CN113938296A - Network data access system and method - Google Patents
Network data access system and method Download PDFInfo
- Publication number
- CN113938296A CN113938296A CN202111170385.2A CN202111170385A CN113938296A CN 113938296 A CN113938296 A CN 113938296A CN 202111170385 A CN202111170385 A CN 202111170385A CN 113938296 A CN113938296 A CN 113938296A
- Authority
- CN
- China
- Prior art keywords
- request
- data
- module
- intranet
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 31
- 238000005538 encapsulation Methods 0.000 claims description 6
- 238000013507 mapping Methods 0.000 claims description 6
- 238000004806 packaging method and process Methods 0.000 claims description 2
- 230000003993 interaction Effects 0.000 abstract description 13
- 238000012423 maintenance Methods 0.000 abstract description 4
- 238000010586 diagram Methods 0.000 description 4
- 230000008569 process Effects 0.000 description 4
- 230000003287 optical effect Effects 0.000 description 3
- 230000004044 response Effects 0.000 description 2
- 238000004891 communication Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000008707 rearrangement Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0281—Proxies
Abstract
The invention discloses a network data access system and a method. The system comprises: the system comprises a request receiving module, a message queue module, a request agent module and at least one service server; the request receiving module is deployed in an external network and used for receiving an intranet data request sent by an extranet client and sending the intranet data request to the message queue module; the request agent module is deployed in an internal network and is used for acquiring the intranet data request from the message queue module, acquiring target service data from a corresponding service server according to the intranet data request and returning the target service data to the request receiving module; the request receiving module is further configured to return the target service data to the extranet client. The invention realizes the instant internal and external network interaction experience by deploying the service end in the internal and external networks, reduces the use cost and hardware maintenance cost of the internal and external network interaction, and can realize high-efficiency data interaction.
Description
Technical Field
The embodiment of the invention relates to the technical field of network communication, in particular to a network data access system and a network data access method.
Background
For the logically isolated internal and external network environment, the internal network can access the external network in one way through the optical gate or the network gate, and the external network cannot access the internal network. In practical application, when there is a need for acquiring intranet data through an external network for data without security requirements, the data is generally derived manually, that is, the data of an internal network is recorded on an optical disc, and then the data is loaded on an external network after being subjected to security processing manually. Although the method realizes the acquisition of data, the method has the defects of huge resource consumption, low efficiency and difficult management.
Disclosure of Invention
The invention provides a network data access system and a network data access method, which are used for realizing that an external network client can safely access an internal network service server in real time.
In a first aspect, an embodiment of the present invention provides a network data access system, including a request receiving module, a message queue module, a request agent module, and at least one service server;
the request receiving module is deployed in an external network and used for receiving an intranet data request sent by an extranet client and sending the intranet data request to the message queue module;
the request agent module is deployed in an internal network and is used for acquiring the intranet data request from the message queue module, acquiring target service data from a corresponding service server according to the intranet data request and returning the target service data to the request receiving module;
the request receiving module is further configured to return the target service data to the extranet client.
Optionally, the request receiving module is further configured to:
and before the intranet data request is sent to the message queue module, performing message body packaging on the intranet data request.
Optionally, the message queue module is deployed in the external network, and includes at least one theme queue, and different theme queues are used to receive and store intranet data requests of different request types.
Optionally, the request agent module is further configured to:
and maintaining a mapping list of each service server and service system codes.
Optionally, the service server is deployed in the internal network, and configured to obtain the intranet data request from the request agent module, search the target service data according to the intranet data request, and return the target service data to the request agent module.
In a second aspect, an embodiment of the present invention further provides a network data access method, which is applied to the network data access system in the first aspect, and the method includes:
the request receiving module receives an intranet data request sent by an extranet client and sends the intranet data request to the message queue module;
the request agent module acquires the intranet data request from the message queue module, acquires target service data from a corresponding service server according to the intranet data request and returns the target service data to the request receiving module;
and the request receiving module returns the target service data to the extranet client.
Optionally, before sending the intranet data request to the message queue module, the method further includes:
and the request receiving module performs message body encapsulation on the intranet data request.
Optionally, the message queue module stores the intranet data request to a corresponding topic queue according to a request type of the intranet data request.
Optionally, the method further includes:
and the request agent module maintains a mapping list of each service server and service system codes.
Optionally, the method further includes:
and the service server side acquires the intranet data request from the request agent module, searches the target service data according to the intranet data request and returns the target service data to the request agent module.
The invention sets a request receiving module, a message queue module, a request agent module and at least one service server, wherein the request receiving module is deployed in an external network and is used for receiving an intranet data request sent by an extranet client and sending the intranet data request to the message queue module; the request agent module is deployed in an internal network and used for acquiring an intranet data request from the message queue module and acquiring target service data from a corresponding service server according to the intranet data request and returning the target service data to the request receiving module; the request receiving module is also used for returning the target service data to the external network client. The invention realizes the instant internal and external network interaction experience by deploying the service end in the internal and external networks, reduces the use cost and hardware maintenance cost of the internal and external network interaction, and can realize high-efficiency data interaction.
Drawings
Fig. 1 is a block diagram illustrating a network data access system according to an embodiment of the present invention;
fig. 2 is a flowchart of a network data access method according to a second embodiment of the present invention;
fig. 3 is a schematic diagram of a network data access method according to a second embodiment of the present invention.
Detailed Description
The present invention will be described in further detail with reference to the accompanying drawings and examples. It is to be understood that the specific embodiments described herein are merely illustrative of the invention and are not limiting of the invention. It should be noted that, for convenience of description, only a part of the structures related to the present invention, not all of the structures, are shown in the drawings, and furthermore, embodiments of the present invention and features of the embodiments may be combined with each other without conflict.
Example one
Fig. 1 is a block diagram of a network data access system according to an embodiment of the present invention. The network data access system provided by this embodiment includes a request receiving module 10, a message queue module 20, a request agent module 30, and at least one service server 40, where the number of the service servers 40 may be one or more, and one service server 40 is taken as an example in fig. 1.
The request receiving module 10 is deployed in an external network, and is configured to receive an intranet data request sent by an extranet client, and send the intranet data request to the message queue module 20.
Typically, for a logically isolated intranet and extranet environment, i.e., one-way access to the extranet is provided by optical or gatekeeper, the extranet cannot access the intranet. In this embodiment, the request receiving module 10 may be deployed in an external network to receive data requests of all external network clients to an internal network, and in this embodiment, the request may be recorded as an intranet data request. The intranet data request sent by the extranet client can comprise a service system code and a service request address which need to be accessed, such as http:// request receiving module address/service-a/logs, wherein service-a is the service system code, and/logs is the service request address. The request receiving module 10 may send an intranet data request to the message queue module 20 to wait for a response.
Optionally, the request receiving module 10 is further configured to: before sending the intranet data request to the message queue module 20, the intranet data request is subjected to message body encapsulation.
Optionally, the message queue module 20 is deployed in an external network, and includes at least one theme queue, where different theme queues are used to receive and store intranet data requests of different request types.
In this embodiment, the message queue module 20 may be deployed in an external network and may contain different TOPIC queue TOPICs. After receiving the intranet data request sent by the extranet client, the request receiving module 10 encapsulates the intranet data request into a custom message body, and the content may include a request URL, an original request parameter, a callback address, a thread ID, and the like. After the encapsulation is completed, the intranet data request is sent to the TOPIC corresponding to the message queue module 20, and meanwhile, the request waits.
The request agent module 30 is deployed in the internal network, and is configured to obtain an intranet data request from the message queue module 20, and obtain target service data from the corresponding service server 40 according to the intranet data request and return the target service data to the request receiving module 10.
Optionally, the request broker module 30 is further configured to:
a mapping list of the service servers 40 and the service system codes is maintained.
Optionally, the service server 40 is deployed in the internal network, and is configured to obtain an intranet data request from the request agent module 30, search target service data according to the intranet data request, and return the target service data to the request agent module 30.
The request receiving module 10 is further configured to return the target service data to the extranet client.
In this embodiment, the request agent module 30 may be deployed in an intranet internal network, monitor each TOPIC in the message queue module 20, and when there is an unresponsive intranet data request in the TOPIC, the request agent module 30 sequentially obtains and analyzes a message body, analyzes the intranet data request into a service system code and a service request address that need to be accessed, and then finds a designated service end address according to the service system code, and sends the request to the service end 40. After the service server 40 processes the request, it returns the searched target service data to the request agent module 30. The request agent module 30 encapsulates the target service data into a new request body, calls the callback address, and sends the callback address to the request receiving module 10. The request receiving module 10 analyzes the request body sent by the request agent module 30, stops the request waiting, and responds the target service data to the extranet client to complete the whole request process.
According to the embodiment of the invention, by arranging a request receiving module, a message queue module, a request agent module and at least one service server, the request receiving module is deployed in an external network and is used for receiving an intranet data request sent by an extranet client and sending the intranet data request to the message queue module; the request agent module is deployed in an internal network and used for acquiring an intranet data request from the message queue module and acquiring target service data from a corresponding service server according to the intranet data request and returning the target service data to the request receiving module; the request receiving module is also used for returning the target service data to the external network client. The invention realizes the instant internal and external network interaction experience by deploying the service end in the internal and external networks, reduces the use cost and hardware maintenance cost of the internal and external network interaction, and can realize high-efficiency data interaction.
Example two
Fig. 2 is a flowchart of a network data access method according to an embodiment of the present invention, where the method is applicable to a case of internal and external network data interaction, and the method may be executed by a network data access system, and the system may be implemented by software and/or hardware.
As shown in fig. 1, the method specifically includes the following steps:
Specifically, the request receiving module may be deployed in an external network to receive data requests of all external network clients to the internal network, and in this embodiment, the request may be recorded as an intranet data request. The intranet data request sent by the extranet client can comprise a service system code and a service request address which need to be accessed, such as http:// request receiving module address/service-a/logs, wherein service-a is the service system code, and/logs is the service request address. The request receiving module can send the intranet data request to the message queue module to wait for a response.
Optionally, before sending the intranet data request to the message queue module, the network data access method provided in this embodiment may further include: and the request receiving module performs message body encapsulation on the intranet data request.
Optionally, the message queue module stores the intranet data request to the corresponding topic queue according to the request type of the intranet data request.
In this embodiment, the message queue module may be deployed in an external network and may include different TOPIC queue TOPICs. After receiving an intranet data request sent by an extranet client, the request receiving module encapsulates the intranet data request into a custom message body, and the content can include a request URL, an original request parameter, a callback address, a thread ID and the like. And after the encapsulation is finished, sending the intranet data request to a TOPIC corresponding to the message queue module, and meanwhile, waiting for the request.
Optionally, the service server obtains the intranet data request from the request agent module, and searches for the target service data according to the intranet data request and returns the target service data to the request agent module.
Optionally, the request agent module maintains a mapping list between each service server and the service system code.
In this embodiment, the request agent module may be deployed in an intranet internal network, monitor each TOPIC in the message queue module, and when there is an unresponsive intranet data request in the TOPICs, the request agent module sequentially acquires and analyzes the message body, analyzes the intranet data request into a service system code and a service request address that need to be accessed, and then finds a designated service server address according to the service system code, and sends the request to the service server. And after the service server processes the request, returning the searched target service data to the request agent module. The request agent module encapsulates the target service data into a new request body, calls the callback address and sends the callback address to the request receiving module.
Specifically, the request receiving module analyzes the request body containing the target service data sent by the request agent module, stops request waiting, and responds the target service data to the external network client to complete the whole request process.
