the server management end to perform centralized management on the first IPC and the second IPC in an ssh mode.
2. The PON network camera access control method according to claim 1, wherein the controlling the server management end to centrally manage the first IPC and the second IPC in an ssh manner, if the Pkt information packet received by the core security gateway is illegal, comprises:
and closing the LAN ports of the first IPC and the second IPC.
3. The PON network camera access control method according to claim 2, wherein if the Pkt information packet received by the core security gateway is illegal, controlling the server management end to centrally manage the first IPC and the second IPC in an ssh manner further comprises:
and designating a source IP and an MAC message, and discarding and recovering the first IPC and the second IPC through an ACL rule.
4. The PON network camera access control method according to claim 1, wherein the information packet includes: the information message includes PON SN information, device Type information, PON MAC information, LAN ID information, PON MAC information, IPC IP information, IPC Vendor information, and Type information.
5. The PON network camera access control method of claim 4, wherein if the information data in the Table1 and the Table2 changes, the first IPC and the second IPC are controlled to report the xPON.
6. A PON-based network camera access control apparatus, the apparatus comprising:
the networking state judgment module is used for acquiring the networking success states of the IPC, the xPON, the OLT, the core security gateway and the server management end;
the attribute information acquisition module is used for acquiring first IPC attribute information and second IPC attribute information according to the networking success state and recording the first IPC attribute information and the second IPC attribute information as an appearance Table1;
the first IPC attribute information comprises MAC information, IP information, vendor information, type information and connection state of the first IPC; the second IPC attribute information comprises MAC information, IP information, vendor information, type information and a second IPC connection state of the second IPC;
the information reporting module is used for reporting the expression Table1 to the xPON;
the address issuing module is used for controlling the server management end to issue the IP address in the core security gateway to the xPON;
the adding module is used for adding the xPON into the core security gateway according to the IP address;
wherein the adding the xPON to the core security gateway according to the IP address comprises:
the core security gateway sends a management request to the xPON;
if the xPON responds to the core security gateway with a keep-alive heartbeat signal, the receiving is successful;
the information message uploading module is used for sending information messages of the first IPC and the second IPC to the core security gateway according to the representation Table1 in a preset period by the xPON, and recording the information messages as Pkt;
the legality judging module is used for controlling the server management end to analyze the legality of the received Pkt information message in the core security gateway;
and the centralized management module is used for controlling the server management end to perform centralized management on the first IPC and the second IPC in a ssh mode if the received Pkt information message in the core security gateway is illegal.
7. The utility model provides a network camera access control equipment based on PON which characterized in that includes: at least one processor, at least one memory, and computer program instructions stored in the memory that, when executed by the processor, implement the method of any of claims 1-5.
8. A storage medium having stored thereon computer program instructions which, when executed by a processor, implement the method of any one of claims 1-5.
CN202010895563.7A 2020-08-31 2020-08-31 PON (passive optical network) network camera access control method, device, equipment and storage medium Active CN111988576B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010895563.7A CN111988576B (en) 2020-08-31 2020-08-31 PON (passive optical network) network camera access control method, device, equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010895563.7A CN111988576B (en) 2020-08-31 2020-08-31 PON (passive optical network) network camera access control method, device, equipment and storage medium

Publications (2)

Publication Number Publication Date
CN111988576A CN111988576A (en) 2020-11-24
CN111988576B true CN111988576B (en) 2023-02-10

Family

ID=73440505

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010895563.7A Active CN111988576B (en) 2020-08-31 2020-08-31 PON (passive optical network) network camera access control method, device, equipment and storage medium

Country Status (1)

Country Link
CN (1) CN111988576B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113596633A (en) * 2021-07-28 2021-11-02 深圳市新龙鹏科技有限公司 Network equipment remote management and control method, device, equipment and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006287292A (en) * 2005-03-31 2006-10-19 Yokogawa Electric Corp Network camera system
CN101753354A (en) * 2008-12-22 2010-06-23 北京中星微电子有限公司 Method for realizing the automatic configuration of network camera and monitoring system
CN203504609U (en) * 2013-09-27 2014-03-26 武高骏 Safety monitoring system based on EPON network

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103378979B (en) * 2012-04-13 2016-12-14 华为终端有限公司 The management method of a kind of EPON, equipment and system
CN104753586B (en) * 2013-12-25 2017-08-15 中国电信股份有限公司 The acquisition method and system of passive optical network element information
CN107333099B (en) * 2016-04-28 2019-11-19 瑞昱半导体股份有限公司 Network camera with wireless relay function
CN108683701A (en) * 2018-04-03 2018-10-19 浙江大华技术股份有限公司 A kind of connection method and rear end equipment, IPC
CN110830419B (en) * 2018-08-09 2021-05-18 华为技术有限公司 Access control method and device for internet protocol camera
CN111277421B (en) * 2018-11-16 2022-09-23 慧盾信息安全科技(苏州)股份有限公司 System and method for network camera access safety protection

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006287292A (en) * 2005-03-31 2006-10-19 Yokogawa Electric Corp Network camera system
CN101753354A (en) * 2008-12-22 2010-06-23 北京中星微电子有限公司 Method for realizing the automatic configuration of network camera and monitoring system
CN203504609U (en) * 2013-09-27 2014-03-26 武高骏 Safety monitoring system based on EPON network

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
变电站远程自动监控系统应用研究;何芸;《通信电源技术》;20110725(第04期);全文 *
网络视频监控系统接入建设技术方案探讨;余世熙;《通信与信息技术》;20091125(第06期);全文 *

Also Published As

Publication number Publication date
CN111988576A (en) 2020-11-24

Similar Documents

Publication Publication Date Title
US20170126711A1 (en) In-vehicle network attack detection method and apparatus
CN113812126A (en) Message transmission method, device and system
CN106130962B (en) Message processing method and device
CN103037373A (en) Wireless node blocking system
CN111988576B (en) PON (passive optical network) network camera access control method, device, equipment and storage medium
CN106713411B (en) Communication device and method based on Ethernet virtual serial technology and LTE wireless network
CN114389913A (en) Exception handling method of gateway controller, gateway controller and automobile
CN114268457A (en) Multi-protocol multi-service public network security access method
CN106921534A (en) Data traffic monitoring and managing method and device
CN103152794A (en) Service access method and access controller
CN206237495U (en) A kind of Wireless Networking Yunmen access control system
CN105959060B (en) A kind of external image intensifer monitoring system and method based on networking mode
CN112688916A (en) Method, device and system for realizing remote automatic packet capturing
CN202026425U (en) Server with 3rd generation (3G) and wireless fidelity (WIFI) network video function
CN107453910A (en) A kind of method and apparatus for connecting video cloud and traditional ONVIF monitoring devices
CN109981462B (en) Message processing method and device
CN107547444B (en) Traffic statistical method and switching equipment
CN107872309A (en) A kind of adaptive approach, device and the equipment of Network Transfer Media and speed
CN107835188A (en) A kind of equipment safety cut-in method and system based on SDN
CN110867967B (en) Background flow playback method for communication of power monitoring system
CN113055427B (en) Service-based server cluster access method and device
CN109361695B (en) Method and device for authorizing network access, computer equipment and storage medium
CN110730163B (en) Substation main and auxiliary control linkage method and substation auxiliary control equipment
CN111357244B (en) Method for providing data packets from a CAN bus, control device and system having a CAN bus
FI20206247A1 (en) Method and apparatus for fixed communication line malfunction detection and recovery

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant