WO2021135493A1 - Method and apparatus for accessing home gateway, system processor and storage medium - Google Patents

Method and apparatus for accessing home gateway, system processor and storage medium Download PDF

Info

Publication number
WO2021135493A1
WO2021135493A1 PCT/CN2020/120451 CN2020120451W WO2021135493A1 WO 2021135493 A1 WO2021135493 A1 WO 2021135493A1 CN 2020120451 W CN2020120451 W CN 2020120451W WO 2021135493 A1 WO2021135493 A1 WO 2021135493A1
Authority
WO
WIPO (PCT)
Prior art keywords
address
home gateway
destination
access
mac address
Prior art date
Application number
PCT/CN2020/120451
Other languages
French (fr)
Chinese (zh)
Inventor
魏志峰
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2021135493A1 publication Critical patent/WO2021135493A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/66Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/54Organization of routing tables
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5007Internet protocol [IP] addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources

Definitions

  • This application relates to the field of communications, and specifically to a method and device for accessing a home gateway.
  • a home gateway is a network device located inside a modern home. Its function is to enable home users to connect to the Internet, so that multiple smart devices located in the home can obtain Internet services, or enable these smart devices to communicate with each other. To put it simply, the home gateway is a bridge that connects a variety of smart devices within the home, as well as from the home to the external network. From a technical point of view, the home gateway implements bridging/routing, protocol conversion, address management and conversion inside the home and from inside to outside, assumes the role of firewall, and provides possible voice/video services.
  • the home gateway works in bridge mode, and the user connects The incoming user equipment obtains the public network address. At this time, it is a different network segment address from the LAN (local area network) side private network address of the home gateway.
  • the LAN side device accesses the private network address (gateway address) of the home gateway.
  • the public network address of the user equipment does not belong to the same network segment and cannot directly communicate with each other.
  • the existing access is through the IP address acquisition method of the network card of the user's access device is changed from the automatic acquisition method to the static configuration method.
  • the configured IP address is the address of the same network segment as the private network address of the home gateway.
  • the embodiments of the present application provide a home gateway access method and device to at least solve the problem that the home gateway in the related art works in the bridge mode, and the user access device obtains the public network address, which is located at the private network address of the home gateway. In different network segments, users cannot access the home gateway.
  • an access response method is provided, which is applied to a home gateway working in a bridge mode, and includes: receiving an access message sent by a user equipment, the access message includes a first source IP address, and a first source IP address. A destination IP address and a first destination MAC address; if the first destination IP address is the home gateway IP address, the first destination MAC address is modified to the MAC address corresponding to the home gateway.
  • a home gateway working in bridge mode including a receiving module for receiving an access message sent by a user equipment.
  • the access message includes a first source IP address and a first destination. IP address and a first destination MAC address; the home network also includes a method for modifying the destination MAC address to the MAC address corresponding to the home gateway when the first destination IP address is the home gateway IP address.
  • the address modification module of, and a response module used to construct a response message and send the response message to the user equipment.
  • a home gateway access method for accessing a home gateway working in a bridge mode.
  • the method includes: sending an access message to the home gateway, wherein the access The message includes a first source IP address, a first destination IP address, and a first destination MAC address; in the case that the first destination IP address is the home gateway IP address, the receiving home gateway sends the destination MAC address A response message modified to the MAC address corresponding to the home gateway; access to the home gateway according to the response message.
  • a user equipment for accessing a home gateway working in a bridge mode
  • the user equipment includes: a data sending module for sending access messages to the home gateway, Wherein, the access message includes a first source IP address, a first source MAC address, a first destination IP address, and a first destination MAC address; the response receiving module is used to specify that the first destination IP address is the IP address of the home gateway In the case of an address, a response message in which the home gateway modifies the destination MAC address to the MAC address corresponding to the home gateway is received; the access module is configured to access the home gateway according to the response message.
  • a home gateway access system including a home gateway working in a bridge mode and a user equipment, wherein the user equipment sends an access message to the home gateway, wherein the access message Includes the first source IP address, the first source MAC address, the first destination IP address and the first destination MAC address; if the first destination IP address is the home gateway IP address, the home gateway will set the first destination The MAC address is modified to the MAC address corresponding to the home gateway; the home gateway constructs a response message, and sends the response message to the user equipment; the user equipment accesses the home gateway according to the response message.