Fig. 3 is a schematic diagram of a network data access method according to a second embodiment of the present invention. As shown in fig. 3, an intranet data request sent by an extranet client is received by a request receiving module, the intranet data request is sent to a message queue module, a request agent module obtains the intranet data request from the message queue module, obtains target service data from a corresponding service server according to the intranet data request, and returns the target service data to the request receiving module, and the request receiving module returns the target service data to the extranet client.
According to the technical scheme of the embodiment, an intranet data request sent by an extranet client is received through a request receiving module, the intranet data request is sent to a message queue module, a request agent module obtains the intranet data request from the message queue module and obtains target service data from a corresponding service server according to the intranet data request, the target service data are returned to the request receiving module, and the request receiving module returns the target service data to the extranet client. The invention realizes the instant internal and external network interaction experience by deploying the service end in the internal and external networks, reduces the use cost and hardware maintenance cost of the internal and external network interaction, and can realize high-efficiency data interaction.
It should be noted that, in the embodiment of the network data access system, the included units and modules are only divided according to functional logic, but are not limited to the above division as long as the corresponding functions can be implemented; in addition, specific names of the functional units are only for convenience of distinguishing from each other, and are not used for limiting the protection scope of the present invention.
It is to be noted that the foregoing is only illustrative of the preferred embodiments of the present invention and the technical principles employed. It will be understood by those skilled in the art that the present invention is not limited to the particular embodiments described herein, but is capable of various obvious changes, rearrangements and substitutions as will now become apparent to those skilled in the art without departing from the scope of the invention. Therefore, although the present invention has been described in greater detail by the above embodiments, the present invention is not limited to the above embodiments, and may include other equivalent embodiments without departing from the spirit of the present invention, and the scope of the present invention is determined by the scope of the appended claims.
Claims (10)
1. A network data access system is characterized by comprising a request receiving module, a message queue module, a request agent module and at least one service server;
the request receiving module is deployed in an external network and used for receiving an intranet data request sent by an extranet client and sending the intranet data request to the message queue module;
the request agent module is deployed in an internal network and is used for acquiring the intranet data request from the message queue module, acquiring target service data from a corresponding service server according to the intranet data request and returning the target service data to the request receiving module;
the request receiving module is further configured to return the target service data to the extranet client.
2. The network data access system of claim 1, wherein the request receiving module is further configured to:
and before the intranet data request is sent to the message queue module, performing message body packaging on the intranet data request.
3. The network data access system of claim 1,
the message queue module is deployed in the external network and comprises at least one theme queue, and different theme queues are used for receiving and storing intranet data requests of different request types.
4. The network data access system of claim 1, wherein the request broker module is further configured to:
and maintaining a mapping list of each service server and service system codes.
5. The network data access system of claim 1,
the service server is deployed in the internal network and used for acquiring the intranet data request from the request agent module, searching the target service data according to the intranet data request and returning the target service data to the request agent module.
6. A network data access method applied to the network data access system of claims 1-5, the method comprising:
the request receiving module receives an intranet data request sent by an extranet client and sends the intranet data request to the message queue module;
the request agent module acquires the intranet data request from the message queue module, acquires target service data from a corresponding service server according to the intranet data request and returns the target service data to the request receiving module;
and the request receiving module returns the target service data to the extranet client.
7. The network data access method according to claim 6, wherein before sending the intranet data request to the message queue module, the method further comprises:
and the request receiving module performs message body encapsulation on the intranet data request.
8. The network data access method of claim 6,
and the message queue module stores the intranet data request to a corresponding theme queue according to the request type of the intranet data request.
9. The method of claim 6, further comprising:
and the request agent module maintains a mapping list of each service server and service system codes.
