CN1732654B - Internet connection system and server for routing connection to client device - Google Patents

Internet connection system and server for routing connection to client device Download PDF

Info

Publication number
CN1732654B
CN1732654B CN2003801079542A CN200380107954A CN1732654B CN 1732654 B CN1732654 B CN 1732654B CN 2003801079542 A CN2003801079542 A CN 2003801079542A CN 200380107954 A CN200380107954 A CN 200380107954A CN 1732654 B CN1732654 B CN 1732654B
Authority
CN
China
Prior art keywords
mentioned
client computer
server
relay
agreement
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
CN2003801079542A
Other languages
Chinese (zh)
Other versions
CN1732654A (en
Inventor
石田宏树
田中伸明
草野隆史
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Freebit Co Ltd
Original Assignee
Freebit Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Freebit Co Ltd filed Critical Freebit Co Ltd
Priority claimed from PCT/JP2003/015342 external-priority patent/WO2004051948A1/en
Publication of CN1732654A publication Critical patent/CN1732654A/en
Application granted granted Critical
Publication of CN1732654B publication Critical patent/CN1732654B/en
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Images

Abstract

The purpose of the present invention is to provide an Internet connection system which is capable of benefiting from the IPv6 by relatively easy means and in which manufacturers of client-side devices can create added values for users. IPv6 packets are transmitted by a tunneling connection between a home network and a server on the Internet. Also terminal devices present in the home network can be uniquely recognized and controlled from outside via the server. Since all communications are performed via the server on the Internet regardless of the carrier and the ISP, the terminal device and all connections to the terminal device can be freely configured and controlled by the owner or the manufacturer of the server on the Internet.

Description

The internet connected system and be used for to the server that carries out Route Selection that is connected of client computer
The association request reference
The application advocates based on the application 2002-23845 in the Japanese patent application number, the priority of Treaty of Paris the 4th (and regulation of its corresponding various countries) of application 2003-161246 number, application 2003-35390 number; Based on above-mentioned opinion, these specifications and accompanying drawing integrally are recorded in the application's the specification.
The present invention relates under the present infrastructure environment that IPv4 (4: the 4 editions Internet protocols of Internet Protocol version) has popularized; Realize utilizing IPv6 (6: the 6 editions Internet protocols of Internet Protocol version) network construction, provide the system of service to reach the above-mentioned server that for this reason uses from the IPv6 environment of server in family as follow-on IP.
Generally, through being that the service of the common network at center provides in the environment with the internet, the value of full detail is not to concentrate on client computer one side, but server one side.
In other words, as each terminating machine of client computer, the simple reading machine of the information on the internet basically only is used for reading.In addition, each client computer sends to internet one side with various information requirements, and internet one can be to obtain the information of this each client computer.In other words, full detail concentrates on internet one side, and only one side unilaterally provides typing information from the internet.Therefore, present situation is that the manufacturer who makes the client terminal machine is difficult to produce surcharge.
In order to change this situation, must make the access side opposite, with the position reversing of server and client computer.In other words, when existing with in-home network that the internet is connected, one side begins to visit in-home network from the internet, must produce the state that from in-home network one direction internet one side provides service.
Therefore,, must can confirm with unique, must solve the problem and the safety issue of the Route Selection in the family from internet network one with each machine of home-network linkups.Corresponding to this problem,, have IPv6 (the 6th edition Internet protocol, the 6th generation Internet Protocol) as a kind of technical solution of finding out.
Yet, because around the communications carrier of present Japan and ISP's environment, can think that IPv6 universal needs considerable time.Such as, the machine material depreciation subsistence level of the IPv4 that uses now 2 years~3 years, service just makes an experiment.
Though present manufacturer realizes the IPv6 map network immediately and can only do the service that reaches the ISP level, because need very high cost, for a lot of manufacturers, is unpractical.
The situation of in-home network is of all kinds to have very large difference, and the structure that communications carrier and ISP connect also has very big difference, must have to be used for digesting these difference realize the IPv6 environment with uniform way structure.
For achieving the above object, according to the 1st main points of view of the present invention, a kind of internet connected system is provided, it is characterized in that comprising: be connected, be arranged at the relay in the 1st network that communicates with the 1st communication protocol with client computer; Connect the server of this relay through the 2nd network with the 2nd communication protocol, in above-mentioned relay, be provided with: the above-mentioned client computer global address storage part of storing the global address in above-mentioned the 1st communication protocol of above-mentioned client computer; Store the server address storage part of the global address in the 2nd agreement of above-mentioned server; Be used for based on the server that is stored in this storage part global address, make send from above-mentioned client computer, to carry out the 1st routing arrangement of Route Selection via above-mentioned server via other the connection of client computer of the 1st network that is present in other of above-mentioned the 2nd network; Through with the bag in the 1st agreement with the 2nd agreement package/unpack and above-mentioned server between establish the 1st bag processing unit that the protocol channel of the 1st agreement connects; In above-mentioned server, be provided with: be connected to become the 2nd bag processing unit that maybe the bag in the 1st agreement be carried out package/unpack with the 2nd agreement in order to make passage between above-mentioned server and the above-mentioned relay; The terminating machine global address administration device that global address in global address in the 1st agreement of the above-mentioned client computer that will be connected with above-mentioned relay and the 2nd agreement of above-mentioned relay is managed explicitly; Global address based on the above-mentioned terminating machine of the management of management devices is thus carried out the 2nd routing arrangement to the Route Selection of above-mentioned relay, and differentiates above-mentioned client computer or/and whether above-mentioned relay is the machine judegment part of the machine of regulation.
According to such formation, between network within the family and the internet one side's server, the IPv6 bag connects through protocol channel to be received and dispatched.So, can be from the outside discern and be controlled at the terminating machine that exists the in-home network uniquely through above-mentioned server.So; Because all communication is all irrelevant with communications carrier and ISP; Can carry out through above-mentioned internet one side's server, thus the terminating machine in the above-mentioned family and with whole can freely the setting and control that is connected of this terminating machine by the owner of above-mentioned internet one side's server.
In other words, the problem that in the past became Route Selection in the individual recognition to the IPv6 machine among IPv6 and IPv4 mix, family of problem and fail safe all can solve, and can realize the network construction of very open and sealing.
Here, above-mentioned the 1st agreement and the 2nd agreement both can be different protocol, also can be identical agreements, and in optimum execution mode, above-mentioned the 1st agreement is IPv6, and the 2nd agreement is IPv4.
According to an embodiment of the present invention, whether in above-mentioned server, being provided with above-mentioned client computer of differentiation or/and above-mentioned relay is the machine judegment part of the machine of regulation.In this occasion, preferably in this server, also be provided with and utilizing above-mentioned machine judegment part to be judged as above-mentioned client computer or relay when not being the machine of regulation, certificate to cut off the communication session cut-out portion of the transmitting-receiving that this communication session or restriction wrap.In addition, preferably be provided with the order transformation component that order that judged result based on above-mentioned machine judegment part will send to client computer is transformed to the order of the prescribed form that is used for controlling this client computer.In addition, in above-mentioned server, the client computer control part of controlling above-mentioned client computer based on the judged result of above-mentioned machine judegment part is set preferably.
According to another embodiment of the present invention, in above-mentioned server, be provided with also whether the environment of differentiating with above-mentioned client computer or/and the 1st network that relay was connected is the network kind judegment part of the kind of regulation.In this occasion, preferably above-mentioned server has is judging that the non-public network environment be connected with above-mentioned client computer or relay is not the kind time-like of regulation, certificate to cut off this communication session or to limit the communication session cut-out portion of the transmitting-receiving of wrapping.In addition; In this occasion; Preferably above-mentioned server; At least one or the state information of a plurality of information that are provided with in the operate condition of obtaining above-mentioned client computer or/and relay, user mode, the positional information obtain portion, are more preferably this state information and obtain portion, to obtain at least one or a plurality of information in the operate condition, user mode, positional information of above-mentioned client computer with the corresponding method of the machine of above-mentioned client computer.
According to other another execution mode; Above-mentioned server, the combined information with at least one or a plurality of information in address based on above-mentioned client computer or relay, operate condition, user mode, the positional information is retrieved the search part of above-mentioned client computer or relay.In this occasion, preferably this search part has the means that each above-mentioned relay guide look shown the client computer that relay therewith is connected.So; In this occasion; Preferably in above-mentioned server, also be provided with the client computer control part of the above-mentioned client computer of control, this client computer control part, making therewith through the client computer of from above-mentioned guide look shows, selecting to confirm, the corresponding client computer control program of client computer starts.
According to other another execution mode, in above-mentioned server, be provided with the client address search part of carrying out the retrieval of the global address in the 1st agreement of above-mentioned client computer based on connection request to above-mentioned client computer.In this occasion.Preferably in above-mentioned server, be provided with and be familiar with and permit or deny connection request person understanding portion the connection of above-mentioned client computer to carrying out people to the connection request of above-mentioned client computer.
According to other another execution mode; This system also has the protocol channel link information management devices of the protocol channel link information of management between above-mentioned relay and server; This protocol channel link information management devices; Notify above-mentioned relay with the global address in the 2nd agreement of above-mentioned server, and notify above-mentioned server the global address in the 1st agreement of global address in the 2nd agreement of above-mentioned relay and above-mentioned client computer or its part.In this occasion, preferably above-mentioned protocol channel link information management devices carries out the understanding of above-mentioned relay or server, and carries out above-mentioned notice when being sure in this result.
According to other another execution mode, above-mentioned server, have with the filtration treatment device of predetermined rule to being dealt into/filtering from the communication of above-mentioned client computer.In this occasion, preferably above-mentioned server also has the filtering rule configuration part of the interface of the rule that is provided for editing afore mentioned rules.
According to other another execution mode, whether in above-mentioned relay, being provided with the above-mentioned client computer of differentiation is the machine judegment part of the machine of regulation.In this occasion, preferably in above-mentioned relay, be provided be judged as according to above-mentioned machine judegment part above-mentioned client computer be not the regulation machine the time, certificate to cut off the communication session cut-out portion of this communication session.
According to the 2nd main points of view of the present invention, a kind of internet connected system is provided, it is characterized in that comprising: be connected, be arranged at the relay in the 1st network that communicates with the 1st communication protocol with client computer; Connect the server of this relay through the 2nd network with the 2nd communication protocol, in above-mentioned relay, be provided with: the above-mentioned client computer global address storage part of storing the global address in above-mentioned the 1st communication protocol of above-mentioned client computer; Store the server address storage part of the global address in the 2nd agreement of above-mentioned server; Be used for based on the server that is stored in this storage part global address, make send from above-mentioned client computer, to carry out the 1st routing arrangement of Route Selection via above-mentioned server via other the connection of client computer of the 1st network that is present in other of above-mentioned the 2nd network; Through with the bag in the 1st agreement with the 2nd agreement package/unpack and above-mentioned server between establish the 1st bag processing unit that the protocol channel of the 1st agreement connects; In above-mentioned server, be provided with: be connected to become the 2nd bag processing unit that maybe the bag in the 1st agreement be carried out package/unpack with the 2nd agreement in order to make passage between above-mentioned server and the above-mentioned relay; The terminating machine global address administration device that global address in global address in the 1st agreement of the above-mentioned client computer that will be connected with above-mentioned relay and the 2nd agreement of above-mentioned relay is managed explicitly; Global address based on the above-mentioned terminating machine of the management of management devices is thus carried out the 2nd routing arrangement to the Route Selection of above-mentioned relay; And whether the environment of differentiation and above-mentioned client computer or/and the 1st network that relay was connected is the network kind judegment part of the kind of regulation.
According to the 3rd main points of view of the present invention, a kind of internet connected system is provided, it is characterized in that comprising: be connected, be arranged at the relay in the 1st network that communicates with the 1st communication protocol with client computer; Connect the server of this relay through the 2nd network with the 2nd communication protocol, in above-mentioned relay, be provided with: the above-mentioned client computer global address storage part of storing the global address in above-mentioned the 1st communication protocol of above-mentioned client computer; Store the server address storage part of the global address in the 2nd agreement of above-mentioned server; Be used for based on the server that is stored in this storage part global address, make send from above-mentioned client computer, to carry out the 1st routing arrangement of Route Selection via above-mentioned server via other the connection of client computer of the 1st network that is present in other of above-mentioned the 2nd network; Through with the bag in the 1st agreement with the 2nd agreement package/unpack and above-mentioned server between establish the 1st bag processing unit that the protocol channel of the 1st agreement connects; And differentiate the machine judegment part whether above-mentioned client computer is the machine of regulation, in above-mentioned server, be provided with: for and make passage between the above-mentioned relay of above-mentioned server be connected to become the 2nd bag processing unit that maybe the bag in the 1st agreement be carried out package/unpack with the 2nd agreement; The terminating machine global address administration device that global address in global address in the 1st agreement of the above-mentioned client computer that will be connected with above-mentioned relay and the 2nd agreement of above-mentioned relay is managed explicitly; Global address based on the above-mentioned terminating machine of the management of management devices is thus carried out the 2nd routing arrangement to the Route Selection of above-mentioned relay.
According to the 4th main points of view of the present invention, a kind of server that in the internet connected system, uses is provided, said internet connected system has: be arranged at the relay in the 1st network; The above-mentioned server that connects through above-mentioned relay and internet of the client computer that is connected of the 1st network therewith; The said server that in the internet connected system, uses is characterised in that and comprises: the client address management devices, and the address of the above-mentioned client computer that will be connected with above-mentioned relay and the address of above-mentioned relay ground are managed; Routing arrangement is based on the address of the above-mentioned client computer of being managed in the above-mentioned management devices, will carry out Route Selection to the relay that connects above-mentioned client computer from the connection to above-mentioned client computer of above-mentioned internet; The machine judegment part, whether differentiate above-mentioned client computer or/and above-mentioned relay is the machine of regulation; And the order transformation component, based on the judged result of above-mentioned machine judegment part, the order that sends to above-mentioned client computer is transformed to the order of the prescribed form that is used for controlling this client computer.
According to this formation, can be identified in the terminating machine that exists the in-home network uniquely from the outside through above-mentioned server.So; Because all communication is all irrelevant with communications carrier and ISP; Can carry out through above-mentioned internet one side's server, thus the terminating machine in the above-mentioned family and with whole can freely the setting and control that is connected of this terminating machine by the owner of above-mentioned internet one side's server.
According to an embodiment of the present invention, also be provided with and be judged as above-mentioned client computer or relay according to above-mentioned machine judegment part when not being the machine of regulation, certificate to cut off the communication session cut-out portion of the transmitting-receiving that this communication session or restriction wrap.
In addition, according to another embodiment of the present invention, above-mentioned client computer can be communicated by letter with above-mentioned relay, but comprises the peripheral unit that oneself can not be connected with the internet.
According to another other execution mode, also be provided with the environment of differentiating the 1st network that is connected with above-mentioned client computer or/and relay and whether be the network kind judegment part of the kind of stipulating.In this occasion, preferably also have and be judged as the kind time-like that the non-public network environment that is connected with above-mentioned client computer or relay is not a regulation, certificate to cut off the communication session cut-out portion of the transmitting-receiving that this communication session or restriction wrap.
According to another other execution mode, at least one or the state information of a plurality of information that also have in the operate condition of obtaining above-mentioned client computer or/and relay, user mode, the positional information obtain portion.In this occasion, preferably above-mentioned state information obtains portion, to obtain at least one or a plurality of information in the operate condition, user mode, positional information of above-mentioned client computer with the corresponding method of the machine of above-mentioned client computer.In addition, be more preferably the client computer control part that the above-mentioned client computer of control also is set, this client computer control part has the means that show at least one information in the operate condition, user mode, positional information of above-mentioned client computer to the user.
In addition, the combined information that also has at least one or a plurality of information in address based on above-mentioned client computer or relay, operate condition, user mode, the positional information is retrieved the search part of above-mentioned client computer or relay.Preferably this search part has the guide look that the client computer of retrieval is had a guide look of demonstration with its operate condition and shows means.In addition, above-mentioned guide look shows means, be to each above-mentioned relay therewith the client computer that is connected of relay have a guide look of device shown.In addition, preferably also be provided with the client computer control part of the above-mentioned client computer of control, this client computer control part, making therewith through the client computer of from above-mentioned guide look shows, selecting to confirm, the corresponding client computer control program of client computer starts.
According to another other execution mode, above-mentioned relay is arranged in the above-mentioned client computer.
According to another kind of execution mode, also be provided with: for make and above-mentioned relay between protocol channel be connected to become maybe be through with the 2nd bag processing unit of the bag in the 1st agreement with the 2nd agreement package/unpack; The terminating machine global address administration device that global address in global address in the 1st agreement of the above-mentioned client computer that will be connected with above-mentioned relay and the 2nd agreement of above-mentioned relay is managed explicitly; And carry out the 2nd routing arrangement to the Route Selection of above-mentioned relay based on the global address of the above-mentioned terminating machine of the management of management devices thus.Above-mentioned the 1st agreement and the 2nd agreement both can be different protocol, also can be identical agreements.
In addition, preferably also be provided with the client address search part of carrying out the retrieval of the global address in the 1st agreement of above-mentioned client computer based on connection request to above-mentioned client computer.In this occasion.The people who preferably also is provided with the connection request of the above-mentioned client computer of subtend is familiar with and permits or deny the connection request person understanding portion to the connection of above-mentioned client computer.
In addition; This server also has the protocol channel link information management devices of the protocol channel link information of management between above-mentioned relay and server; This protocol channel link information management devices; Notify above-mentioned relay with the global address in the 2nd agreement of above-mentioned server, and obtain global address or its part in the 1st agreement of global address and above-mentioned client computer in the 2nd agreement of above-mentioned relay.Here, preferably above-mentioned protocol channel link information management devices carries out the understanding of above-mentioned relay, and carries out above-mentioned notice when being sure in this result.
According to other another execution mode, also have with the filtration treatment device of predetermined rule to being dealt into/filtering from the communication of above-mentioned client computer.In this occasion, preferably also has the filtering rule configuration part that is provided for editing the regular interface of afore mentioned rules.
According to the server that in internet of the present invention connected system, uses, more easy means capable of using are enjoyed the benefit of IPv6, and can provide the manufacturer of the machine of making client computer one side can find the internet method of attachment of surcharge alone.
According to the 5th main points of view of the present invention, a kind of computer processing method of being carried out by the server that is used in the internet connected system that is used for the internet connection is provided, said internet connected system has: be arranged at the relay in the 1st network; The above-mentioned server that connects through above-mentioned relay and internet of the client computer that is connected of the 1st network therewith; Said computer processing method is characterised in that and comprises the steps: the client address management process that the address of the above-mentioned client computer that will be connected with above-mentioned relay and the address of above-mentioned relay ground are managed; The Route Selection step is based on the address of the above-mentioned client computer of being managed in the above-mentioned management devices, will the connection to above-mentioned client computer carry out Route Selection to the above-mentioned relay that connects above-mentioned client computer from above-mentioned internet; The machine discriminating step, whether differentiate above-mentioned client computer or/and above-mentioned relay is the machine of regulation; And the order shift step, based on the judged result of above-mentioned machine discriminating step, the order that sends to above-mentioned client computer is transformed to the order of the prescribed form that is used for controlling this client computer.
Other other characteristics of the present invention and significant effect can obtain understanding through execution mode and the accompanying drawing of recording and narrating in the best mode with reference to invention below being used for implementing to those skilled in the art.
Fig. 1 is that the network that an embodiment of the invention are shown constitutes routine figure.
Fig. 2 is the summary pie graph that the example of same InterBOX is shown.
Fig. 3 is the summary pie graph that the example of same InterServer is shown.
Fig. 4 is the summary pie graph that filter house is shown.
Fig. 5 is the flow chart that is illustrated in the processing in the filter house.
Fig. 6 is the summary pie graph that IPv6 terminal search part is shown.
Fig. 7 is the illustration that searching picture is shown.
Fig. 8 is the illustration that the result for retrieval tabulation demonstration that relates to InterBOX is shown.
Fig. 9 is the concept map that the control that utilizes IPv6 terminal control part is shown.
Figure 10 is the function diagram that the communication example of this execution mode is shown.
Figure 11 is the function diagram that another communication example of this execution mode is shown.
Figure 12 is the figure that example is set that InterBOX or IPv6 terminal are shown.
Figure 13 illustrates the illustration that InterBOX is connected with protocol channel between InterServer.
With reference to the accompanying drawings execution mode of the present invention is described.
Fig. 1 illustrates the figure that the network that relates to this execution mode constitutes example.
1 is the various client computer IPv6 terminal 2 that communicates with IPv6 (the 1st communication protocol) (below be called " IPv6 terminal ") among the figure ... the IPv6 home network that is formed by connecting.This home network 1, such as, constitute by the LAN that imports each family.
So this home network 1 is connected with internet 4 through InterBOX and communications carrier/ISP.In this internet 4, utilize the IPv4 (2nd communication protocol) that widely popularize now different to communicate with above-mentioned IP v6.
So, in this internet 4, be connected with the InterServer6 (" server " of the present invention) of the communication at the IPv6 terminal 2 of control on the above-mentioned home network 1.This InterServer6, such as the back detailed description, have on above-mentioned IP v6 terminal 2, the internet 4 or the connection between the last whole IPv6 terminal 2a of other families/ global network 1a, 1b, 2b, IPv6 server 7 carry out the function of intermediary.
So InterBOX3 and InterServer6 are that intention is made by same manufacturer or under unified specification, are designed to the device of interlock in advance.So, in InterBOX3, store the privately owned address among the IPv4 of InterServer6 in advance, constantly carry out protocol channel and be connected with ISP and communications carrier are irrelevant with above-mentioned InterServer6.In addition; For the IPv6 terminal 2 that is connected with above-mentioned home network 1; Also be intended to by making with same manufacturer such as above-mentioned InterBOX3 or under unified specification; Based on global address, other information of the IPv6 that distributes to this IPv6 terminal 2, can confirm in the kind (machine) at this terminal of above-mentioned InterServer6 one side etc.
At this, about the whole bag of tricks that is assigned of the IPv6 address at IPv6 terminal 2.The IPv6 address constitutes by 128, partly is made up of by " prefix " part of NIC and ISP distribution with at " the interface ID " that generated alone by the user of its latter half of setting what set at its first half.In this example, also be to use the prefix of distributing and " interface " part that the intrinsic MAC Address in each terminal generates to form by each manufacturer.This IPv6 address both can determine before dispatching from the factory in terminal 2 already, also can be IPv6 address prefix and the MAC Address of oneself generation automatically that utilizes this InterBOX3 through being connected with InterBOX3.In addition, above-mentioned IP v6 terminal 2 also can be the video tape recorder and the such household electrical appliances of television set that itself can not be connected with the internet.In this occasion, in above-mentioned InterBOX, be provided with the interface (IEEE1394) that these household electrical appliances can be communicated by letter, can distribute virtual ip address to the ID (unique ID) of each household electrical appliances.
Fig. 2 is the summary pie graph that above-mentioned InterBOX3 is shown.
This InterBOX3 has: the server address storage part 10 of storing the global address among the IPv4 of above-mentioned InterServer6; Based on the address of this InterServer6 and InterServer6 between establish the protocol channel session establishment portion 11 that protocol channel connects; With the bag among the IPv6 with IPv4 carry out package/unpack be used for and above-mentioned InterServer6 between carry out the protocol channel transmitting-receiving package handling part 12; Be used for above-mentioned bag from above-mentioned InterServer6 one side of unpacking is carried out the Route Selection handling part 13 that Route Selection connects to desired IPv6 terminal 2; And the pack receiving and transmitting portion 14 of the transmitting-receiving of wrapping.In addition, this InterBOX3 is provided with in order to utilize the prefix of distributing to InterBOX3 to generate the prefix storage part portion 15 (address generation portion) of occasion etc. of the address at IPv6 terminal 2.
According to this formation, can be through the passage that utilizes IPv4 between above-mentioned InterServer6 and InterBOX3, established to receiving and dispatching from the bag at above-mentioned IP v6 terminal 2 or the bag of issuing IPv6 terminal 2.
In addition, Fig. 3 is the summary pie graph that above-mentioned InterServer6 is shown.
In this InterServer6, have: with the address storage part 16 of the global address 16b association store among the IPv6 of global address 16a among the IPv4 of InterBOX3 and above-mentioned client computer; Based on the address of above-mentioned relay 3 and this InterBOX3 between establish the protocol channel session establishment portion 17 that protocol channel connects; For make and above-mentioned network home appliance 2 between communication become the package handling part 18 that maybe the bag among the IPv6 be carried out package/unpack with IPv4; And the Route Selection portion 19 that the communication between above-mentioned IP v6 terminal 2 and another terminal/server is carried out Route Selection.In addition, this InterServer6 has: based on the IPv6 address at above-mentioned IP v6 terminal 2, differentiate the machine judegment part 21 of the kind at IPv6 terminal 2; The order that to issue above-mentioned IP v6 terminal 2 based on this differentiation result is transformed to the order configuration part 22 that defined order is set; The filter house 23 that the IPv6 bag that passage is sent filters with predetermined rule; And the communication session cut-out portion 24 that cuts off the occasion communication session of regulation.So the transmitting-receiving of bag is undertaken by transmitting-receiving handling part 25.
In addition, this InterServer6 is connected with subscriber management server 30.This subscriber management server 30; Specify as following; It is the user's at management each InterBOX3 and each IPv6 terminal 2 the server of information; Have the membership informations such as ID, password and nuclear money information except each user, also the subscriber information management DB31 of storing IP v6 prefix and machine information etc.
And then this InterServer6 has in the internet 4 (IPv4 networks) and goes up disclosed Web server 32, can accept the requirement that the user by above-mentioned InterBOX3 and IPv6 terminal 2 sends and carry out various settings.Such as, at least a portion of the filtering rule of above-mentioned filter house 23 can be passed through this Web server 32, carries out suitable change by above-mentioned user.In addition,, both can pass through InterBOX3 and InterServer6 and carry out, also can carry out through internet 4 without these to the visit of this Web server 32.
Above-mentioned filter house 23, as shown in Figure 4, have filtering rule storage part 33 and filtering rule configuration part 34.This filtering rule storage part 33 and filtering rule configuration part 34 and are connected at disclosed above-mentioned Web server 32 on the internet, and be as shown in Figure 3 in above-mentioned Web server 32, the InterServer session is installed with interface generation portion 35.The user of Web server 32 connections shows on the terminal of oneself through the interface with interface generation portion 35 generations thus therewith, just can import/change filtering rule.As the filtering rule that can set herein, such as, can consider to relate to the filtering rule of fail safe.
As the filtering rule of fail safe aspect, can be divided into substantially: 1. do not approve from the outside any visit of home network one side; 2. except the server (Web website) and network of approval in advance, do not approve from the visit of outside to home network one side; 3. do not limit from the outside any visit of home network.In addition, as the filter method of this moment, both can be the method for not approving any visit, also can be only to pass through particular port.
About visit,, just can prevent that children from visiting harmful interior (trap is set) website that prevents that perhaps user capture is generally illegal here, if can make and can not the server of prior setting be conducted interviews through limiting from 1 pair of outside of home network.
In addition, the setting of this filtering rule can be carried out after the understanding of IP address that utilizes user's understanding portion 36 that can be connected with the above-mentioned subscriber management server 30 in being arranged at above-mentioned Web server 32 and password.
Above-mentioned filtering rule configuration part 34; As stated; Filtering rule is set in the input that is based on the user; In addition, also can have and do not rely on, and be based on the function that the membership information (information of nuclear money information and terminal machine) that is stored in the above-mentioned subscriber management server 30 generates filtering rule automatically from user's setting.Such as, according to above-mentioned member's attribute and the membership dues situation of paying dues, set and disapprove the gateway that connects or connect only specific server etc.
As the filtering rule of this gateway, can be used to control the supplier that chargeable service is provided through this InterServer6.Such as, as shown in Figure 3, acting server 38 is set in above-mentioned InterServer6 and, also can be that the user can only connect the visit destination of being set by above-mentioned filtering rule configuration part 34 by the visit destination of DB39 leading subscriber.In this occasion, hope outside above-mentioned ID and password, the function of with signatory which kind of service (server) of which kind of condition and according to this condition being controlled transaction by above-mentioned this user of user management DB31 management also is installed.In addition, for specific supplier, also can be set at login formality uncompleted user is only made it see the appearance page or leaf and can't see main part or the like.
Fig. 5 is the flow chart that is illustrated in the processing in this filter house 23.After at first the protocol channel session begins,, set filtering rule (step S1) based on the membership information of accepting from above-mentioned subscriber management server 30.Then, accept information (such as, the address of Web website) (step S2) from the above-mentioned user's of above-mentioned acting server 38 connection request destination.Then, this information that connects the destination is applicable to above-mentioned filtering rule, judgement could connect (step S3), in the occasion that mustn't connect, by above-mentioned communication session cut-out portion 24 communication session is cut off (step S4).In the occasion that permission connects, judge whether session goes back effectively (step S5), in effective occasion, reprocessing above-mentioned steps S2~S5.In invalid occasion, end process.
In addition, also can utilize above-mentioned acting server 38, the traffic of instrumentation data is for approving from the visit of not paying nuclear money person.In this occasion, for supplier, only notify user's ID, do not notify this user's password and IP address.Therefore, the user can only manage a pair of ID and the password that InterServer6 uses.In addition; Because the IP address is sometimes owing to user's relation or other reasons change; Utilize key confirmation ID also is being suitable aspect the consistency of system at every turn, so for to carry out the danger of unauthorized access be suitable owing to having data supplier one side in order to get rid of.
The execution of above-mentioned filtering rule and be the enforcement of cut-out and connection etc. of the communication session of basis with it can be undertaken by above-mentioned communication session cut-out portion 24.In addition, because utilize the filter method of the filtering rule that sets, gateway approach and other methods all are known, its explanation of Therefore, omited.
In addition, above-mentioned InterServer6 has the IPv6 terminal search part 26 (Fig. 3) of function that the people who is provided for making the address of not knowing above-mentioned IP v6 terminal 2 carries out the retrieval at this IPv6 terminal 2.This search part 26 can be according to user appointed information, such as, based on retrieval such as the operating state at IPv6 terminal 2 and the operating state of network and confirm desirable IPv6 terminal 2.
Therefore, this search part 26, as shown in Figure 6, the state information with state information of the operating state at the above-mentioned IP v6 terminal of accepting to be connected with above-mentioned IP v6 network and InterBOX3 2 and the state of network etc. is accepted portion 40; State information accumulation portion 41 with the IP address correlation accumulation of the IP address at this information and above-mentioned IP v6 terminal and InterBOX3; And IPv6 terminal control part 42.
Above-mentioned state information is accepted portion 40, and each is accommodated the prefix at above-mentioned IP v6 terminal 2 or the state that territory (IPv6 network or InterBOX3) accepts each IPv6 terminal 2.This state information is accepted portion 40, both can be to each above-mentioned prefix and territory, accept its state through query State with the cycle of regulation, and also can when having, obtain state through inquiry to the requiring of the reference in each prefix or territory.Under the former situation of method, such as, to the inquiry of the ON/OFF of the per power supply that carried out each terminal 2 in 1 minute of each relay of logining storage part 16a in above-mentioned InterBOX address.
Above-mentioned state information accumulation portion 41, with the state information at above-mentioned each IPv6 terminal 2, IPv6 terminal and InterBOX3 store explicitly therewith.Here, the state information that obtains can be divided into substantially: the information of expression operate condition, user mode, positional information, characteristic; The information that node (InterBOX3 and IPv6 terminal 2) is possessed is shown; Be to confirm in the effective information of other nodes at least one or a plurality of.
Be one or more in the state, network connection state, communications status of power supply at least as action message.As user mode relate at least the person of utilization information, the information that relates to operate time, relate to one or more in the information of load.Positional information is geographical position and coordinate information, postcode, house numbers or the like at least.As the information that characteristic is shown one or more among the information of kind, function, shape, color, device information, software information, function, manager etc. of node.
In addition, the machine that utilizes above-mentioned IP v6 machine judegment part 21 to differentiate is also deposited as state information respectively.Above-mentioned state information is accepted portion 40, based on the definite information that obtains from above-mentioned IP v6 terminal 2 of this machine information, and can be to obtain essential information with its form that is fit to.
Above-mentioned search part 26 also possesses the connection request understanding portion 27 that the people who carries out above-mentioned retrieval or connection request to being connected with above-mentioned subscriber management server 30 carries out understanding, permission retrieval and connection request.Such as, to user's home network (InterBOX3), for this network, retrieval and connection except the particular user that permission connects all disapprove.Be judged as when sure in this understanding portion 27, these search part 26 above-mentioned state information accumulation portion 41 of visit and address storage parts 16 are retrieved the address (confirming InterBOX3) at desirable terminal 2.
The result of retrieval, such as, use personal computer under the situation of the InterBOX3 of the home network of external retrieval oneself the user, the demonstration of tabulating of this state at whole IPv6 terminal 2 that also can be connected with this InterBOX3.Fig. 7 illustrates the example of searching picture, and Fig. 8 is the illustration that the tabulation demonstration of the InterBOX3 that relates to the deterministic retrieval result is shown.In retrieval shown in Figure 7 example with interface, be provided with the input field 43 and the input field 44 that is used for retrieving IPv6 terminal 2 that are used for retrieving InterBOX3, its programming becomes and can retrieve from any one.
In addition, in the example that the tabulation of the result for retrieval of Fig. 8 shows, the whole terminals 2 that are connected with above-mentioned InterBOX3 are with the demonstration of tabulating of the information of the owner, state, kind and machine name.So when pressing in the drawings the operation screen the Show Button with 45 expressions, above-mentioned terminal control part 42 starts, and shows kind and the corresponding operation screen of machine (not shown) with relevant terminal 2 at every turn.
Fig. 9 is the concept map that the control that utilizes above-mentioned control part 42 is shown.
At first, IPv6 terminal 2 when InterBOX3 is in through the protocol channel session with state that InterServer6 is connected, is used to accept from above-mentioned state information the requirement of portion 40, notifies its operating state (step S11).At this moment, also can be that above-mentioned control part 42 logins of 2 one directions just can not obtain above-mentioned operating state from the IPv6 terminal.Obtaining of above-mentioned operating state carried out with certain cycle, accumulated in the above-mentioned state information accumulation portion 41 and upgraded (step S12).
Then, the user at above-mentioned IP v6 terminal 2 utilizes ID and password to login from the outside, from above-mentioned tabulation, as stated, confirms the terminal that will control and starts above-mentioned control part 42 (step S13).This control part 42, the order that the processing complete order also will be fit in the server place sends to above-mentioned terminating machine and it is controlled.
In addition, also can be through selecting the terminal name from above-mentioned tabulation, carry out Route Selection and connect to selected IPv6 terminal.In addition, also can import the state of confirming by search condition and retrieve, and find the occasion at this terminal, be directly connected to this terminal.In addition, even be connected irrelevantly when through the Web website this terminal being retrieved with protocol channel, establish protocol channel with being connected of this terminal and is connected and carries out afterwards from the outside through InterServer6.
Here, so-called " protocol channel " is to be used for that (router) is the technology that between particular router, the IPv6 bag is exchanged with the IPv4 package through the interconnective technology of IPv4 network between the network with IPv6.
In addition; Above-mentioned each inscape 10~42 of above-mentioned InterBOX3 and InterServer6; Be actually certain zone of guaranteeing and be installed on computer software programs wherein, be used for controlling these hard disks and read and carry out that peripheral equipments such as the CPU of said procedure, RAM, other input/output units constitute by the hard disk that is arranged in the computer system.
In addition, above-mentioned InterBOX3 preferably is made up of a computer system that comprises each terminal 2, and above-mentioned InterServer6 is preferably by interconnected a plurality of computer system constitutes for load is disperseed.Such as, the network home appliance search part 26 of the state of managing I nterBOX3 and IPv6 terminal 2 and home network preferably is made up of the server with special-purpose transmitting-receiving interface and control part.This is that load must disperse event because estimating the ON/OFF of each machine of management and the so-called session meeting of other states enlarges.In addition, with the corresponding occasion of InterBOX and IPv6 terminal of a plurality of different manufacturers, above-mentioned package handling part 18 and order configuration part 22, filter house 23 etc. also can be provided with a plurality of in an InterServer6.
Action to above-mentioned InterBOX3 and InterServer6 specifies with reference to the communication example below Figure 10 below.
Figure 10 be illustrated in the home network that is connected with InterBOX3 IPv6 terminal 2 and with above-mentioned InterServer6 directly or the occasion that communicates between the IPv6 server 7 that is connected through IPv6 home network 1a.
In this example, in above-mentioned InterServer6, so shown in the figure, prerequisite is to store the IPv6 address 16a at above-mentioned IP v6 terminal 2 and the IPv4 global address 16b of InterBOX in advance.Therefore, above-mentioned IP v6 terminal 2 must be in advance, such as, through above-mentioned InterBOX3 or other means IPv6 address to above-mentioned InterServer6 notice oneself.This action also can, such as, through the user own IPv6 terminal 2 is connected to above-mentioned home network 1, utilize plug-and-play feature, automatically and above-mentioned InterServer6 between establishment be connected with the protocol channel of InterBOX3 and realize.Above-mentioned InterServer6; After the IPv6 address of knowing this IPv6 terminal 2 or its part (the IPv6 address prefix of InterServer6), other ISP router is circulated a notice of (broadcasting) Route Selection of this IPv6 address is carried out through InterServer6 so that make.
In addition; Depend on the occasion of the prefix of distributing to above-mentioned InterBOX3 in the IPv6 address at above-mentioned IP v6 terminal 2; Also can the IPv6 prefix of the above-mentioned InterBOX3 of a part that constitutes this address 16a be deposited, as the address 16a that is stored in the IPv6 terminal 2 among the above-mentioned InterServer6.So in this occasion, above-mentioned InterServer6 notifies the routing information of this prefix other ISP router.
Under the state that above processing and setting (protocol channel connection) have been accomplished, proposing from above-mentioned IP v6 server 7 one sides behind the connection request at above-mentioned IP v6 terminal 2, the connection of IPv6 server 7 from then on is routed to InterServer6.InterServer6 tells the IPv4 address of above-mentioned InterBOX3 from the address 16a at above-mentioned IP v6 terminal 2, utilize above-mentioned protocol channel session establishment portion 17,11 with above-mentioned InterBOX3 between establish the communication session of protocol channel in being connected.
So, when establishing the protocol channel communication session, issue the bag at IPv6 terminal, mentioned order configuration part 2, by above-mentioned package handling part 18 to carry out package towards the IPv4 of above-mentioned InterBOX3 bag and to send.InterBOX3, when package handling part 12 was unpacked this bag, above-mentioned Route Selection handling part 13 carried out handling to the Route Selection at above-mentioned IPv6 terminal 2 according to the address that is contained in the IPv6 terminal 2 in the above-mentioned bag.So, such as, can utilize from the startup that is in outside IPv6 server 7 one sides carry out with in-home network on being connected of IPv6 terminal 2.
Such as, be in the family during monitoring camera at above-mentioned network home appliance 2, even out the time,, can and control above-mentioned camera via above-mentioned InterServer6 and InterBOX3 startup through own PDA etc. is connected with near IPv6 network.
In addition, in this example, the machine of accordinging to terminal 2 can make IPv6 terminal machine judegment part 21, order configuration part 22 and filter house 23 work that are arranged among the InterServer6.
The formation of above-mentioned machine judegment part 21, such as, can differentiate the machine and the network environment at this IPv6 terminal 2 based on the IPv6 address at above-mentioned IP v6 terminal (address itself or with the information of address).In this execution mode; Imagination above-mentioned IP v6 terminal 2 and InterServer6 make by same manufacturer or according to unified specification; In this occasion; Through to allocating the certain rule of IPv6 address setting in advance, just can be easy to differentiate this machine and network environment as long as known this address to (or generation) each IPv6 terminal 2.In this execution mode,, differentiate manufacturer and machine based on above-mentioned prefix portion and the MAC Address portion in the above-mentioned IP v6 address.
In addition, need the occasion of special order at this IPv6 terminal of control 2, above-mentioned machine order configuration part 22 can be through setting the order conversion that comprises in will the communication from above-mentioned IP v6 server 7 order used of machine for this reason.Such as, can be from generate the order of regulation with the message of Html language description.In addition, also can the order that a server 7 sends be transformed to the order that is used for a plurality of IPv6 terminal 2.
In addition, above-mentioned filter house 23 has the function that will filter through the IPv6 bag of this InterServer6 based on predetermined rule.The rule of this filtration, such as, both can set as the IPv6 terminal 2 that connects the destination each, also can set each network.In addition, its formation can be in the occasion that is judged as the machine and the network environment that are not regulation by above-mentioned machine judegment part 21 and be judged as above-mentioned filter house 23 inappropriate occasions, and above-mentioned communication session cut-out portion can cut off communication session.In addition; The occasion that can not connect even the power supply at the IPv6 terminal that connects the destination is in OFF state or the like; If can utilize the destination that is connected that another IPv6 machine of being connected with same InterBOX replaces, also can be routed to this other IPv6 terminals based on above-mentioned machine and kind of information.
In addition, Figure 11 is for have between relay 3,3 ' the IPv6 home network example via the interconnective occasion of InterServer6 simultaneously.With in each home network, IPv6 terminal A is connected respectively with IPv6 terminal B, and the field that communicates between these two IPv6 terminal A, the B is combined into example and describes.
In this case, also in above-mentioned InterServer6, IPv6 terminal A, B address or its part (IPv6 prefix) separately, with the IPv4 address of separately InterBOX3 deposit.
So, requiring when a terminal A is connected with another terminal B, at first between terminal A one side's InterBOX3A and the InterServer6 in passage connects the establishment communication session.So, based on the address among the terminal B that is contained in this bag, confirming above-mentioned InterBOX3B, the result establishes the protocol channel communication session between this InterServer6 and InterBOXB.So, in this InterBOXB,, in network, carry out Route Selection based on the IPv6 address among the terminal B that is contained in this bag.
Thus, two IPv6 terminals 2 can utilize IPv6 to communicate through above-mentioned InterServer6 each other.
In addition, want like this under situation about communicating between two IPv6 terminals 2, do not know to connect the address at the IPv6 terminal of destination sometimes.In this case, connect the user in source, visit above-mentioned InterServer6, start above-mentioned network home appliance search part 26.At this moment, for the sake of security, above-mentioned connection request understanding portion 27 carries out this user's understanding, and after judging whether to be proper connection request, permission connects the IPv6 terminal of destination and user's retrieval.So,, just can establish the tunneling traffic session based on the IPv6 address at this terminal in the occasion that can confirm desired IPv6 terminal.
According to above such formation; Because it is all irrelevant with communications carrier and ISP to relate to whole communications at IPv6 terminal 2; IPv6 terminal 2 on the home network of family and work unit and server 7 carry out through above-mentioned InterServer6, so can freely be set by the owner of above-mentioned InterServer6 and control.As a result, the problem that in the past became Route Selection in the individual recognition to the IPv6 machine among IPv6 and IPv4 mix, family of problem and fail safe all can solve, and can realize the network construction of very open and sealing.
In addition, the owner who imagines this InterServer6 here is the manufacturer as the producer at common IPv6 terminal 2.So, this manufacturer through to the adjustment of the machine of the IPv6 of the corresponding our company of InterServer6, just can produce the additional increment that utilizes the internet.
Based on Figure 12 the adjustment at above-mentioned IP v6 terminal 2 is explained below.
In other words, in above-mentioned explanation, the IPv6 address at IPv6 terminal 2 is accepted from above-mentioned InterBOX3 one side, in fact, also can consider the various methodologies beyond the method.In addition, can think,, hope the owner's (user) at understanding IPv6 terminal 2 information as the owner of manufacturer and InterServer6.And then, can think, also said about the generation method of the address at IPv6 terminal 2 just like preceding, just the fixedly IPv6 address of each network home appliance is written to the situation of RAM etc., the also situation of the IPv6 prefix of the InterBOX3 of reliable connection decision in the stage of dispatching from the factory.
So, in the present embodiment, such as, shown in figure 12, the user of IPv6 terminal 2 or InterBOX3 at first is connected with subscriber management server 30, carries out user's login.This user login, IPv6 both capable of using carries out through InterBOX3 at terminal 2, also can utilize the IPv4 of existing microcomputer etc. the corresponding machine of communicating by letter to carry out.Describe in the face of the occasion of carrying out down through IPv6 terminal 2 and InterBOX3.In addition, below, the IPv6 address at IPv6 terminal 2 is that field that the MAC Address combination by the IPv6 address prefix of distributing to above-mentioned InterBOX3 and each terminal 2 generates is combined into example and describes.
In this case, at first, the user with above-mentioned IP v6 terminal with after InterBOX3 is connected, this InterBOX3 is connected to subscriber management server 30 through the ISP/ communications carrier.This subscriber management server 30 of necessary information untill further notice that so, just can will be connected with the protocol channel between other above-mentioned InterServer6 of above-mentioned IP v6 prefix from InterBOX3.In addition, the user just can notify above-mentioned management server 30 through this InterBOX3 with being used for confirming the information at this user, InterBOX3 or IPv6 terminal 2 and relating to the essential information of the kind of information at terminal 2, the information that relates to network 1, other nuclear moneys etc.In this example, each this InterBOX3 or each user are provided ID and password respectively, above-mentioned InterBOX3 and user's information signs in to database 31 therewith explicitly.In addition, the information that must login is not limited thereto, and can think that other information also need, otherwise, in password and nuclear money information etc. when not required, just need not login these information.
In addition, the IPv6 address prefix of above-mentioned InterBOX3 both can be during fabrication or the like be allocated in advance and was deposited in this InterBOX3, also can be so be known by server one square tube when the beginning through user's login.In addition, in the latter case,, can in InterBOX3, set above-mentioned IP v6 prefix and above-mentioned ID and password with manual mode not utilizing existing personal computer etc. in the occasion of carrying out user's login on the internet through InterBOX3.So, after this user logins end, the information of necessity when also storage connects in above-mentioned InterBOX3 and IPv6 terminal 2.In this occasion, be arranged at the machine judegment part among the above-mentioned InterServer, also can differentiate based on carrying out machine by the information of user's login.
Above-mentioned this subscriber management server 30 both can be connected with above-mentioned InterServer6, also can be provided with independently separated on the internet.
On the other hand, Figure 13 illustrates that relevant protocol channel connects and the figure of the embodiment of the concrete grammar of the establishment of communication session wherein.Each symbol of S21~S26 shown in this figure is corresponding with each following step S21~S27.
At first; In above-mentioned in the illustrated example; The IPv4 address of InterBOX3 storage InterServer6, but this both can be the method that when dispatching from the factory, is recorded RAM by manufacturer in advance, also can be the method that other servers are set that when the protocol channel of reality connects, is accepted in.Can think that a kind of method is better before InterServer6 is single occasion, and a kind of method efficient is higher after InterServer6 is a plurality of occasion.
The example of this figure is a kind of situation in back, and therefore passage intermediary device 52 is set.This passage intermediary device 52 is to constitute with reference to above-mentioned subscriber information management DB31.In addition, this passage intermediary device 52 is connected with the address database 53 of the IPv4 address of storing InterServer6 and InterBOX3.So, in above-mentioned InterBOX3, preestablish the IPv4 global address of this passage intermediary device 52.In addition, in InterBOX3, establish and set in above-mentioned the ID that sets and password when essential ().
At this moment, above-mentioned InterBOX3 at first, is connected with passage intermediary device 52, sends above-mentioned ID and password (step S21).This passage intermediary device 52 in the understanding of carrying out above-mentioned InterBOX3, obtains the IPv6 address prefix (step S22) of this InterBOX3.Then, this passage intermediary device 52 is selected to establish the InterServer6 (step S23) that passage connects the destination from above-mentioned address database 53, and is given above-mentioned InterBOX3 (step S24) with the IPv4 address notification of this InterServer6.In addition, passage intermediary device 52 is given InterServer6 one side (step S25) with the IPv4 address of InterBOX3, the IPv6 prefix (part of the address at IPv6 terminal 2) that the IPv6 terminal recognition is used.So, above-mentioned InterBOX3 just can discern InterServer6, can confirm protocol channel session (step S26, S27).In addition, InterServer6 notifies other routers with the Route Selection of the IPv6 prefix of being notified.In view of the above, the Route Selection of IPv6 address that has this prefix is all by this InterServer6 Route Selection.
According to such formation,, also can establish protocol channel reliably between with one of them and be connected even have a plurality of occasions at InterServer6.In addition, in above-mentioned, be to carry out the understanding at user and terminal, but be not limited thereto by above-mentioned protocol channel intermediary device 52.Above-mentioned protocol channel intermediary device 52 also can only be notified the address of above-mentioned InterServer6 to above-mentioned InterBOX2, carries out user's understanding by above-mentioned InterServer6.In addition, at this moment, InterServer6 also can give address arbitrarily to InterBOX2 and terminal 3.
In addition, more than the execution mode of explanation nothing but an embodiment of the invention, in the scope that does not change its main thought, is certainly taked many variations.
Such as, in an above-mentioned execution mode, can establish the protocol channel connection from InterBOX3 one side and from InterServer6 one side, but can think, general starts from InterBOX3 one side in the commercial service of reality.This is because the fixedly IP service of IPv4 itself is rarely found.In other words; This is in this occasion, in case because after protocol channel (in fact IPv4 the connects itself) establishment, set just constant reservation as it is; In case and the session of IPv4 is cut off; The IPv4 of following InterBOX3 is that same situation is very rare, thus when in fact the session of IPv4 itself is cut off, can not carry out Route Selection so.
In addition, in an above-mentioned execution mode, be IPv6, be that example describes as the 2nd agreement with above-mentioned the 1st agreement, but be not limited thereto with IPv4.The 2nd agreement also can be IPv6.In addition, the 1st, the 2nd agreement can all be IPv4 also.In addition, also can be that the both is above-mentioned agreement in addition.
In an above-mentioned execution mode, above-mentioned InterBOX3 is arranged with each terminal branch, but InterBOX3 itself also can be the IPv6 terminal, also can be that InterBOX3 and any one terminal 2 or each terminal 2 utilize hardware or software integration formation.In this case, above-mentioned InterBOX3 also can be provided with a plurality of in the one family network.

Claims (31)

1. internet connected system is characterized in that comprising:
Be connected, be arranged at the relay in the 1st network that communicates with the 1st communication protocol with client computer;
Through the server of the 2nd network with this relay of the 2nd communication protocol connection,
In above-mentioned relay, be provided with: the client computer global address storage part of storing the global address in above-mentioned the 1st communication protocol of above-mentioned client computer; Store the server address storage part of the global address in the 2nd agreement of above-mentioned server; Based on the global address of the server that is stored in this storage part, with above-mentioned server between establish the protocol channel session establishment portion that protocol channel is connected; Make from above-mentioned client computer issue via the 1st network that is present in other of above-mentioned the 2nd network other client computer bag via with above-mentioned server between the protocol channel established be connected and carry out the 1st routing arrangement of Route Selection; Through with the bag in the 1st agreement with the 2nd agreement package/unpack and above-mentioned server between make the protocol channel of the 1st agreement be connected to become the 1st possible bag processing unit;
In above-mentioned server, be provided with: be connected to become the 2nd bag processing unit that maybe the bag in the 1st agreement be carried out package/unpack with the 2nd agreement in order to make protocol channel between above-mentioned server and the above-mentioned relay; The terminating machine global address administration device that global address in global address in the 1st agreement of the above-mentioned client computer that will be connected with above-mentioned relay and the 2nd agreement of above-mentioned relay is managed explicitly; Based on the global address in the 2nd agreement of above-mentioned relay, with this relay between establish the protocol channel session establishment portion that protocol channel is connected; Based on by the global address of the above-mentioned terminating machine of above-mentioned terminating machine global address administration device management, carry out the 2nd routing arrangement to the Route Selection of above-mentioned relay; Whether differentiate above-mentioned client computer or/and above-mentioned relay is the machine judegment part of the machine of regulation; Be judged as above-mentioned client computer or relay by above-mentioned machine judegment part when not being the machine of regulation, certificate to cut off the communication session cut-out portion of the transmitting-receiving that this communication session or restriction wrap.
2. internet as claimed in claim 1 connected system is characterized in that:
In above-mentioned server, be provided with the order transformation component that order that judged result based on above-mentioned machine judegment part will send to above-mentioned client computer is transformed to the order of the prescribed form that is used for controlling this client computer.
3. internet as claimed in claim 1 connected system is characterized in that:
In above-mentioned server, the client computer control part of controlling above-mentioned client computer based on the judged result of above-mentioned machine judegment part is set.
4. internet connected system is characterized in that comprising:
Be connected, be arranged at the relay in the 1st network that communicates with the 1st communication protocol with client computer;
Through the server of the 2nd network with this relay of the 2nd communication protocol connection,
In above-mentioned relay, be provided with: the client computer global address storage part of storing the global address in above-mentioned the 1st communication protocol of above-mentioned client computer; Store the server address storage part of the global address in the 2nd agreement of above-mentioned server; Based on the global address of the server that is stored in this storage part, with above-mentioned server between establish the protocol channel session establishment portion that protocol channel is connected; Make from above-mentioned client computer issue via the 1st network that is present in other of above-mentioned the 2nd network other client computer bag via with above-mentioned server between the protocol channel established be connected and carry out the 1st routing arrangement of Route Selection; Through with the bag in the 1st agreement with the 2nd agreement package/unpack and above-mentioned server between make the protocol channel of the 1st agreement be connected to become the 1st possible bag processing unit;
In above-mentioned server, be provided with: be connected to become the 2nd bag processing unit that maybe the bag in the 1st agreement be carried out package/unpack with the 2nd agreement in order to make protocol channel between above-mentioned server and the above-mentioned relay; The terminating machine global address administration device that global address in global address in the 1st agreement of the above-mentioned client computer that will be connected with above-mentioned relay and the 2nd agreement of above-mentioned relay is managed explicitly; Based on the global address in the 2nd agreement of above-mentioned relay, with this relay between establish the protocol channel session establishment portion that protocol channel is connected; Based on by the global address of the above-mentioned terminating machine of terminating machine global address administration device management, carry out the 2nd routing arrangement to the Route Selection of above-mentioned relay; Whether differentiation is the network kind judegment part of the kind of regulation with the environment of above-mentioned client computer or/and the 1st network that relay was connected; Judging the kind time-like that the non-public network environment that is connected with above-mentioned client computer or relay is not a regulation, certificate to cut off the communication session cut-out portion of the transmitting-receiving that this communication session or restriction wrap.
5. internet as claimed in claim 4 connected system is characterized in that:
Above-mentioned server, at least one or the state information of a plurality of information that have in the operate condition of obtaining above-mentioned client computer or/and relay, user mode, the positional information obtain portion.
6. internet as claimed in claim 5 connected system is characterized in that:
Above-mentioned state information obtains portion, to obtain at least one or a plurality of information in the operate condition, user mode, positional information of above-mentioned client computer with the corresponding method of the machine of above-mentioned client computer.
7. internet as claimed in claim 5 connected system is characterized in that:
Above-mentioned server, the combined information with at least one or a plurality of information in address based on above-mentioned client computer or relay, operate condition, user mode, the positional information is retrieved the search part of above-mentioned client computer or relay.
8. internet as claimed in claim 7 connected system is characterized in that:
Above-mentioned search part has the means that each above-mentioned relay guide look shown the client computer that is connected with this relay.
9. internet as claimed in claim 8 connected system is characterized in that:
In above-mentioned server, be provided with the client computer control part of the above-mentioned client computer of control,
This client computer control part makes and the corresponding client computer control program startup of this client computer through the client computer of from above-mentioned guide look shows, selecting to confirm.
10. internet connected system is characterized in that comprising:
Be connected, be arranged at the relay in the 1st network that communicates with the 1st communication protocol with client computer;
Through the server of the 2nd network with this relay of the 2nd communication protocol connection,
In above-mentioned relay, be provided with: the client computer global address storage part of storing the global address in above-mentioned the 1st communication protocol of above-mentioned client computer; Store the server address storage part of the global address in the 2nd agreement of above-mentioned server; Based on the global address of the server that is stored in this storage part, with above-mentioned server between establish the protocol channel session establishment portion that protocol channel is connected; Make from above-mentioned client computer issue via the 1st network that is present in other of above-mentioned the 2nd network other client computer bag via with above-mentioned server between the protocol channel established be connected and carry out the 1st routing arrangement of Route Selection; Through with the bag in the 1st agreement with the 2nd agreement package/unpack and above-mentioned server between make the protocol channel of the 1st agreement be connected to become the 1st possible bag processing unit; Whether differentiate above-mentioned client computer is the machine judegment part of the machine of regulation; Be judged as above-mentioned client computer by above-mentioned machine judegment part when not being the machine of regulation, certificate cutting off the communication session cut-out portion of this communication session,
In above-mentioned server, be provided with: be connected to become the 2nd bag processing unit that maybe the bag in the 1st agreement be carried out package/unpack with the 2nd agreement in order to make protocol channel between above-mentioned server and the above-mentioned relay; The terminating machine global address administration device that global address in global address in the 1st agreement of the above-mentioned client computer that will be connected with above-mentioned relay and the 2nd agreement of above-mentioned relay is managed explicitly; Based on the global address in the 2nd agreement of above-mentioned relay, with this relay between establish the protocol channel session establishment portion that protocol channel is connected; Based on by the global address of the above-mentioned terminating machine of terminating machine global address administration device management, carry out the 2nd routing arrangement to the Route Selection of above-mentioned relay.
11. a server that in the internet connected system, uses, said internet connected system has: be arranged at the relay in the 1st network that communicates with the 1st communication protocol; The server that the client computer that is connected with the 1st network is connected with the 2nd communication protocol through above-mentioned relay and internet, the said server that in the internet connected system, uses is characterised in that and comprises:
The client address management devices, the address ground of address in the 1st communication protocol of the above-mentioned client computer that will be connected with above-mentioned relay and the 2nd communication protocol of above-mentioned relay is managed;
Protocol channel session establishment portion based on the address of above-mentioned relay, establishes protocol channel and connects between above-mentioned server and relay;
The bag processing unit, for make and above-mentioned relay between protocol channel be connected to become and maybe the bag in the 1st agreement be carried out package/unpack with the 2nd agreement;
Routing arrangement is based on the address of the above-mentioned client computer of being managed in the above-mentioned management devices, will carry out Route Selection to the relay that connects above-mentioned client computer from the connection to above-mentioned client computer of above-mentioned internet;
The machine judegment part, whether differentiate above-mentioned client computer or/and above-mentioned relay is the machine of regulation; And
The order transformation component based on the judged result of above-mentioned machine judegment part, is transformed to the order that sends to above-mentioned client computer the order of the prescribed form that is used for controlling this client computer.
12. server as claimed in claim 11 is characterized in that also comprising:
Communication session cut-out portion is being judged as above-mentioned client computer or relay when not being the machine of regulation by above-mentioned machine judegment part, certificate to cut off the transmitting-receiving that this communication session or restriction are wrapped.
13. server as claimed in claim 11 is characterized in that:
Above-mentioned client computer can be communicated by letter with above-mentioned relay, and above-mentioned client computer comprises the peripheral unit that oneself can not be connected with the internet.
14. server as claimed in claim 11 is characterized in that also comprising:
Network kind judegment part, whether the environment of differentiating the 1st network that is connected with above-mentioned client computer or/and relay is the kind of stipulating.
15. server as claimed in claim 14 is characterized in that also comprising:
Communication session cut-out portion is not the kind time-like of regulation at the environment that is judged as the 1st network that is connected with above-mentioned client computer or relay, certificate to cut off the transmitting-receiving that this communication session or restriction are wrapped.
16. server as claimed in claim 11 is characterized in that also comprising:
State information obtains portion, obtains at least one or a plurality of information in the operate condition, user mode, positional information of above-mentioned client computer or/and relay.
17. server as claimed in claim 16 is characterized in that:
Above-mentioned state information obtains portion, to obtain at least one or a plurality of information in the operate condition, user mode, positional information of above-mentioned client computer with the corresponding method of the machine of above-mentioned client computer.
18. server as claimed in claim 16 is characterized in that also comprising:
Control the client computer control part of above-mentioned client computer,
This client computer control part has the means that show at least one information in the operate condition, user mode, positional information of above-mentioned client computer to the user.
19. server as claimed in claim 16 is characterized in that also comprising:
Search part based on the information after at least one or a plurality of information in the address of above-mentioned client computer or relay, operate condition, user mode, the positional information are made up, is retrieved above-mentioned client computer or relay.
20. server as claimed in claim 19 is characterized in that:
Above-mentioned search part has:
The guide look display unit is had a guide look of demonstration with the client computer that retrieves with its operate condition.
21. server as claimed in claim 20 is characterized in that:
Above-mentioned guide look display unit is that the client computer that each above-mentioned relay will be connected with this relay is had a guide look of device shown.
22. server as claimed in claim 20 is characterized in that also comprising:
Control the client computer control part of above-mentioned client computer,
This client computer control part makes and the corresponding client computer control program startup of this client computer through the client computer of from above-mentioned guide look shows, selecting to confirm.
23. server as claimed in claim 11 is characterized in that:
Above-mentioned relay is arranged in the above-mentioned client computer.
24. server as claimed in claim 11 is characterized in that:
Above-mentioned the 1st agreement and the 2nd agreement are different protocol.
25. server as claimed in claim 11 is characterized in that:
Above-mentioned the 1st agreement and the 2nd agreement are identical agreements.
26. server as claimed in claim 11 is characterized in that also comprising:
The client address search part is carried out the retrieval of the global address in the 1st agreement of above-mentioned client computer based on the connection request to above-mentioned client computer.
27. server as claimed in claim 26 is characterized in that also comprising:
Connection request person understanding portion, understanding is carried out to the people of the connection request of above-mentioned client computer and is permitted or deny the connection to above-mentioned client computer.
28. server as claimed in claim 11 is characterized in that also comprising:
Protocol channel link information management devices, the protocol channel link information of management between above-mentioned relay and server,
This protocol channel link information management devices; Notify above-mentioned relay with the global address in the 2nd agreement of above-mentioned server, and obtain global address or its part in the 1st agreement of global address and above-mentioned client computer in the 2nd agreement of above-mentioned relay.
29. server as claimed in claim 28 is characterized in that:
Above-mentioned protocol channel link information management devices carries out the understanding of above-mentioned relay, and carries out above-mentioned notice when being sure in this result.
30. server as claimed in claim 11 is characterized in that also comprising:
The filtration treatment device, with predetermined rule to being dealt into/filtering from the communication of above-mentioned client computer.
31. server as claimed in claim 30 is characterized in that also comprising:
The filtering rule configuration part is provided for editing the interface of afore mentioned rules rule.
CN2003801079542A 2002-11-29 2003-12-01 Internet connection system and server for routing connection to client device Expired - Lifetime CN1732654B (en)

Applications Claiming Priority (7)

Application Number Priority Date Filing Date Title
JP348543/2002 2002-11-29
JP2002348543 2002-11-29
JP2003161246A JP3649438B2 (en) 2002-11-29 2003-06-05 Internet connection system
JP161246/2003 2003-06-05
JP2003345390A JP3649440B2 (en) 2002-11-29 2003-10-03 Server for routing connections to client devices
JP345390/2003 2003-10-03
PCT/JP2003/015342 WO2004051948A1 (en) 2002-11-29 2003-12-01 Internet connection system and server for routing connection to client device

Publications (2)

Publication Number Publication Date
CN1732654A CN1732654A (en) 2006-02-08
CN1732654B true CN1732654B (en) 2012-09-26

Family

ID=35964287

Family Applications (2)

Application Number Title Priority Date Filing Date
CN2003801079487A Expired - Lifetime CN1732653B (en) 2002-11-29 2003-11-28 server for routing connection to client apparatus
CN2003801079542A Expired - Lifetime CN1732654B (en) 2002-11-29 2003-12-01 Internet connection system and server for routing connection to client device

Family Applications Before (1)

Application Number Title Priority Date Filing Date
CN2003801079487A Expired - Lifetime CN1732653B (en) 2002-11-29 2003-11-28 server for routing connection to client apparatus

Country Status (4)

Country Link
JP (6) JP3649438B2 (en)
CN (2) CN1732653B (en)
ES (1) ES2359811T3 (en)
HK (1) HK1173872A1 (en)

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006106974A (en) * 2004-10-01 2006-04-20 Toshiba Corp Network household electric appliance control system
JP2006352710A (en) * 2005-06-17 2006-12-28 Ntt Communications Kk Packet repeating apparatus and program
JP4052522B2 (en) 2006-04-12 2008-02-27 松下電器産業株式会社 Network device and network device management method
KR100791298B1 (en) 2006-05-19 2008-01-04 삼성전자주식회사 Apparatus and method for controlling device of home network
EP2031834A4 (en) 2006-05-23 2010-01-20 Freebit Co Ltd Communication module and application program provided with same
JP2008252574A (en) * 2007-03-30 2008-10-16 Kddi Corp Communication control system, personal digital assistant, communication controller, communication control method, and computer program
WO2008143315A1 (en) * 2007-05-22 2008-11-27 Nec San-Ei Instruments, Ltd. Data recording/reproducing device
US8699482B2 (en) 2008-04-02 2014-04-15 Nec Corporation Communication system and communication method
WO2012053135A1 (en) 2010-10-20 2012-04-26 日本電気株式会社 Communication control apparatus, system, method, and non-transitory computer readable medium storing program thereon
CN102692898A (en) * 2012-05-08 2012-09-26 夏洋 Method, device, and system for controlling electrical appliance

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001274845A (en) * 2000-03-27 2001-10-05 Hitachi Ltd Communicating method accompanying protocol conversion and communication controller
JP2001285366A (en) * 2000-03-29 2001-10-12 Matsushita Electric Ind Co Ltd IPv4 TO IPv6 ADDRESSES REPLACING METHOD AND IPv4 TO IPv6 COMMUNICATION METHOD
CN1376351A (en) * 1999-09-24 2002-10-23 英国电讯有限公司 Packet network interfacing
CN1380773A (en) * 2002-04-25 2002-11-20 复旦大学 Enhanced NAT-PT protocol scheme

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1376351A (en) * 1999-09-24 2002-10-23 英国电讯有限公司 Packet network interfacing
JP2001274845A (en) * 2000-03-27 2001-10-05 Hitachi Ltd Communicating method accompanying protocol conversion and communication controller
JP2001285366A (en) * 2000-03-29 2001-10-12 Matsushita Electric Ind Co Ltd IPv4 TO IPv6 ADDRESSES REPLACING METHOD AND IPv4 TO IPv6 COMMUNICATION METHOD
CN1380773A (en) * 2002-04-25 2002-11-20 复旦大学 Enhanced NAT-PT protocol scheme

Also Published As

Publication number Publication date
JP2004229265A (en) 2004-08-12
CN1732653A (en) 2006-02-08
JP2004194312A (en) 2004-07-08
JP2004282788A (en) 2004-10-07
CN1732654A (en) 2006-02-08
JP2004194291A (en) 2004-07-08
JP3688282B2 (en) 2005-08-24
JP2004254346A (en) 2004-09-09
ES2359811T3 (en) 2011-05-27
HK1173872A1 (en) 2013-05-24
JP3779971B2 (en) 2006-05-31
JP3649438B2 (en) 2005-05-18
JP3649440B2 (en) 2005-05-18
CN1732653B (en) 2013-03-06
JP2004194313A (en) 2004-07-08

Similar Documents

Publication Publication Date Title
CN102611596B (en) Networked appliance
CN1957566B (en) Server for routing connection to client device
US8561147B2 (en) Method and apparatus for controlling of remote access to a local network
JP4829554B2 (en) Firewall that protects a group of devices, device that participates in the system, and method for updating firewall rules in the system
WO2007043381A1 (en) Network communication device, network communication method, and address management device
CN1732654B (en) Internet connection system and server for routing connection to client device
JPH10136006A (en) Metropolitan area network, network head end and method for making subscriber terminal enter network and device therefor
CN101212375A (en) Method and system for controlling network access via agent
CN101599834A (en) A kind of identification and deployment and a kind of management equipment
Cisco MPLS VPN ID
JP2005151136A (en) Network information providing system for virtual private network, and network information server
JP2016046625A (en) Communication relay device, information processing method, and program

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
REG Reference to a national code

Ref country code: HK

Ref legal event code: DE

Ref document number: 1086963

Country of ref document: HK

C14 Grant of patent or utility model
GR01 Patent grant
REG Reference to a national code

Ref country code: HK

Ref legal event code: GR

Ref document number: 1086963

Country of ref document: HK

CX01 Expiry of patent term

Granted publication date: 20120926

CX01 Expiry of patent term