CN113691646A - Domain name service resource access method, device, electronic equipment and medium - Google Patents

Domain name service resource access method, device, electronic equipment and medium Download PDF

Info

Publication number
CN113691646A
CN113691646A CN202110947734.0A CN202110947734A CN113691646A CN 113691646 A CN113691646 A CN 113691646A CN 202110947734 A CN202110947734 A CN 202110947734A CN 113691646 A CN113691646 A CN 113691646A
Authority
CN
China
Prior art keywords
domain name
address
name service
service resource
local cache
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN202110947734.0A
Other languages
Chinese (zh)
Inventor
高慧磊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Topsec Technology Co Ltd
Beijing Topsec Network Security Technology Co Ltd
Beijing Topsec Software Co Ltd
Original Assignee
Beijing Topsec Technology Co Ltd
Beijing Topsec Network Security Technology Co Ltd
Beijing Topsec Software Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Topsec Technology Co Ltd, Beijing Topsec Network Security Technology Co Ltd, Beijing Topsec Software Co Ltd filed Critical Beijing Topsec Technology Co Ltd
Priority to CN202110947734.0A priority Critical patent/CN113691646A/en
Publication of CN113691646A publication Critical patent/CN113691646A/en
Withdrawn legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4505Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
    • H04L61/4511Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/24Querying
    • G06F16/245Query processing
    • G06F16/2455Query execution
    • G06F16/24552Database cache management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/27Replication, distribution or synchronisation of data between databases or within a distributed database system; Distributed database system architectures therefor
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/58Caching of addresses or names

Abstract

The present disclosure relates to a domain name service resource access method, apparatus, electronic device, and medium; wherein, the method comprises the following steps: acquiring domain names corresponding to a plurality of domain name service resources corresponding to a Virtual Private Network (VPN) client; acquiring a network protocol IP address corresponding to a domain name; storing the corresponding relation between the domain name and the IP address to a local cache; responding to a domain name service resource access request triggered by a user, and acquiring an IP address corresponding to a domain name service resource from a local cache; the domain name service resource is accessed via an IP address. The embodiment of the disclosure can avoid wasting bandwidth resources, and optimizes the existing mode of accessing service resources through domain names.

Description

Domain name service resource access method, device, electronic equipment and medium
Technical Field
The present disclosure relates to the field of network communications, and in particular, to a method, an apparatus, an electronic device, and a medium for accessing domain name service resources.
Background
With the rapid development of internet technology, accessing a server through a domain name becomes a convenient access mode.
In the prior art, when a client accesses a service resource corresponding to a domain name through the domain name, a domain name resolution request needs to be sent to a domain name server, the domain name server resolves a network Protocol (IP) address corresponding to the domain name, and the client accesses the service resource corresponding to the domain name through the IP address corresponding to the domain name.
However, in the prior art, a step of domain name resolution is required each time a service resource corresponding to a domain name is accessed, which wastes bandwidth resources.
Disclosure of Invention
To solve the technical problem or at least partially solve the technical problem, the present disclosure provides a domain name service resource access method, apparatus, electronic device, and medium.
In a first aspect, the present disclosure provides a domain name service resource access method, including:
acquiring domain names corresponding to a plurality of domain name service resources corresponding to a Virtual Private Network (VPN) client;
acquiring a network protocol IP address corresponding to the domain name;
storing the corresponding relation between the domain name and the IP address to a local cache;
responding to a domain name service resource access request triggered by a user, and acquiring an IP address corresponding to the domain name service resource from the local cache;
and accessing the domain name service resource through the IP address.
Optionally, the obtaining the IP address corresponding to the domain name includes:
sending a domain name resolution request to a Domain Name System (DNS) aiming at each domain name; and receiving a domain name resolution response returned by the DNS, wherein the domain name resolution request comprises the domain name, and the domain name resolution response comprises an IP address corresponding to the domain name.
Optionally, the obtaining domain names respectively corresponding to a plurality of domain name service resources corresponding to the virtual private network VPN client includes:
acquiring configuration information corresponding to a Virtual Private Network (VPN) client, wherein the configuration information comprises: domain names corresponding to the domain name service resources respectively;
and acquiring domain names corresponding to the domain name service resources according to the configuration information.
Optionally, the method further includes:
and under the condition of preset triggering, updating the corresponding relation between the domain name and the IP address stored in the local cache.
Optionally, the updating, under a preset trigger condition, the correspondence between the domain name and the IP address stored in the local cache includes:
periodically updating the corresponding relation between the domain name and the IP address stored in the local cache;
alternatively, the first and second electrodes may be,
and triggering and updating the corresponding relation between the domain name and the IP address stored in the local cache in response to the configuration information which is modified.
Optionally, before the responding to the completion of modifying the configuration information and triggering the update of the correspondence between the domain name and the IP address stored in the local cache, the method further includes:
and receiving configuration information modification operation triggered by an administrator, and modifying the configuration information.
Optionally, before the responding to the domain name service resource access request triggered by the user and acquiring the IP address corresponding to the domain name service resource from the local cache, the method further includes:
and responding to the login of the user on the VPN client, and establishing a VPN communication tunnel.
In a second aspect, the present disclosure provides a domain name service resource access apparatus, including:
the domain name acquisition module is used for acquiring domain names corresponding to a plurality of domain name service resources corresponding to the virtual private network VPN client;
the address acquisition module is used for acquiring a network protocol IP address corresponding to the domain name;
the storage module is used for storing the corresponding relation between the domain name and the IP address to a local cache;
the response module is used for responding to a domain name service resource access request triggered by a user and acquiring an IP address corresponding to the domain name service resource from the local cache;
and the access module is used for accessing the domain name service resource through the IP address.
Optionally, the address obtaining module is specifically configured to:
sending a domain name resolution request to a Domain Name System (DNS) aiming at each domain name; and receiving a domain name resolution response returned by the DNS, wherein the domain name resolution request comprises the domain name, and the domain name resolution response comprises an IP address corresponding to the domain name.
Optionally, the domain name obtaining module is specifically configured to:
acquiring configuration information corresponding to a Virtual Private Network (VPN) client, wherein the configuration information comprises: domain names corresponding to the domain name service resources respectively;
and acquiring domain names corresponding to the domain name service resources according to the configuration information.
Optionally, the apparatus further comprises:
and the updating module is used for updating the corresponding relation between the domain name and the IP address stored in the local cache under the preset triggering condition.
Optionally, the update module is specifically configured to:
periodically updating the corresponding relation between the domain name and the IP address stored in the local cache;
alternatively, the first and second electrodes may be,
and triggering and updating the corresponding relation between the domain name and the IP address stored in the local cache in response to the configuration information which is modified.
Optionally, the apparatus further comprises:
and the modification module is used for receiving configuration information modification operation triggered by an administrator and modifying the configuration information before the configuration information is modified and the corresponding relation between the domain name and the IP address stored in the local cache is triggered and updated.
Optionally, the apparatus further comprises:
and the establishing module is used for responding to a user login VPN client and establishing a VPN communication tunnel before responding to a domain name service resource access request triggered by the user and acquiring the IP address corresponding to the domain name service resource from the local cache.
In a third aspect, the present disclosure also provides an electronic device, including:
one or more processors;
a storage device for storing one or more programs,
when executed by the one or more processors, cause the one or more processors to implement the domain name service resource access method of any of the embodiments of the present disclosure.