10. The method of claim 6, further comprising:
and the service server side acquires the intranet data request from the request agent module, searches the target service data according to the intranet data request and returns the target service data to the request agent module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111170385.2A CN113938296A (en) | 2021-10-08 | 2021-10-08 | Network data access system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111170385.2A CN113938296A (en) | 2021-10-08 | 2021-10-08 | Network data access system and method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113938296A true CN113938296A (en) | 2022-01-14 |
Family
ID=79278104
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111170385.2A Pending CN113938296A (en) | 2021-10-08 | 2021-10-08 | Network data access system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113938296A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115348090A (en) * | 2022-08-16 | 2022-11-15 | 中国联合网络通信集团有限公司 | Intranet and extranet interaction method and device for enterprise and electronic equipment |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050044197A1 (en) * | 2003-08-18 | 2005-02-24 | Sun Microsystems.Inc. | Structured methodology and design patterns for web services |
| CN104125243A (en) * | 2013-04-23 | 2014-10-29 | 浙江大学 | Method of penetrating internal network to remotely connect large-scale virtual machines |
| CN105991520A (en) * | 2015-01-29 | 2016-10-05 | 朗新科技股份有限公司 | Inner/outer network interaction method and system |
-
2021
- 2021-10-08 CN CN202111170385.2A patent/CN113938296A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050044197A1 (en) * | 2003-08-18 | 2005-02-24 | Sun Microsystems.Inc. | Structured methodology and design patterns for web services |
| CN104125243A (en) * | 2013-04-23 | 2014-10-29 | 浙江大学 | Method of penetrating internal network to remotely connect large-scale virtual machines |
| CN105991520A (en) * | 2015-01-29 | 2016-10-05 | 朗新科技股份有限公司 | Inner/outer network interaction method and system |
Non-Patent Citations (2)
| Title |
|---|
| PAUL J. PERRONE ET AL.著 张志伟译: "《Java EE高级工程师Ⅱ培训 EJB+Web service+JMS整合开发》", 北京赛迪电子出版社, pages: 515 - 523 * |
| 叶林;陶思恒;: "营销多服务渠道互动管理平台设计与实现", 电子世界, no. 16, pages 1 - 3 * |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115348090A (en) * | 2022-08-16 | 2022-11-15 | 中国联合网络通信集团有限公司 | Intranet and extranet interaction method and device for enterprise and electronic equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11159411B2 (en) | Distributed testing service | |
| US20170185678A1 (en) | Crawler system and method | |
| CN108512821B (en) | Data transmission method, device and system, network gate and transaction data storage method | |
| WO2016184175A1 (en) | Database processing method and apparatus | |
| CN1681248A (en) | Method and system for transmitting data for data synchronization between server and client | |
| WO2004036344A3 (en) | System and method for the optimization of database | |
| CN103780679A (en) | Long time delay remote invocation method based on HTTP protocol | |
| CN104601702B (en) | Cluster remote procedure calling (PRC) method and system | |
| JP2011520169A (en) | Method and device for accessing a directory | |
| CN109547162B (en) | Data communication method based on two sets of one-way boundaries | |
| CN110336848B (en) | Scheduling method, scheduling system and scheduling equipment for access request | |
| US8326913B2 (en) | Method and system for service contract discovery | |
| CN113938296A (en) | Network data access system and method | |
| CN113411363A (en) | Uploading method of image file, related equipment and computer storage medium | |
| CN108228365B (en) | Function request sending method, function request calling method and device | |
| US10545667B1 (en) | Dynamic data partitioning for stateless request routing | |
| CN103957252B (en) | The journal obtaining method and its system of cloud stocking system | |
| CN112583937A (en) | Visual convenient cloud resource deployment system combining public cloud and private cloud | |
| CN113542409B (en) | Management system and processing method for instances of RocktMQ message queues | |
| CN113612811B (en) | Method, system, equipment and medium for client mounting in multiple channels | |
| CN115378855A (en) | Data packet testing method and device, communication device and storage medium | |
| US10623523B2 (en) | Distributed communication and task handling to facilitate operations of application system | |
| JP2017147601A (en) | Communication device and communication method | |
| US8819107B2 (en) | Relay apparatus, recording medium storing a relay program, and a relay method | |
| CN112218104A (en) | Data transmission method, device, terminal equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |