CN1652535A - Method for managing network layer address - Google Patents
Method for managing network layer address Download PDFInfo
- Publication number
- CN1652535A CN1652535A CN200410001094.0A CN200410001094A CN1652535A CN 1652535 A CN1652535 A CN 1652535A CN 200410001094 A CN200410001094 A CN 200410001094A CN 1652535 A CN1652535 A CN 1652535A
- Authority
- CN
- China
- Prior art keywords
- network layer
- layer address
- authenticating device
- message
- service message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 26
- 238000007726 management method Methods 0.000 claims description 28
- 230000003068 static effect Effects 0.000 claims description 8
- 230000005540 biological transmission Effects 0.000 claims description 4
- 238000010586 diagram Methods 0.000 description 6
- 238000012795 verification Methods 0.000 description 4
- 230000009977 dual effect Effects 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 238000004458 analytical method Methods 0.000 description 1
- 238000009826 distribution Methods 0.000 description 1
- 238000005538 encapsulation Methods 0.000 description 1
- 238000003780 insertion Methods 0.000 description 1
- 230000037431 insertion Effects 0.000 description 1
- 238000007689 inspection Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000005096 rolling process Methods 0.000 description 1
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The method includes following flows: in authentication flow, logic ports of authentication device are authorized to user device, and authentication device obtains address of network layer from authentication server; in flow of assigning address, address assignment at network layer is completed through EAP service message of carrying address of network layer as attribute type interacted between authentication device and user device. The flow of assigning address includes following steps: (1) user device sends EAP service message of requesting address assignment at network layer to authentication device; (2) authentication device sends EAP service message of acknowledgement of address assignment at network layer to user device. The invention reduces cost for running network since DHCP server is not needed. Thus, configuration and arrangement for network is simpler.
Description
Technical field
The present invention relates to network technology, refer to a kind of Network Layer Address Management method especially.
Background technology
The local area network (LAN) of IEEE 802 lan protocols definition does not provide access authentication, in general, as long as the user can access to LAN equipment or resource on just can accesses network.But for insert as telecommunications, application scenarios such as office building LAN and mobile office, network manager is wished and can be controlled and dispose user's access, network insertion control (Port Based Network AccessControl) demand, i.e. IEEE 802.1X (hereinafter to be referred as 802.1X) agreement have been produced based on port for this reason.
As can be seen from Figure 1, comprise in the architecture of 802.1X:
Subscriber equipment (Supplicant) 1, the entity (Entity) of the end that LAN connected is initiated request as authentication requester to authenticating device (Authenticator), and the legitimacy of its identity is tested;
Usually, visit local area network (LAN)/metropolitan area network 4, at first subscriber equipment 1 will be initiated authentication request to authenticating device 2, and unconfined end mouth 22 is in the diconnected state all the time, is mainly used to transmit the EAPoL protocol frame, can guarantee that subscriber equipment 1 can send or accept all the time; During Certificate Authority, the controlled ports 21 of authenticating device 2 just is connected, and is used for delivery network resource and service.Wherein, EAPoL refers to the EAP of local area network (LAN) carrying, and EAP refers to Extensible Authentication Protocol, and full name is PPP (point to point protocol) Extensible Authentication Protocol (RFC2284).In network based on TCP/IP, subscriber equipment have only obtained network layer address (as the IP address) could accesses network.
But the 802.1X Certificate Authority authorizes just for corresponding controlled ports 21, and the protocol frame of supervising the network layer address is not provided.
Please refer to shown in Figure 2, at present, for addressing the above problem, subscriber equipment is being initiated the DHCP request by the authentication back, authenticating device provides DHCP (Dynamic Host Configuration Protocol then, DHCP) function of relaying, the reciprocal process by the DHCP agreement obtains IP address allocated from Dynamic Host Configuration Protocol server at last.The function of Dynamic Host Configuration Protocol server perhaps directly is provided on authenticating device.This dual mode is consistent in essence.
Reciprocal process is that relaying may further comprise the steps with the authenticating device
(1) subscriber equipment sends a DHCPDISCOVER message to Dynamic Host Configuration Protocol server, expresses network layer address and rents requirement;
(2) Dynamic Host Configuration Protocol server comprises available network layer address and parameter with the requirement of DHCPOFFER message response subscriber equipment in this message
(3) after subscriber equipment had been selected certain target Dynamic Host Configuration Protocol server (may receive the DHCPOFFER message that a plurality of Dynamic Host Configuration Protocol server send), broadcasting DHCPREQUEST bag was in order to notify selected Dynamic Host Configuration Protocol server and not selected Dynamic Host Configuration Protocol server;
(4) if selected Dynamic Host Configuration Protocol server is the server that the parameter of this network layer address was provided originally, can recognize these data, and simultaneously with the response of DHCPACK message, when rolling off the production line, subscriber equipment is initiated DHCP and is discharged request (DHCPRELEASE message), so that Dynamic Host Configuration Protocol server reclaims address resource.This implementation is no matter network size how, all need be disposed Dynamic Host Configuration Protocol server in network.In some middle-size and small-size simple networks, particularly garden net, increased the TCO and the management complexity of operator.
Summary of the invention
The problem that the present invention solves provides a kind of Network Layer Address Management method, and it is easy to reduce network cost and on-premise network layer address.
For addressing the above problem, Network Layer Address Management method of the present invention comprises following flow process: identifying procedure, and the logic port of authenticating device licenses to subscriber equipment, and authenticating device obtains network layer address from certificate server; The address assignment flow process is that the EAP service message of network layer address is finished network layer address and distributed by the attribute type that carries alternately between authenticating device and subscriber equipment.
Wherein, the address assignment flow process may further comprise the steps:
(1) subscriber equipment sends the EAP service message of network layer address request for allocation to authenticating device;
(2) authenticating device sends the EAP service message that network layer address distributes affirmation to subscriber equipment.
In the step (1), EAP service message attribute type includes request, network layer address, network layer address mask, default gateway, Main Domain resolution server and backup domain name resolution server.
EAP service message attribute type includes affirmation, network layer address, network layer address mask, default gateway, Main Domain resolution server and backup domain name resolution server in the step (2).
Step (1) also comprises step a) before, and authenticating device sends the EAP service message that network layer address provides strategy to subscriber equipment.EAP service message attribute type provides strategy for network layer address in the step a), obtains still to obtain by the EAP service message by the DHCP agreement according to its property value decision network layer address, if obtain then execution in step (1) by the EAP service message.
In addition, further comprising the steps of between step (1), (2):
B) authenticating device is resolved from the EAP service message in the step (1);
C) judge that the user equipment network layer address is dynamically to obtain or static the setting;
D) if dynamically obtain then execution in step (2);
E) if static the setting judges then whether the current network layer address is preallocated consistent with authenticating device;
F) if unanimity then execution in step (2).
Step (2) comprises the steps: also that afterwards the subscriber equipment parsing from the EAP service message in the step (2), is provided with network adapter by call operation system api interface.
In addition, accepting to carry in the message attribute type by certificate server to the authenticating device return authentication in the identifying procedure is that 8 Framed-IP-Address obtains network layer address.
Compared with prior art, the present invention has the following advantages by cooperating with certificate server:
At first, reduce the cost of Virtual network operator.The garden network operation business of middle and small scale particularly might not need the Dynamic Host Configuration Protocol server that provides special, can pass through certificate server, provide user account and network layer address allocation strategy at the 802.1X verification process to the user equipment network layer address.
Secondly, dispose simpler.With come to compare by Dynamic Host Configuration Protocol server is set to user's distributing IP address mode, mode provided by the invention has been saved DHCP relevant equipment and configuration.
In addition, by on certificate server directly the user account mode related with network layer address, prevented that to a certain extent network layer address from usurping, thereby made Network Layer Address Management more safe and effective.
Description of drawings
Fig. 1 is the architectural block diagram of 802.1X.
Fig. 2 utilizes DHCP to realize the flow chart of Network Layer Address Management method in the prior art.
Fig. 3 is a PPP frame format schematic diagram.
Fig. 4 is that the PPP frame is applied in information field form schematic diagram in the Network Layer Address Management method of the present invention among Fig. 3.
Fig. 5 is a code domain value schematic diagram in the PPP frame in the prior art.
Fig. 6 is a Network Layer Address Management method flow diagram of the present invention.
Fig. 7 is a Network Layer Address Management method part detail flowchart of the present invention.
Embodiment
Fig. 3 is a PPP frame format schematic diagram.Wherein, F domain identifier one PPP frame begins and finishes; The FCS territory is the verification territory of frame; What represent content frame is address (Address), control (Control), agreement (Protocol), information (Information) content that the territory comprised.When the Protocol territory in the PPP frame (referring to IETF RFC1661) shows that protocol type is C227 (being that presentation protocol is the PPP Extensible Authentication Protocol), in the Information territory of PPP frame the encapsulation and only encapsulate a PPP Extensible Authentication Protocol message (the present invention is called the EAP message), during transmission each territory from left to right successively the transmission.Network Layer Address Management method of the present invention is extended to the EAP service message with the EAP message, also is encapsulated in the Information territory and transmits its principle as described below.
The Information territory further includes code (Code), sign (Identifier), length (Length) and data (Data) territory.Described Data territory further comprises attribute type (Type) territory and attribute data (Type-Data) territory; Attribute data (Type-Data) territory further comprises property value length (Value-Size) territory, property value (Value) territory and title (Name) territory.Please refer to shown in Figure 4ly, information field then includes following territory like this: code, sign, length, attribute type, property value length, property value and title.
The type of wherein said coded representation message.In the prior art, please refer to shown in Figure 5ly, code value is that 1 expression EAP type of message is a request message; Value is that 2 expression EAP type of messages are response message; Value is that 3 expression EAP type of messages are successful message; Value is that 4 expression EAP type of messages are failure message.In the Network Layer Address Management method of the present invention, expanding a kind of type of message is the EAP message of EAP service message, and the message format of EAP service message is followed the EAP message format.This message of the value representation of respective code is the EAP service message, and its value is any value except that 1-4, as 10.
Sign is used to discern EAP message (containing the EAP service message).
Length is the length (containing the EAP service message) of EAP message.
Attribute type, the type of expression EAP message particular content in the EAP service message, is then represented the type of EAP service message particular content, because 1-8 is taken by international standard or national standard, any value of Type territory value except that 1-8.Type is Netwowk-Attr-Offer among Fig. 4, and the expression network layer address provides strategy).
Property value, the specific object of expression EAP message is (in the EAP service message, the specific object of then representing the EAP service message), with Fig. 4 is example, Value represents the Netwowk-Attr-Offer property value, for example represent that with 0 network layer address obtains by the DHCP agreement, 1 expression network layer address obtains by the EAP service message.
Property value length, the length of representation attribute value.
Title, expression user's name.
Like this, four types EAP message in 802.1X the mode with EAPOL used respectively.The present invention is mainly by another EAP message of expansion, be called EAP service message (Service, the code value is different from 1 to 4) and corresponding attribute type (any attribute type value (being different from 1 to 8) that is different from the existing protocol definition) and realize Network Layer Address Management in the 802.1X verification process.EAP service message form is followed RFC2284 " PPP Extensible Authentication Protocol " fully.An EAP service message can comprise a plurality of attribute types, can certainly have only an attribute type.
Please refer to shown in Figure 6ly, Network Layer Address Management method of the present invention is based on the architecture of 802.1X, on the certificate server (server is example with RADIUS), can specify the network layer address of giving subscriber equipment to be allocated in configure user equipment number of the account; On the authenticating device, can give configure user network layer address allocation strategy and network layer address mask, default gateway, network attributes such as main DNS and standby dns server.Authenticating device can comprise network attribute information such as network layer address and network layer address mask, default gateway, primary dns server, backup dns server for the content of user's distribution network layer address like this.Wherein network layer address is that authenticating device passes through the EAP service message from the certificate server acquisition, and other information configuration are on authenticating device.Network layer address and the different different attribute types of the corresponding EAP service message of network attribute information.
The attribute type that the EAP service message uses in the present embodiment includes:
Netwowk-Attr-Offer, network layer address provide strategy, and providing that its respective attributes value representation is concrete is tactful, for example represents that with 0 network layer address obtains by the DHCP agreement, and 1 expression network layer address obtains by the EAP service message;
Netwowk-Attr-Request, the network layer address request for allocation;
Network-Address, the network layer address of subscriber equipment is distributed in expression,
Network-Netmask, expression network layer address mask;
Detault-Gateway, the expression default gateway;
Primary-DNS, the expression Main Domain is resolved (DNS) server;
Secondary-DNS, expression backup domain name analysis (DNS) server.
Netwowk-Attr-Ack, the expression network layer address distributes.
Like this, Network Layer Address Management method of the present invention comprises following flow process:
Identifying procedure, the logic port of authenticating device licenses to subscriber equipment, and authenticating device obtains network layer address from certificate server;
The address assignment flow process is that the EAP service message of network layer address is finished network layer address and distributed by the attribute type that carries alternately between authenticating device and subscriber equipment.
Wherein, in the identifying procedure by certificate server to the authenticating device return authentication accept to carry in the message attribute type be 8 Framed-IP-Address to obtain network layer address, authentication is accepted message and is represented authentication success.Authentication success explanation user account is legal, and gives this legal users devices allocation network layer address, so user account is related with network layer address.
May further comprise the steps in the identifying procedure:
1) subscriber equipment begins message to authenticating device transmission EAPOL;
2) authenticating device sends the EAP request message to subscriber equipment;
3) subscriber equipment sends the EAP response message to authenticating device;
4) authenticating device sends the authentication request packet that carries customer identification information to certificate server;
5) certificate server sends RADIUS MD5 via authenticating device to subscriber equipment and addresses inquires to message, described RADIUS (Remote Authentication Dial In User Service) is a remote authentication dial-in user service, and MD5 (Message Digest 5) is a kind of cryptographic algorithm;
6) subscriber equipment sends the response message that MD5 is addressed inquires to via authenticating device to certificate server;
7) certificate server sends authentication to authenticating device and accepts message, carries attribute type and be 8 Framed-IP-Address;
Authenticating device is resolved message after receiving the Access-Accept message.If contain Framed-IP-Address (8) attribute in the message, and property value is not full F, complete 0 and the unicast ip address of " 0xFFFFFFFE ", then is considered to effective value.
8) authenticating device sends the authentication success message to subscriber equipment, and the authenticating device logic port is authorized to subscriber equipment.
Described address assignment flow process may further comprise the steps:
9) equipment sends the EAP service message (EAP-Service/Network-Attr-Offer message) that network layer address provides strategy to subscriber equipment
EAP service message attribute type provides strategy for network layer address in the step 9).After subscriber equipment is received the EAP-Service/Network-Attr-Offer message, parse the Network-Attr-Offer value, decision is that network layer address obtains by EAP service message mode or by the DHCP mode to subscriber equipment according to the Network-Attr-Offer property value.If obtain then execution in step 10 by the EAP service message), the flow process that obtains network layer address by the DHCP mode is a prior art, does not give unnecessary details.
10) subscriber equipment sends the EAP service message (EAP-Service/Network-Attr-Request message) of network layer address request for allocation to authenticating device
In the step 10), EAP service message attribute type includes request, network layer address, network layer address mask, default gateway, Main Domain resolution server and backup domain name resolution server.Please refer to Fig. 7 authenticating device and carry out following steps
101) authenticating device is resolved from the EAP service message in the step 10);
102) judge that static state setting obtains network layer address to subscriber equipment by dynamically obtaining still; If dynamically obtain then execution in step 11);
103) if static the setting judges then whether the current network layer address is preallocated consistent with authenticating device; If unanimity then execution in step 11);
104) if inconsistent then according to collocation strategy, can log information, perhaps cut off user's link etc.
The network layer address setting is divided into dynamically obtains and the static dual mode of specifying.For the static state setting, show authentication before the user specified a network layer address just for own subscriber equipment (as PC), authenticate at this moment.But according to top flow process, authenticating device can distribute a network layer address to the user.Behind the network layer address that the user obtains to distribute to, these two network layer address are compared, unanimity is then sending to subscriber equipment Network-Attr-Ack message.If both are inconsistent, then according to collocation strategy, can log information, perhaps cut off user's link etc.
11) authenticating device sends the EAP service message (EAP-Service/Network-Attr-Ack message) that network layer address distributes affirmation to subscriber equipment
EAP service message attribute type includes affirmation, network layer address, address mask, default gateway, primary dns server and backup dns server in the step 11).
12) subscriber equipment is resolved from the EAP service message in the step (3), by call operation system api interface network adapter is set.
In addition, simultaneously, after authenticating device sends EAP-Service/Network-Attr-Offer, open the address assignment overtime timer, wait for user's EAP-Service/Network-Attr-Request message.If timer expiry is not received the EAP service message yet, then system retransmits EAP-Service/Network-Attr-Offer, think that perhaps subscriber equipment do not support, abandon issuing network layer address and DNS service that perhaps overtime cut-outs user links by EAP-Service.
In sum, Network Layer Address Management method of the present invention can have following advantage by cooperating with certificate server:
At first, reduce the cost of Virtual network operator.The garden network operation business of middle and small scale particularly might not need the Dynamic Host Configuration Protocol server that provides special, can pass through certificate server, provide user account and network layer address allocation strategy at the 802.1X verification process to the user equipment network layer address.
Secondly, dispose simpler.With come to compare by Dynamic Host Configuration Protocol server is set to user's distributing IP address mode, mode provided by the invention has been saved DHCP relevant equipment and configuration.
In addition, by on certificate server directly the user account mode related with network layer address, prevented that to a certain extent network layer address from usurping, thereby made Network Layer Address Management more safe and effective.
Claims (11)
1. a Network Layer Address Management method is characterized in that, comprises following flow process: identifying procedure, and the logic port of authenticating device licenses to subscriber equipment, and authenticating device obtains network layer address from certificate server;
The address assignment flow process is that the EAP service message of network layer address is finished network layer address and distributed by the attribute type that carries alternately between authenticating device and subscriber equipment.
2. Network Layer Address Management method as claimed in claim 1 is characterized in that, the address assignment flow process may further comprise the steps:
(1) subscriber equipment sends the EAP service message of network layer address request for allocation to authenticating device;
(2) authenticating device sends the EAP service message that network layer address distributes affirmation to subscriber equipment.
3. Network Layer Address Management method as claimed in claim 2, it is characterized in that, in the step (1), EAP service message attribute type includes request, network layer address, network layer address mask, default gateway, Main Domain resolution server and backup domain name resolution server.
4. Network Layer Address Management method as claimed in claim 3, it is characterized in that EAP service message attribute type includes affirmation, network layer address, network layer address mask, default gateway, Main Domain resolution server and backup domain name resolution server in the step (2).
5. Network Layer Address Management method as claimed in claim 4 is characterized in that, described EAP service message is encapsulated in the information field of point-to-point protocol frame, and this information field further comprises following territory:
Code represents that this message is the EAP service message;
Sign is used to discern the EAP service message;
Length, the length of expression EAP service message;
Attribute type, the type of expression EAP service message particular content;
Property value, the specific object of expression EAP service message;
Property value length, the length of representation attribute value;
Title, expression user's name.
6. Network Layer Address Management method as claimed in claim 5 is characterized in that, step (1) also comprises step a) before, and authenticating device sends the EAP service message that network layer address provides strategy to subscriber equipment.
7. Network Layer Address Management method as claimed in claim 6, it is characterized in that, EAP service message attribute type provides strategy for network layer address in the step a), obtain still to obtain by the DHCP agreement according to its property value decision network layer address, if obtain then execution in step (1) by the EAP service message by the EAP service message.
8. Network Layer Address Management method as claimed in claim 6 is characterized in that, and is further comprising the steps of between step (1), (2):
B) authenticating device is resolved from the EAP service message in the step (1);
C) judge that the user equipment network layer address is dynamically to obtain or static the setting;
D) if dynamically obtain then execution in step (2);
E) if static the setting judges then whether the current network layer address is preallocated consistent with authenticating device;
F) if unanimity then execution in step (2).
9. Network Layer Address Management method as claimed in claim 8 is characterized in that, step (2) comprises the steps: also that afterwards the subscriber equipment parsing from the EAP service message in the step (2), is provided with network adapter by call operation system api interface.
10. Network Layer Address Management method as claimed in claim 1 is characterized in that, accepting to carry in the message attribute type by certificate server to the authenticating device return authentication in the identifying procedure is that 8 Framed-IP-Address obtains network layer address.
11. Network Layer Address Management method as claimed in claim 10 is characterized in that identifying procedure may further comprise the steps:
11) subscriber equipment begins message to authenticating device transmission EAPOL;
12) authenticating device sends the EAP request message to subscriber equipment;
13) subscriber equipment sends the EAP response message to authenticating device;
14) authenticating device sends the authentication request packet that carries customer identification information to certificate server;
15) certificate server sends RADIUS MD5 via authenticating device to subscriber equipment and addresses inquires to message;
16) subscriber equipment sends the response message that MD5 is addressed inquires to via authenticating device to certificate server;
17) certificate server sends authentication to authenticating device and accepts message, carries attribute type and be 8 Framed-IP-Address;
18) authenticating device sends the authentication success message to subscriber equipment, and the authenticating device logic port is authorized to subscriber equipment.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200410001094.0A CN1652535B (en) | 2004-02-03 | 2004-02-03 | Method for managing network layer address |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200410001094.0A CN1652535B (en) | 2004-02-03 | 2004-02-03 | Method for managing network layer address |
Publications (2)
Publication Number | Publication Date |
---|---|
CN1652535A true CN1652535A (en) | 2005-08-10 |
CN1652535B CN1652535B (en) | 2010-06-23 |
Family
ID=34867015
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN200410001094.0A Expired - Lifetime CN1652535B (en) | 2004-02-03 | 2004-02-03 | Method for managing network layer address |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN1652535B (en) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101132629B (en) * | 2006-08-25 | 2010-07-14 | 华为技术有限公司 | Method and system for discovering entrance of call control system |
CN102761618A (en) * | 2012-07-03 | 2012-10-31 | 杭州华三通信技术有限公司 | Method, equipment and system for realizing load balancing |
CN101179554B (en) * | 2006-11-07 | 2012-12-12 | 华为技术有限公司 | Method and network side for notifying boot mode of mobile subscriber terminal |
CN103731816B (en) * | 2012-10-16 | 2016-12-21 | 普天信息技术研究院有限公司 | A kind of user device address management method |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1200532C (en) * | 2001-12-05 | 2005-05-04 | 上海卓扬科技有限公司 | Broad access network user identifying method |
CN1231031C (en) * | 2002-06-28 | 2005-12-07 | 华为技术有限公司 | Address allocation and service method based on multi-internet service provider |
CN1152333C (en) * | 2002-07-31 | 2004-06-02 | 华为技术有限公司 | Method for realizing portal authentication based on protocols of authentication, charging and authorization |
CN1142662C (en) * | 2002-10-16 | 2004-03-17 | 华为技术有限公司 | Authentication method for supporting network switching in based on different devices at same time |
-
2004
- 2004-02-03 CN CN200410001094.0A patent/CN1652535B/en not_active Expired - Lifetime
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101132629B (en) * | 2006-08-25 | 2010-07-14 | 华为技术有限公司 | Method and system for discovering entrance of call control system |
CN101179554B (en) * | 2006-11-07 | 2012-12-12 | 华为技术有限公司 | Method and network side for notifying boot mode of mobile subscriber terminal |
CN102761618A (en) * | 2012-07-03 | 2012-10-31 | 杭州华三通信技术有限公司 | Method, equipment and system for realizing load balancing |
CN103731816B (en) * | 2012-10-16 | 2016-12-21 | 普天信息技术研究院有限公司 | A kind of user device address management method |
Also Published As
Publication number | Publication date |
---|---|
CN1652535B (en) | 2010-06-23 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN1123154C (en) | System, device and method for routine selection dhcp configuration agreement packets | |
US10142159B2 (en) | IP address allocation | |
EP1876754B1 (en) | Method system and server for implementing dhcp address security allocation | |
CN1277434C (en) | Secure access method, and associated apparatus, for accessing a private data communication network | |
CN1213567C (en) | Concentrated network equipment managing method | |
CN101110847B (en) | Method, device and system for obtaining medium access control address | |
CN1855820A (en) | Method for providing business according to its type | |
CN1744612A (en) | DHCP address allocation method | |
CN1949784A (en) | IP address requesting method for DHCP client by DHCP repeater | |
CN101043331A (en) | System and method for distributing address for network equipment | |
CN1184776C (en) | Method for the point-to-point protocol log-on user to obtain Internet protocol address | |
CN101034989A (en) | Method, system and router for originating the authentication request via the user terminal | |
CN1859409A (en) | Method and system for improving network dynamic host configuration DHCP safety | |
CN1929482A (en) | Network business identification method and device | |
CN1859440A (en) | Method for distributing service based on terminal mark | |
CN1713629A (en) | Realization of user login name and IP address binding | |
CN101184099B (en) | Second IP address assignment method based on dynamic host machine configuration protocol access authentication | |
CN1859441A (en) | Method for distributing service based on terminal physical position | |
CN1863218A (en) | Method for providing automatic service by PPP terminal | |
CN1744597A (en) | Method for host use obtaining IP address parameters in IPV6 network | |
CN1773941A (en) | Performance test method and apparatus for identification service | |
CN101471934A (en) | Bidirectional encipher and identification authentication method of dynamic host configuration protocol | |
CN1852169A (en) | Method and system for centralized management of multiple functional units | |
CN1708021A (en) | Method of distributing switchin-in address for user terminal | |
CN101052015A (en) | User access method for IP network |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20220831 Address after: No. 1899 Xiyuan Avenue, high tech Zone (West District), Chengdu, Sichuan 610041 Patentee after: Chengdu Huawei Technologies Co.,Ltd. Address before: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen Patentee before: HUAWEI TECHNOLOGIES Co.,Ltd. |
|
CX01 | Expiry of patent term | ||
CX01 | Expiry of patent term |
Granted publication date: 20100623 |