In a fourth aspect, the present disclosure also provides a computer-readable storage medium, on which a computer program is stored, which when executed by a processor, implements the domain name service resource access method according to any one of the embodiments of the present disclosure.
Compared with the prior art, the technical scheme provided by the embodiment of the disclosure has the following advantages: by acquiring domain names corresponding to a plurality of domain name service resources corresponding to a Virtual Private Network (VPN) client respectively and acquiring IP addresses corresponding to the domain names, and then storing the corresponding relation between the domain names and the IP addresses to a local cache, after a user triggers a domain name service resource access request, the VPN client can directly respond to the domain name service resource access request, acquire the IP addresses corresponding to the domain name service resources from the local cache, and access the domain name service resources through the IP addresses, so that the step of domain name resolution is not needed when the service resources corresponding to the domain names are accessed every time, the waste of bandwidth resources is avoided, and the existing mode of accessing the service resources through the domain names is optimized.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present disclosure and together with the description, serve to explain the principles of the disclosure.
In order to more clearly illustrate the embodiments or technical solutions in the prior art of the present disclosure, the drawings used in the description of the embodiments or prior art will be briefly described below, and it is obvious for those skilled in the art that other drawings can be obtained according to the drawings without inventive exercise.
Fig. 1 is a schematic flowchart of a domain name service resource access method provided by an embodiment of the present disclosure;
fig. 2 is a schematic flowchart of a domain name service resource access method provided by an embodiment of the present disclosure;
fig. 3 is a schematic structural diagram of a domain name service resource access device according to an embodiment of the present disclosure;
fig. 4 is a schematic structural diagram of an electronic device provided in an embodiment of the present disclosure.
Detailed Description
In order that the above objects, features and advantages of the present disclosure may be more clearly understood, aspects of the present disclosure will be further described below. It should be noted that the embodiments and features of the embodiments of the present disclosure may be combined with each other without conflict.
In the following description, numerous specific details are set forth in order to provide a thorough understanding of the present disclosure, but the present disclosure may be practiced in other ways than those described herein; it is to be understood that the embodiments disclosed in the specification are only a few embodiments of the present disclosure, and not all embodiments.
Fig. 1 is a schematic flowchart of a domain name service resource access method provided by an embodiment of the present disclosure. The embodiment is applicable to the case of domain name service resource access based on a Virtual Private Network (VPN) client. The method of the embodiment may be performed by a domain name service resource access device, which may be implemented in hardware and/or software and may be configured in an electronic device. As shown in fig. 1, the method specifically includes the following steps:
s110, obtaining domain names corresponding to a plurality of domain name service resources corresponding to the virtual private network VPN client.
Among them, the VPN client can be understood as: a device for establishing a VPN connection for a user to thereby implement a corresponding domain name service resource access; the VPN client may include a Secure socket virtual Private Network (SSL VPN) client, and SSL VPN may be understood as a VPN technology that uses SSL protocol to implement remote access. SSL is understood as a set of network data security protocols that can be widely used for authentication and encrypted data transmission between a browser and a server. The SSL Protocol is located between a Transmission Control Protocol/Internet Protocol (TCP/IP) and various application layer protocols, and provides security support for data communication. The SSL protocol can be divided into two layers: the SSL recording Protocol (SSL Record Protocol) is established on a reliable transmission Protocol (such as TCP) and provides support for basic functions of data encapsulation, compression, encryption and the like for a higher-layer Protocol; the SSL Handshake Protocol (SSL Handshake Protocol) is established on the SSL recording Protocol, and is used for performing identity authentication, negotiating an encryption algorithm, exchanging an encryption key, and the like on both communication sides before actual data transmission starts. The user can input login information, such as a login account name and an account password, on the VPN client, so as to log in an account of the user to access the service resource. The domain name service resource can be understood as a specified service bound with the user and capable of being accessed by the user after logging in the VPN client. A Domain Name (Domain Name), also called web Domain, is understood to be the Name of a computer or a group of computers on the Internet (network) composed of a string of names separated by points, which is used to identify the computer location during data transmission, for example, the web address used by the user during web browsing.
Since domain name service resources corresponding to different VPN clients may be different, it is necessary to determine which domain name service resources correspond to a VPN client in order to access the domain name service resources, for example, the domain name service resources corresponding to a current VPN client may be determined according to an access right of a user logging in the VPN client, and after determining a plurality of domain name service resources corresponding to the VPN client, domain names corresponding to the domain name service resources need to be determined, so as to determine an IP address corresponding to the domain name according to the domain name in the following.
For example, the plurality of domain name service resources corresponding to a certain VPN client may include: service resource B, service resource C, and service resource D.
And S120, acquiring the network protocol IP address corresponding to the domain name.
Because the domain name is only convenient for the reading and memory of the user, the VPN client cannot directly process the domain name, and therefore, the network protocol IP address corresponding to the domain name needs to be acquired, that is: the domain name is converted to a corresponding IP address. Specifically, the Domain Name can be converted into a corresponding IP address by a Domain Name System (DNS). Among other things, DNS can be understood to be a distributed database in nature that provides services for converting domain names into IP addresses.
In this embodiment, the domain name may be resolved by a preconfigured domain name centralized resolution device, so as to obtain an IP address corresponding to the domain name.
S130, storing the corresponding relation between the domain name and the IP address to a local cache.
After the IP address corresponding to the domain name is obtained, in order to facilitate subsequent domain name service resource access, the corresponding relationship between the domain name and the IP address needs to be stored in the local cache, so that the subsequent domain name service resource access request triggered by the user can be responded, and the IP address corresponding to the domain name service resource can be directly obtained from the local cache, thereby saving time and improving access speed.
And S140, responding to the domain name service resource access request triggered by the user, and acquiring the IP address corresponding to the domain name service resource from the local cache.
The domain name service resource in the domain name service resource access request may be at least one of a plurality of domain name service resources corresponding to the VPN client.
After the user sends the domain name service resource access request to the VPN client, the VPN client can respond to the domain name service resource access request triggered by the user and acquire an IP address corresponding to the domain name service resource from a local cache so as to access the domain name service resource through the IP address in the following process.
And S150, accessing the domain name service resource through the IP address.
After the IP address corresponding to the domain name service resource is acquired from the local cache, the domain name service resource can be directly accessed through the IP address.
In this embodiment, different from the prior art, by obtaining domain names corresponding to a plurality of domain name service resources corresponding to a virtual private network VPN client, and obtaining IP addresses corresponding to the domain names, and then storing a correspondence between the domain names and the IP addresses in a local cache, after a user triggers a domain name service resource access request, the VPN client can directly respond to the domain name service resource access request, obtain the IP addresses corresponding to the domain name service resources from the local cache, and access the domain name service resources through the IP addresses, so that a step of domain name resolution is not required each time a service resource corresponding to a domain name is accessed, waste of bandwidth resources is avoided, and an existing way of accessing the service resources through the domain name is optimized.
In this embodiment, optionally, before the acquiring, in response to a domain name service resource access request triggered by a user, an IP address corresponding to the domain name service resource from the local cache, the method further includes:
and responding to the login of the user on the VPN client, and establishing a VPN communication tunnel.
Specifically, after receiving a login request of a user, the VPN client may initiate a communication tunnel establishment request to the VPN gateway, so as to ensure that the user can access the corresponding domain name service resource through the established communication tunnel.
According to the embodiment of the disclosure, through establishing the VPN communication tunnel, a guarantee is provided for a user to access domain name service resources.
Fig. 2 is a schematic flowchart of a domain name service resource access method provided by an embodiment of the present disclosure. The embodiment is optimized on the basis of the embodiment. Optionally, this embodiment explains in detail a process of obtaining domain names corresponding to a plurality of domain name service resources corresponding to the VPN client and obtaining IP addresses corresponding to the domain names. As shown in fig. 2, the method specifically includes the following steps:
s210, obtaining configuration information corresponding to the VPN client, wherein the configuration information comprises: and the domain names respectively correspond to the domain name service resources.
The configuration information comprises domain names corresponding to the domain name service resources respectively, and the configuration information can be stored in the VPN client in advance, so that the configuration information corresponding to the VPN client can be acquired, and the domain names corresponding to the domain name service resources can be acquired conveniently according to the configuration information.
And S220, acquiring domain names corresponding to the domain name service resources according to the configuration information.
After the configuration information corresponding to the VPN client is obtained, according to domain names corresponding to the domain name service resources included in the configuration information, domain names corresponding to the domain name service resources can be obtained, so that a domain name resolution request is subsequently sent to the DNS for each domain name, and a domain name resolution response returned by the DNS is obtained, that is: and IP addresses corresponding to the domain names.
S230, sending a domain name resolution request to a Domain Name System (DNS) aiming at each domain name; and receiving a domain name resolution response returned by the DNS, wherein the domain name resolution request comprises a domain name, and the domain name resolution response comprises an IP address corresponding to the domain name.
And sending a domain name resolution request to the DNS aiming at each domain name, wherein the domain name resolution request comprises the domain name, the DNS analyzes the current domain name after receiving the domain name resolution request so as to obtain an IP address corresponding to the current domain name, and then the DNS returns a domain name resolution response to the VPN client. And the VPN client receives a domain name resolution response returned by the DNS, wherein the domain name resolution response comprises an IP address corresponding to the domain name.
S240, storing the corresponding relation between the domain name and the IP address to a local cache.
And S250, responding to the domain name service resource access request triggered by the user, and acquiring the IP address corresponding to the domain name service resource from the local cache.
And S260, accessing the domain name service resource through the IP address.
In this embodiment, first, configuration information corresponding to a VPN client is obtained, where the configuration information includes: the method comprises the steps that domain names corresponding to a plurality of domain name service resources respectively are obtained according to configuration information, then, a domain name resolution request is sent to a Domain Name Server (DNS) according to each domain name, a domain name resolution response returned by the DNS is received, the domain name resolution request comprises the domain name, the domain name resolution response comprises an IP address corresponding to the domain name, therefore, the IP addresses corresponding to all the domain names respectively are obtained, then, the corresponding relation between the domain name and the IP address is stored in a local cache, the IP address corresponding to the domain name service resources is obtained from the local cache in response to a domain name service resource access request triggered by a user, and finally, the domain name service resources are accessed through the IP addresses. In the scheme, by acquiring domain names corresponding to a plurality of domain name service resources respectively, acquiring an IP address corresponding to each domain name through a DNS (domain name system) aiming at each domain name, then establishing a corresponding relation between the domain name and the IP address, and storing the corresponding relation in a local cache, so that a subsequent VPN client can directly respond to a domain name service resource access request, acquire the IP address corresponding to the domain name service resource from the local cache and access the domain name service resource through the IP address, thereby avoiding the step of domain name resolution when accessing the service resource corresponding to the domain name every time, avoiding the waste of bandwidth resources, optimizing the existing mode of accessing the service resource through the domain name, reducing the frequency of requesting the DNS server, and acquiring the IP address corresponding to the domain name service resource from the local cache when the network communication condition of the VPN client and the DNS server is poor, the problem that the access speed is slow and even the access is failed is avoided.
In this embodiment, optionally, the method of this embodiment further includes:
and under the condition of preset triggering, updating the corresponding relation between the domain name and the IP address stored in the local cache.
The preset trigger condition may be pre-designed, or may be determined according to a specific situation, and this is not specifically limited in the embodiments of the present disclosure.
After the correspondence between the domain name and the IP address is determined, since the correspondence between the domain name and the IP address may change with time, the correspondence between the domain name and the IP address stored in the local cache needs to be updated under a preset trigger condition.
According to the embodiment of the disclosure, the corresponding relation between the domain name and the IP address stored in the local cache is updated under the preset trigger condition, so that the problem of domain name service resource access failure caused by failure of the corresponding relation between the domain name and the IP address can be avoided, and the success rate of domain name service resource access can be improved.
In this embodiment, optionally, the updating, under a preset trigger condition, the correspondence between the domain name and the IP address stored in the local cache includes:
periodically updating the corresponding relation between the domain name and the IP address stored in the local cache;
alternatively, the first and second electrodes may be,
and triggering and updating the corresponding relation between the domain name and the IP address stored in the local cache in response to the configuration information which is modified.
Specifically, an update period may be set by a timer, for example, the update is performed every 10 minutes, so that the correspondence between the domain name and the IP address stored in the local cache is periodically updated, that is: sending a domain name resolution request to the DNS every other period, receiving a new domain name resolution response returned by the DNS, and updating the corresponding relation between the domain name and the IP address stored in the local cache according to the IP address corresponding to the domain name contained in the domain name resolution response; or after receiving the configuration information which is sent by the user and is modified, the VPN client sends a new domain name resolution request to the DNS in response to the configuration information which is modified, because the domain names corresponding to the multiple domain name service resources in the configuration information may also be changed after the configuration information is modified, where the new domain name resolution request includes: and receiving a new domain name resolution response returned by the DNS according to all domain names included in the modified configuration information, and updating the corresponding relation between the domain name and the IP address stored in the local cache according to the IP address corresponding to all the domain names included in the new domain name resolution response. For example, if there is a new domain name in the modified configuration information, the final correspondence between the domain name and the IP address needs to include not only the original correspondence between the domain name and the IP address but also the new correspondence between the domain name and the IP address.
According to the embodiment of the disclosure, the corresponding relation between the domain name and the IP address stored in the local cache is periodically updated; or, in response to the configuration information after modification, triggering and updating the corresponding relationship between the domain name and the IP address stored in the local cache, so that the corresponding relationship between the domain name and the IP address stored in the local cache is more accurate, and better meets the requirement of practical application, thereby further improving the efficiency and accuracy of accessing domain name service resources through the IP address subsequently.
In this embodiment, optionally, before the triggering and updating the corresponding relationship between the domain name and the IP address stored in the local cache in response to the completion of modifying the configuration information, the method further includes:
and receiving configuration information modification operation triggered by an administrator, and modifying the configuration information.
Specifically, the VPN client is capable of receiving a configuration information modification operation triggered by an administrator, which may be understood as a person having a right to modify the configuration information, so as to modify the configuration information.
According to the embodiment of the disclosure, the configuration information modification operation triggered by the administrator is received, and the configuration information is modified, so that the subsequent VPN client responds to the modified configuration information and triggers and updates the corresponding relation between the domain name and the IP address stored in the local cache.
Fig. 3 is a schematic structural diagram of a domain name service resource access device according to an embodiment of the present disclosure; the device is configured in the electronic equipment, and can realize the domain name service resource access method in any embodiment of the application. The device specifically comprises the following steps:
a domain name obtaining module 310, configured to obtain domain names corresponding to a plurality of domain name service resources corresponding to a virtual private network VPN client;
an address obtaining module 320, configured to obtain a network protocol IP address corresponding to the domain name;
the storage module 330 is configured to store the correspondence between the domain name and the IP address in a local cache;
a response module 340, configured to, in response to a domain name service resource access request triggered by a user, obtain an IP address corresponding to the domain name service resource from the local cache;
an accessing module 350, configured to access the domain name service resource through the IP address.
In this embodiment, optionally, the address obtaining module 320 is specifically configured to:
sending a domain name resolution request to a Domain Name System (DNS) aiming at each domain name; and receiving a domain name resolution response returned by the DNS, wherein the domain name resolution request comprises the domain name, and the domain name resolution response comprises an IP address corresponding to the domain name.
In this embodiment, optionally, the domain name obtaining module 310 is specifically configured to:
acquiring configuration information corresponding to a Virtual Private Network (VPN) client, wherein the configuration information comprises: domain names corresponding to the domain name service resources respectively;
and acquiring domain names corresponding to the domain name service resources according to the configuration information.
In this embodiment, optionally, the apparatus further includes:
and the updating module is used for updating the corresponding relation between the domain name and the IP address stored in the local cache under the preset triggering condition.
In this embodiment, optionally, the update module is specifically configured to:
periodically updating the corresponding relation between the domain name and the IP address stored in the local cache;
alternatively, the first and second electrodes may be,
and triggering and updating the corresponding relation between the domain name and the IP address stored in the local cache in response to the configuration information which is modified.
In this embodiment, optionally, the apparatus further includes:
and the modification module is used for receiving configuration information modification operation triggered by an administrator and modifying the configuration information before the configuration information is modified and the corresponding relation between the domain name and the IP address stored in the local cache is triggered and updated.
In this embodiment, optionally, the apparatus further includes:
and the establishing module is used for responding to a user login VPN client and establishing a VPN communication tunnel before responding to a domain name service resource access request triggered by the user and acquiring the IP address corresponding to the domain name service resource from the local cache.
By the domain name service resource access device provided by the embodiment of the disclosure, domain names corresponding to a plurality of domain name service resources corresponding to a VPN client and IP addresses corresponding to the domain names are acquired, and then the corresponding relationship between the domain names and the IP addresses is stored in a local cache, so that after a user triggers a domain name service resource access request, the VPN client can directly respond to the domain name service resource access request, acquire the IP addresses corresponding to the domain name service resources from the local cache, and access the domain name service resources through the IP addresses, so that a step of domain name resolution is not required each time the service resources corresponding to the domain names are accessed, waste of bandwidth resources is avoided, and the existing mode of accessing the service resources through the domain names is optimized.
The domain name service resource access device provided by the embodiment of the disclosure can execute the domain name service resource access method provided by any embodiment of the disclosure, and has the corresponding functional modules and beneficial effects of the execution method.
Fig. 4 is a schematic structural diagram of an electronic device provided in an embodiment of the present disclosure. As shown in fig. 4, the electronic device includes a processor 410 and a storage 420; the number of the processors 410 in the electronic device may be one or more, and one processor 410 is taken as an example in fig. 4; the processor 410 and the storage 420 in the electronic device may be connected by a bus or other means, and fig. 4 illustrates the connection by a bus as an example.
The storage device 420 is a computer-readable storage medium, and can be used to store software programs, computer-executable programs, and modules, such as program instructions/modules corresponding to the domain name service resource access method in the embodiments of the present disclosure. The processor 410 executes various functional applications and data processing of the electronic device by executing software programs, instructions and modules stored in the storage device 420, that is, implements the domain name service resource access method provided by the embodiment of the present disclosure.
The storage device 420 may mainly include a storage program area and a storage data area, wherein the storage program area may store an operating system, an application program required for at least one function; the storage data area may store data created according to the use of the terminal, and the like. Further, the storage 420 may include high speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other non-volatile solid state storage device. In some examples, the storage 420 may further include memory located remotely from the processor 410, which may be connected to the electronic device over a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
The electronic device provided by this embodiment can be used to execute the domain name service resource access method provided by any of the above embodiments, and has corresponding functions and beneficial effects.
The disclosed embodiments also provide a storage medium containing computer-executable instructions, which when executed by a computer processor, are used to implement relevant operations in the domain name service resource access method provided by the disclosed embodiments.
Of course, the storage medium provided by the embodiments of the present disclosure contains computer-executable instructions, and the computer-executable instructions are not limited to the method operations described above, and may also perform related operations in the domain name service resource access method provided by any embodiments of the present disclosure.
From the above description of the embodiments, it is obvious for a person skilled in the art that the present disclosure can be implemented by software and necessary general hardware, and certainly can be implemented by hardware, but in many cases, the former is a better embodiment. Based on such understanding, the technical solutions of the present disclosure may be embodied in the form of a software product, which may be stored in a computer-readable storage medium, such as a floppy disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a FLASH Memory (FLASH), a hard disk or an optical disk of a computer, and includes several instructions for enabling a computer device (which may be a personal computer, a server, or a network device) to execute the methods according to the embodiments of the present disclosure.
It should be noted that, in the embodiment of the domain name service resource access device, each included unit and module are only divided according to functional logic, but are not limited to the above division, as long as the corresponding function can be implemented; in addition, specific names of the functional units are only used for distinguishing one functional unit from another, and are not used for limiting the protection scope of the present disclosure.
It is noted that, in this document, relational terms such as "first" and "second," and the like, may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
The foregoing are merely exemplary embodiments of the present disclosure, which enable those skilled in the art to understand or practice the present disclosure. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the disclosure. Thus, the present disclosure is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

Claims (10)

1. A method for accessing a domain name service resource, the method comprising:
acquiring domain names corresponding to a plurality of domain name service resources corresponding to a Virtual Private Network (VPN) client;
acquiring a network protocol IP address corresponding to the domain name;
storing the corresponding relation between the domain name and the IP address to a local cache;
responding to a domain name service resource access request triggered by a user, and acquiring an IP address corresponding to the domain name service resource from the local cache;
and accessing the domain name service resource through the IP address.
2. The method according to claim 1, wherein the obtaining the IP address corresponding to the domain name includes:
sending a domain name resolution request to a Domain Name System (DNS) aiming at each domain name; and receiving a domain name resolution response returned by the DNS, wherein the domain name resolution request comprises the domain name, and the domain name resolution response comprises an IP address corresponding to the domain name.
3. The method according to claim 1, wherein the obtaining domain names corresponding to a plurality of domain name service resources corresponding to a Virtual Private Network (VPN) client comprises:
acquiring configuration information corresponding to a Virtual Private Network (VPN) client, wherein the configuration information comprises: domain names corresponding to the domain name service resources respectively;
and acquiring domain names corresponding to the domain name service resources according to the configuration information.
4. The method according to any one of claims 1-3, further comprising:
and under the condition of preset triggering, updating the corresponding relation between the domain name and the IP address stored in the local cache.
5. The method according to claim 4, wherein the updating the correspondence between the domain name and the IP address stored in the local cache under a preset trigger condition includes:
periodically updating the corresponding relation between the domain name and the IP address stored in the local cache;
alternatively, the first and second electrodes may be,
and triggering and updating the corresponding relation between the domain name and the IP address stored in the local cache in response to the configuration information which is modified.
6. The method according to claim 5, wherein before the triggering the updating of the correspondence between the domain name and the IP address stored in the local cache in response to the completion of the modification of the configuration information, the method further comprises:
and receiving configuration information modification operation triggered by an administrator, and modifying the configuration information.
7. The method according to any one of claims 1 to 3, wherein before the acquiring, in response to a domain name service resource access request triggered by a user, an IP address corresponding to the domain name service resource from the local cache, the method further includes:
and responding to the login of the user on the VPN client, and establishing a VPN communication tunnel.
8. A domain name service resource access apparatus, the apparatus comprising:
the domain name acquisition module is used for acquiring domain names corresponding to a plurality of domain name service resources corresponding to the virtual private network VPN client;
the address acquisition module is used for acquiring a network protocol IP address corresponding to the domain name;
the storage module is used for storing the corresponding relation between the domain name and the IP address to a local cache;
the response module is used for responding to a domain name service resource access request triggered by a user and acquiring an IP address corresponding to the domain name service resource from the local cache;
and the access module is used for accessing the domain name service resource through the IP address.
9. An electronic device, comprising:
one or more processors;
a storage device for storing one or more programs,
when executed by the one or more processors, cause the one or more processors to implement a method as claimed in any one of claims 1 to 7.
10. A computer-readable storage medium, on which a computer program is stored, which program, when being executed by a processor, carries out the method of any one of claims 1 to 7.
CN202110947734.0A 2021-08-18 2021-08-18 Domain name service resource access method, device, electronic equipment and medium Withdrawn CN113691646A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110947734.0A CN113691646A (en) 2021-08-18 2021-08-18 Domain name service resource access method, device, electronic equipment and medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110947734.0A CN113691646A (en) 2021-08-18 2021-08-18 Domain name service resource access method, device, electronic equipment and medium

Publications (1)

Publication Number Publication Date
CN113691646A true CN113691646A (en) 2021-11-23

Family

ID=78580672

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110947734.0A Withdrawn CN113691646A (en) 2021-08-18 2021-08-18 Domain name service resource access method, device, electronic equipment and medium

Country Status (1)

Country Link
CN (1) CN113691646A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114338597A (en) * 2021-11-30 2022-04-12 奇安信科技集团股份有限公司 Network access method and device
CN115396399A (en) * 2022-08-24 2022-11-25 北京指掌易科技有限公司 Domain name resource access method and device, electronic equipment and storage medium
CN115442158A (en) * 2022-11-07 2022-12-06 易方信息科技股份有限公司 Network request method, system, storage medium and terminal equipment

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110086895A (en) * 2019-04-11 2019-08-02 天津字节跳动科技有限公司 Domain name analytic method, device, medium and electronic equipment
CN111147616A (en) * 2019-12-17 2020-05-12 北京明略软件系统有限公司 Resource acquisition method and device, electronic equipment and storage medium
US20200213277A1 (en) * 2018-12-28 2020-07-02 Mcafee, Llc On-device dynamic safe browsing

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20200213277A1 (en) * 2018-12-28 2020-07-02 Mcafee, Llc On-device dynamic safe browsing
CN110086895A (en) * 2019-04-11 2019-08-02 天津字节跳动科技有限公司 Domain name analytic method, device, medium and electronic equipment
CN111147616A (en) * 2019-12-17 2020-05-12 北京明略软件系统有限公司 Resource acquisition method and device, electronic equipment and storage medium

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114338597A (en) * 2021-11-30 2022-04-12 奇安信科技集团股份有限公司 Network access method and device
CN115396399A (en) * 2022-08-24 2022-11-25 北京指掌易科技有限公司 Domain name resource access method and device, electronic equipment and storage medium
CN115442158A (en) * 2022-11-07 2022-12-06 易方信息科技股份有限公司 Network request method, system, storage medium and terminal equipment

Similar Documents

Publication Publication Date Title
WO2022057000A1 (en) Data proxy method and system and proxy server
CN111079104B (en) Authority control method, device, equipment and storage medium
CN113691646A (en) Domain name service resource access method, device, electronic equipment and medium
RU2671045C2 (en) Synchronising credential hashes between directory services
KR101962156B1 (en) Authorization processing method and apparatus
US9554276B2 (en) System and method for on the fly protocol conversion in obtaining policy enforcement information
US20220116458A1 (en) Systems and methods for remote management of appliances
US20170078277A1 (en) Provisioning remote access points
WO2022247751A1 (en) Method, system and apparatus for remotely accessing application, device, and storage medium
CN109819068B (en) User terminal, block chain domain name resolution method thereof, computer equipment and computer readable storage medium
CN107872445B (en) Access authentication method, device and authentication system
WO2011038628A1 (en) Method, access node and system for obtaining data
US11616853B2 (en) Dynamic domain discovery and proxy configuration
CN112261172A (en) Service addressing access method, device, system, equipment and medium
CN110909030B (en) Information processing method and server cluster
CN113194099B (en) Data proxy method and proxy server
CN114466054A (en) Data processing method, device, equipment and computer readable storage medium
CN110191203B (en) Method for realizing dynamic access of server and electronic equipment
TWI546688B (en) Method for processing url and associated server and non-transitory computer readable storage medium
CN108040124B (en) Method and device for controlling mobile terminal application based on DNS-Over-HTTP protocol
CN107343028B (en) Communication method and system based on HTTP (hyper text transport protocol)
CN113612811B (en) Method, system, equipment and medium for client mounting in multiple channels
US10320784B1 (en) Methods for utilizing fingerprinting to manage network security and devices thereof
CN115189897A (en) Access processing method and device for zero trust network, electronic equipment and storage medium
CN115486033A (en) Equipment access method and device in Internet of things, computer equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication
WW01 Invention patent application withdrawn after publication

Application publication date: 20211123