  • a storage medium including a stored program, wherein the program executes any of the above-mentioned methods when the program runs.
  • a processor is also provided, the processor is configured to run a program, wherein the method executes any one of the above methods when the program is running.
  • Fig. 1 is a flowchart of a home gateway access method according to an embodiment of the present application
  • Fig. 2 is a flowchart of a home gateway access method according to the first embodiment of the present application
  • FIG. 3 is a configuration diagram of a home gateway according to a home gateway access method according to the first embodiment of the present application
  • Fig. 4 is a flowchart of a home gateway access method according to the first embodiment of the present application.
  • FIG. 5 is a flowchart of the home gateway access method according to the first embodiment of the present application, taking TCP access as an example;
  • Fig. 6 is a configuration diagram of a home gateway according to a home gateway access method according to the second embodiment of the present application.
  • Fig. 7 is a flowchart of a home gateway access method according to the second embodiment of the present application.
  • FIG. 8 is a flowchart of the home gateway access method according to the second embodiment of the present application, taking TCP access as an example
  • Fig. 9 is a schematic structural diagram of a home gateway according to an embodiment of the present application.
  • Fig. 10 is a schematic structural diagram of a user equipment according to an embodiment of the present application.
  • an access method running on the above-mentioned home gateway is provided as shown in FIG. 1, including the user equipment sending an access message to the home gateway.
  • the access message includes a first source IP address, a first source MAC address, and a first source MAC address.
  • the home gateway modifies the destination MAC address to the MAC address corresponding to the home gateway; the home gateway constructs a response message, and sends the response message to all Mentioned user equipment.
  • FIG. 1 is a flowchart of an access process according to an embodiment of the present application. As shown in FIG. 1, the process includes the following steps.
  • the user equipment sends an access message to the home gateway, where the access message includes a first source IP address, a first destination IP address, and a first destination MAC address.
  • the user equipment obtains the public network address (for example: 10.20.30.x), and its gateway is the upper device of the home gateway, which is not in the same network segment as the home gateway address.
  • the home gateway user device initiates a pairing For access to the home gateway IP address (for example: 192.168.1.1), the message will be directly forwarded to the external network and cannot be sent to the home gateway for processing.
  • the home gateway driver module completes the initial configuration shown in Figure 3 when it is powered on.
  • the driver module generates internal rules and sends the access message with the destination IP address to the home gateway address to the protocol stack, otherwise the driver will directly forward it according to the chip hardware.
  • routing module construct a routing rule from the source IP address to the user side according to the content of the message analyzed by the packet interception module, and configure the routing to generate routing entries.
  • the special processing before forwarding by the home gateway is added.
  • the message sent by the home gateway user equipment reaches the home gateway and first receives the packet through the driver module.
  • the home gateway modifies the destination MAC address to the MAC address corresponding to the home gateway; in some embodiments, the driver module finds that the packet is received
  • the first destination IP of the access message is the IP address of the home gateway (for example: 192.168.1.1), it is not directly forwarded by hardware, but is sent to the protocol stack for processing.
  • the packet interception module of the home gateway protocol stack parses the access message, determines if the destination address is the home gateway address, and sends it to the address conversion module.
  • Address conversion modifies the first destination MAC address of the access message to the MAC address corresponding to the home gateway, and records the first source MAC address.
  • the message is sent from the layer 2 protocol stack to the home gateway itself for processing, and enters the layer 3 protocol stack for processing .
  • the packet interception module construct a routing rule from the first source IP address to the user-side device, configure the route to generate a routing entry, for example, when the first source IP address is 192.168.1.x, configure a route 192.168.1.0/24 points to the route of br0.
  • the method also includes the following steps.
  • the home gateway constructs a response message and sends the response message to the user equipment; in some embodiments, as shown in FIG. 4, this step includes that the home gateway is configured in the three-layer protocol stack according to the first destination IP address. Send it to the corresponding service module for processing. The home gateway processes this message, constructs a response message and returns it.
  • the home gateway performs route processing after finding this route, and the response message is forwarded to the LAN-side user equipment.
  • the address conversion module modifies the second source MAC address of the response message to the first destination MAC address in the original access message sent by the user equipment, that is, the source MAC address recorded in step S201.
  • the user equipment on the LAN side After receiving the response message, the user equipment on the LAN side causes the access to continue, initiates subsequent interactive messages, and realizes the access of the user equipment on the LAN side to the home gateway.
  • the processing flow of the TCP message interaction message of the user equipment accessing the home gateway of this application First, the user equipment performs the TCP handshake access message (SYN message) for accessing the home gateway. ), the driver hardware interrupts the receipt of this message, puts this message on the protocol stack, the protocol stack analyzes the content of the message, and judges whether the destination IP address carried in the TCP message is the home gateway address, if it is the MAC address of the home gateway , Modify the destination MAC of the access message to the MAC address of the home gateway.
  • SYN message TCP handshake access message
  • the protocol stack data packet processing function determines that the destination MAC address of the message is the home gateway's own MAC address, enters the IP layer for processing, and the home gateway generates a response message (SYN ACK message) according to business access.
  • the message is processed by the routing module, the routing entry is found, and the message is sent to the user access device on the LAN side.
  • the user equipment continues to perform the third packet (ACK packet) of the TCP handshake to access the home gateway, and also modifies the destination MAC through the home gateway to complete the TCP handshake and establish a connection.
  • ACK packet third packet of the TCP handshake
  • the subsequent interactive messages such as the processing of the TCP GET message and the data message perform the same actions as the above process, which completes the entire access process of the user equipment to the home gateway.
  • FIG. 7 is a flow chart of the access process according to an embodiment of the present application. As shown in FIG. 7, the flow is Including the following steps.
  • the user equipment sends an access message to the home gateway, where the youth access message includes a first source IP address, a first source MAC address, a first destination IP address, and a first destination MAC address.
  • the user equipment when the home gateway is in the bridge mode, the user equipment initiates access to the home gateway address, and the message is directly forwarded to the external network and cannot be sent to the home gateway for processing.
  • the home gateway completes the configuration shown in Figure 6 when it is powered on.
  • the driver module generates internal rules and sends the access message with the destination IP address to the home gateway address to the protocol stack, otherwise the driver will directly forward it according to the chip hardware.
  • the interception processing module generates access message matching conditions and transformation content, transforms the first destination MAC and first IP address of the access message, and returns the response The packets on the LAN side undergo a destination address conversion.
  • the access message sent by the home gateway user equipment includes the source IP address, the source MAC address, the destination IP address and the destination MAC address, and the packet is first received by the driver module when it reaches the home gateway.
  • the first source IP carried in the access message sent by the user equipment is: 10.46.xx, which is the public IP address obtained by the user, to access 192.168.1.1, which is the first address in the access message Destination IP address.
  • the protocol stack parses the access message, determines if the destination address is the home gateway address, records the first source MAC address of the access message, and modifies the first destination MAC address of the access message to the MAC address corresponding to the home gateway At the same time, the first source IP address is transformed into the IP address of the private network segment of the home gateway, and the first source IP of this access request is transformed into the IP address of the private network segment of the home gateway, such as: 192.168.1.3, so It becomes: 192.168.1.3 access 192.168.1.1.
  • the message is referred to the home gateway for processing in the second layer protocol stack, and enters the third layer protocol stack for processing.
  • the first destination IP address is sent to the local processing flow, and the local service module constructs a response message and returns it.
  • the home gateway constructs a response message and sends the response message to the user equipment; the home gateway transforms the response message in the address change module, and combines the transformation rules to transform the second source MAC address in the response message It is converted into the first destination MAC address of the access message sent by the user equipment, and the destination IP address in the response message is converted into the first source IP address carried in the access message sent by the user equipment, such as 10.46.xx, this
  • the IP address is the address of the LAN-side device, and the LAN-side device can receive and process this message.
  • the user equipment on the LAN side can continue to initiate subsequent interaction messages to realize the access of the user equipment on the LAN side to the home gateway.
  • the user equipment accesses the home gateway TCP message interaction message processing: first, the user equipment performs the TCP handshake access message (SYN message) for accessing the home gateway
  • the driver hardware interrupts the received message, extracts the message and sends it to the protocol stack.
  • the protocol stack analyzes the content of the message and judges that the destination IP address of the TCP message is the address of the home gateway.
  • the destination MAC of the message is modified to the MAC address of the home gateway, and the source IP address of the message is converted to the IP address of the private network segment of the home gateway.
  • the destination IP address of the response message is changed to the source IP address used by the LAN side device when it comes up according to the rules, and the message is sent to the LAN side user device.
  • the user equipment continues with the third packet (ACK packet) of the TCP handshake to access the home gateway, and also completes the TCP handshake and establishes the connection after the home gateway modifies the destination MAC and special firewall rules to modify the IP address.
  • ACK packet the third packet of the TCP handshake
  • the subsequent interactive messages such as the processing of the TCP GET message and the data message perform the same actions as the above process, which completes the entire access process of the user equipment to the home gateway.
  • the problem that the home gateway works in bridge mode the user accesses the device to obtain the public network address, and the private network address of the home gateway is on a different network segment, and the user cannot access the home gateway. Access to the home gateway from the user equipment on the LAN side.
  • the method according to the above embodiment can be implemented by means of software plus the necessary general hardware platform, of course, it can also be implemented by hardware, but in many cases the former is Better implementation.
  • the technical solution of this application essentially or the part that contributes to the existing technology can be embodied in the form of a software product, and the computer software product is stored in a storage medium (such as ROM/RAM, magnetic disk, The optical disc) includes several instructions to enable a terminal device (which can be a mobile phone, a computer, a server, or a network device, etc.) to execute the method described in each embodiment of the present application.
  • a home gateway is also provided, and the device is used to implement the above-mentioned embodiments and preferred implementation manners, and those that have been described will not be repeated.
  • the term "module” can implement a combination of software and/or hardware with predetermined functions.
  • the devices described in the following embodiments are preferably implemented by software, implementation by hardware or a combination of software and hardware is also possible and conceived.
  • Fig. 9 is a schematic structural diagram of a home gateway according to an embodiment of the present application. As shown in Fig. 9, the device includes the following modules.
  • the receiving module is configured to receive an access message sent by the user equipment, and the access message includes a source IP address, a source MAC address, a destination IP address, and a destination MAC address.
  • the address modification module is used to modify the destination MAC address to the MAC address corresponding to the home gateway when the destination IP address is the home gateway IP address.
  • the response module is used to construct a response message and send the response message to the user equipment.
  • the device in addition to all the modules shown in FIG. 9, the device also includes a route analysis module for constructing a route from the first source IP address to the user according to the content of the access message. Side routing rules.
  • the response module in the home gateway also includes an address recovery module, which is used to modify the second source MAC address to the first destination MAC address; and a forwarding module, which is used to transfer the response according to the routing rule The message is sent to the user equipment.
  • the address conversion module in the device further includes an IP address conversion module, configured to convert the first source IP address into an IP address of the private network segment of the home gateway.
  • the device also includes an address recovery module, which is used to modify the second source MAC address carried in the response message to the first destination MAC address in the original access message, and the response message The second destination IP address carried in the text is modified to the first source IP address carried in the original access message.
  • an address recovery module which is used to modify the second source MAC address carried in the response message to the first destination MAC address in the original access message, and the response message The second destination IP address carried in the text is modified to the first source IP address carried in the original access message.
  • It also includes a forwarding module, configured to send the response message to the user equipment according to the modified second destination IP address in the response message.
  • a user equipment is also provided, and the user equipment is used to access a home gateway working in a bridge mode to implement the above-mentioned embodiments and preferred implementations, and those that have been explained will not be repeated.
  • the term "module" can implement a combination of software and/or hardware with predetermined functions. Although the devices described in the following embodiments are preferably implemented by software, implementation by hardware or a combination of software and hardware is also possible and conceived.
  • FIG. 10 is a structural block diagram of a home gateway according to an embodiment of the present application.
  • the device includes: a data sending module for sending an access message to the home gateway, wherein the access message includes the first A source IP address, a first source MAC address, a first destination IP address and a first destination MAC address.
  • the response receiving module is configured to receive a response message in which the home gateway modifies the destination MAC address to the MAC address corresponding to the home gateway when the destination IP address is the IP address of the home gateway.
  • the access module is used to access the home gateway according to the response message.
  • the embodiment of the present application also provides a storage medium, the storage medium includes a stored program, wherein the execution of the method described in the above embodiment when the above program runs includes: receiving an access message sent by a user equipment, the access The message includes a source IP address, a source MAC address, a destination IP address, and a destination MAC address; when the destination IP address is the home gateway IP address, the destination MAC address is modified to the MAC corresponding to the home gateway Address; construct a response message, and send the response message to the user equipment.
  • the above-mentioned storage medium may be configured to store program codes for executing the following steps.
  • a routing rule from the destination IP address to the user side is constructed, and the source MAC address is modified to the destination MAC address; according to the routing rule, the response is reported
  • the document is sent to the user equipment.
  • the storage medium is further configured to store program code for performing the following steps: before constructing the response message, the source IP address is converted into the IP address of the private network segment of the home gateway.
  • Sending the response message to the user equipment also includes modifying the source MAC address to the destination MAC address; modifying the destination IP address to the source IP address; according to the source IP address, The response message is sent to the user equipment.
  • the above-mentioned storage medium may include, but is not limited to: U disk, Read-Only Memory (Read-Only Memory, ROM for short), Random Access Memory (Random Access Memory, RAM for short) ), mobile hard drives, magnetic disks or optical discs and other media that can store program codes.
  • U disk Read-Only Memory
  • ROM Read-Only Memory
  • RAM Random Access Memory
  • mobile hard drives magnetic disks or optical discs and other media that can store program codes.
  • the embodiment of the present application also provides a processor, which is used to run a program, wherein the program executes the steps in any one of the above-mentioned methods when the program is running.
  • the above procedure is used to execute the following steps.
  • the access message includes a source IP address, a source MAC address, a destination IP address, and a destination MAC address; when the destination IP address is the home gateway IP address, the The destination MAC address is modified to the MAC address corresponding to the home gateway; a response message is constructed, and the response message is sent to the user equipment.
  • the home gateway intercepts such a message and determines whether the destination IP address of the message is a home For the private network address of the gateway, the destination MAC address of the message is modified to the MAC address of the home gateway, so that the protocol stack of the home gateway processes this kind of message at the third layer and constructs a response message. Dynamically configure routing rules on the home gateway according to the content of the user equipment to access the message or change the destination MAC and source IP address at the same time when using data packet conversion.
  • the constructed message is routed according to the routing entry or the destination IP address changes to make the message arrive
  • the LAN-side device can complete the TCP three-way handshake and GET data and other business access messages in some implementations, so as to solve the problem that the home gateway works in the bridge mode in the related technology, and the user access device obtains
  • the problem is that the public network address is in a different network segment from the private network address of the home gateway, and the user cannot access the home gateway, so that the LAN side user equipment can access the home gateway.
  • modules or steps of this application can be implemented by a general computing device, and they can be concentrated on a single computing device or distributed in a network composed of multiple computing devices.
  • they can be implemented with program codes executable by a computing device, so that they can be stored in a storage device for execution by the computing device, and in some cases, they can be different from here.
  • the steps shown or described are executed in the order of, or they are respectively fabricated into individual integrated circuit modules, or multiple modules or steps of them are fabricated into a single integrated circuit module to achieve. In this way, this application is not limited to any specific combination of hardware and software.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present application provides a method and an apparatus for accessing a home gateway operating in a bridge mode. The method for accessing a home gateway comprises: receiving an access message sent by user equipment, the access message comprising a source IP address, a destination IP address and a destination MAC address; when the destination IP address is a home gateway IP address, modifying the destination MAC address to a MAC address corresponding to the home gateway; and constructing a response message, and sending the response message to the user equipment.

Description

一种家庭网关访问方法、装置、系统处理器及存储介质Home gateway access method, device, system processor and storage medium
相关申请的交叉引用Cross-references to related applications
本申请要求享有2019年12月31日提交的名称为“一种家庭网关访问方法、装置、系统处理器及存储介质”的中国专利申请CN201911425858.1的优先权,其全部内容通过引用并入本文中。This application claims the priority of the Chinese patent application CN201911425858.1 entitled "A method, device, system processor and storage medium for home gateway access" filed on December 31, 2019, the entire content of which is incorporated herein by reference in.
技术领域Technical field
本申请涉及通信领域,具体而言,涉及一种家庭网关访问方法及装置。This application relates to the field of communications, and specifically to a method and device for accessing a home gateway.
背景技术Background technique
家庭网关是位于现代家庭内部的一个网络设备,它的作用是使家庭用户连接到互联网,使位于家庭中的多种智能设备都能得到互联网服务,或者使这些智能设备相互之间实现通信。简单的说,家庭网关是使家庭内部多种智能设备之间实现联网,以及从家庭内部到外部网络实现互联的一座桥梁。从技术角度说,家庭网关在家庭内部以及从内部到外部实现桥接/路由、协议转换、地址管理和转换,承担防火墙的职责,并提供可能的语音/视频等业务。A home gateway is a network device located inside a modern home. Its function is to enable home users to connect to the Internet, so that multiple smart devices located in the home can obtain Internet services, or enable these smart devices to communicate with each other. To put it simply, the home gateway is a bridge that connects a variety of smart devices within the home, as well as from the home to the external network. From a technical point of view, the home gateway implements bridging/routing, protocol conversion, address management and conversion inside the home and from inside to outside, assumes the role of firewall, and provides possible voice/video services.
在家庭网关使用过程中,有时需要登陆家庭网关查看配置,运维人员在做产品维护和故障时也需要登陆家庭网关查看,做一些诊断操作定位问题,而家庭网关工作在桥模式下,用户接入的用户设备获取的是公网地址,这时就和家庭网关的LAN(局域网)侧私网地址为不同的网段地址,LAN侧设备访问家庭网关的私网地址(网关地址),由于和用户设备的公网地址不属于同一网段不能直接互通。In the process of using the home gateway, it is sometimes necessary to log in to the home gateway to check the configuration. The operation and maintenance personnel also need to log in to the home gateway to check when doing product maintenance and faults, and do some diagnostic operations to locate the problem. The home gateway works in bridge mode, and the user connects The incoming user equipment obtains the public network address. At this time, it is a different network segment address from the LAN (local area network) side private network address of the home gateway. The LAN side device accesses the private network address (gateway address) of the home gateway. The public network address of the user equipment does not belong to the same network segment and cannot directly communicate with each other.
现有的访问是通过用户接入设备的网卡的IP地址获取方式由自动获取方式修改为静态配置方式,配置的IP地址为家庭网关私网地址的同网段地址,这时访问公网不能完成,也就是说访问家庭网关私网业务和公网不能自动完成,不便于使用。The existing access is through the IP address acquisition method of the network card of the user's access device is changed from the automatic acquisition method to the static configuration method. The configured IP address is the address of the same network segment as the private network address of the home gateway. At this time, access to the public network cannot be completed. , That is to say, access to the private network service and public network of the home gateway cannot be completed automatically, which is not convenient to use.
发明内容Summary of the invention
本申请实施例提供了一种家庭网关访问方法及装置,以至少解决相关技术中家庭网关工作在桥模式下,用户接入设备获取的是公网地址,它和家庭网关的私网地址处在不同网段,用户无法对家庭网关进行访问的问题。The embodiments of the present application provide a home gateway access method and device to at least solve the problem that the home gateway in the related art works in the bridge mode, and the user access device obtains the public network address, which is located at the private network address of the home gateway. In different network segments, users cannot access the home gateway.
根据本申请的一个实施例,提供了一种访问应答方法,应用于工作在桥模式下的家庭 网关,包括:接收用户设备发送的访问报文,访问报文中包括第一源IP地址,第一目的IP地址和第一目的MAC地址;在第一目的IP地址为家庭网关IP地址的情况下,将第一目的MAC地址修改为所述家庭网关对应的MAC地址。According to an embodiment of the present application, an access response method is provided, which is applied to a home gateway working in a bridge mode, and includes: receiving an access message sent by a user equipment, the access message includes a first source IP address, and a first source IP address. A destination IP address and a first destination MAC address; if the first destination IP address is the home gateway IP address, the first destination MAC address is modified to the MAC address corresponding to the home gateway.
根据本申请的另一个实施例,提供了一种工作在桥模式下的家庭网关包括用于接收用户设备发送的访问报文的接收模块,访问报文中包括第一源IP地址,第一目的IP地址和第一目的MAC地址;家庭网还包括在所述第一目的IP地址为所述家庭网关IP地址的情况下,用于将所述目的MAC地址修改为所述家庭网关对应的MAC地址的地址修改模块,和用于构建应答报文,将所述应答报文发送至所述用户设备的应答模块。According to another embodiment of the present application, there is provided a home gateway working in bridge mode including a receiving module for receiving an access message sent by a user equipment. The access message includes a first source IP address and a first destination. IP address and a first destination MAC address; the home network also includes a method for modifying the destination MAC address to the MAC address corresponding to the home gateway when the first destination IP address is the home gateway IP address The address modification module of, and a response module used to construct a response message and send the response message to the user equipment.
根据本申请的另一个实施例,还提供了一种家庭网关访问方法,用于访问工作在桥模式下的家庭网关,所述方法包括:将访问报文发送至家庭网关,其中,所述访问报文中包括第一源IP地址,第一目的IP地址和第一目的MAC地址;在所述第一目的IP地址为所述家庭网关IP地址的情况下,接收家庭网关将所述目的MAC地址修改为所述家庭网关对应的MAC地址后的应答报文;根据所述应答报文,对所述家庭网关进行访问。According to another embodiment of the present application, there is also provided a home gateway access method for accessing a home gateway working in a bridge mode. The method includes: sending an access message to the home gateway, wherein the access The message includes a first source IP address, a first destination IP address, and a first destination MAC address; in the case that the first destination IP address is the home gateway IP address, the receiving home gateway sends the destination MAC address A response message modified to the MAC address corresponding to the home gateway; access to the home gateway according to the response message.
根据本申请的另一个实施例,还提供了一种用户设备,用于访问工作在桥模式下的家庭网关,所述用户设备包括:数据发送模块,用于将访问报文发送至家庭网关,其中,所述访问报文中包括第一源IP地址,第一源MAC地址,第一目的IP地址和第一目的MAC地址;应答接收模块,用于在第一目的IP地址为家庭网关的IP地址的情况下,接收家庭网关将所述目的MAC地址修改为所述家庭网关对应的MAC地址后的应答报文;访问模块,用于根据所述应答报文,对所述家庭网关进行访问。According to another embodiment of the present application, there is also provided a user equipment for accessing a home gateway working in a bridge mode, and the user equipment includes: a data sending module for sending access messages to the home gateway, Wherein, the access message includes a first source IP address, a first source MAC address, a first destination IP address, and a first destination MAC address; the response receiving module is used to specify that the first destination IP address is the IP address of the home gateway In the case of an address, a response message in which the home gateway modifies the destination MAC address to the MAC address corresponding to the home gateway is received; the access module is configured to access the home gateway according to the response message.
根据本申请的另一个实施例,还提供了一种家庭网关访问系统,包括工作在桥模式下的家庭网关和用户设备,其中,用户设备向所述家庭网关发送访问报文,其中访问报文中包括第一源IP地址,第一源MAC地址,第一目的IP地址和第一目的MAC地址;在第一目的IP地址为所述家庭网关IP地址的情况下,家庭网关将将第一目的MAC地址修改为家庭网关对应的MAC地址;家庭网关构建应答报文,将所述应答报文发送至所述用户设备;用户设备根据所述应答报文对所述家庭网关进行访问。According to another embodiment of the present application, there is also provided a home gateway access system, including a home gateway working in a bridge mode and a user equipment, wherein the user equipment sends an access message to the home gateway, wherein the access message Includes the first source IP address, the first source MAC address, the first destination IP address and the first destination MAC address; if the first destination IP address is the home gateway IP address, the home gateway will set the first destination The MAC address is modified to the MAC address corresponding to the home gateway; the home gateway constructs a response message, and sends the response message to the user equipment; the user equipment accesses the home gateway according to the response message.
根据本申请的又一个实施例,还提供了一种存储介质,所述存储介质包括存储的程序,其中,所述程序运行时执行上述任一项所述的方法。According to another embodiment of the present application, there is also provided a storage medium, the storage medium including a stored program, wherein the program executes any of the above-mentioned methods when the program runs.
根据本申请的又一个实施例,还提供了一种处理器,所述处理器用于运行程序,其中,所述程序运行时执行上述任一项所述的方法。According to another embodiment of the present application, a processor is also provided, the processor is configured to run a program, wherein the method executes any one of the above methods when the program is running.
附图说明Description of the drawings
此处所说明的附图用来提供对本申请的进一步理解,构成本申请的一部分,本申请的示意性实施例及其说明用于解释本申请,并不构成对本申请的限定。在附图中:The drawings described here are used to provide a further understanding of the application and constitute a part of the application. The exemplary embodiments and descriptions of the application are used to explain the application, and do not constitute a limitation to the application. In the attached picture:
图1是根据本申请实施例的家庭网关访问方法的流程图;Fig. 1 is a flowchart of a home gateway access method according to an embodiment of the present application;
图2是根据本申请实施例一的家庭网关访问方法的流程图;Fig. 2 is a flowchart of a home gateway access method according to the first embodiment of the present application;
图3是根据本申请实施例一的家庭网关访问方法的家庭网关配置图;3 is a configuration diagram of a home gateway according to a home gateway access method according to the first embodiment of the present application;
图4是根据本申请实施例一的家庭网关访问方法的流程图;Fig. 4 is a flowchart of a home gateway access method according to the first embodiment of the present application;
图5是根据本申请实施例一的家庭网关访问方法以TCP访问为例流程图;FIG. 5 is a flowchart of the home gateway access method according to the first embodiment of the present application, taking TCP access as an example;
图6是根据本申请实施例二的家庭网关访问方法的家庭网关配置图;Fig. 6 is a configuration diagram of a home gateway according to a home gateway access method according to the second embodiment of the present application;
图7是根据本申请实施例二的家庭网关访问方法的流程图;Fig. 7 is a flowchart of a home gateway access method according to the second embodiment of the present application;
图8是根据本申请实施例二的家庭网关访问方法以TCP访问为例流程图;FIG. 8 is a flowchart of the home gateway access method according to the second embodiment of the present application, taking TCP access as an example;
图9是根据本申请实施例的家庭网关的结构示意图;Fig. 9 is a schematic structural diagram of a home gateway according to an embodiment of the present application;
图10是根据本申请实施例的用户设备的结构示意图。Fig. 10 is a schematic structural diagram of a user equipment according to an embodiment of the present application.
具体实施方式Detailed ways
下文中将参考附图并结合实施例来详细说明本申请。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互组合。Hereinafter, the present application will be described in detail with reference to the drawings and in conjunction with the embodiments. It should be noted that the embodiments in the application and the features in the embodiments can be combined with each other if there is no conflict.
需要说明的是,本申请的说明书和权利要求书及上述附图中的术语“第一”、“第二”等是用于区别类似的对象,而不必用于描述特定的顺序或先后次序。It should be noted that the terms “first” and “second” in the specification and claims of the application and the above-mentioned drawings are used to distinguish similar objects, and are not necessarily used to describe a specific sequence or sequence.
实施例中提供了一种运行于上述家庭网关的访问方法如图1所示,包括用户设备向家庭网关发送访问报文,访问报文中包括第一源IP地址,第一源MAC地址,第一目的IP地址和第一目的MAC地址。当第一目的IP地址为所述家庭网关IP地址时,家庭网关将所述目的MAC地址修改为所述家庭网关对应的MAC地址;家庭网关构建应答报文,将所述应答报文发送至所述用户设备。In the embodiment, an access method running on the above-mentioned home gateway is provided as shown in FIG. 1, including the user equipment sending an access message to the home gateway. The access message includes a first source IP address, a first source MAC address, and a first source MAC address. A destination IP address and a first destination MAC address. When the first destination IP address is the IP address of the home gateway, the home gateway modifies the destination MAC address to the MAC address corresponding to the home gateway; the home gateway constructs a response message, and sends the response message to all Mentioned user equipment.
实施例1Example 1
实施例中提供了一种运行于上述家庭网关的访问方法,图1是根据本申请实施例的访问过程流程图,如图1所示,该流程包括如下步骤。The embodiment provides an access method running on the above-mentioned home gateway. FIG. 1 is a flowchart of an access process according to an embodiment of the present application. As shown in FIG. 1, the process includes the following steps.
S101用户设备向家庭网关发送访问报文,其中所述访问报文中包括第一源IP地址,第一目的IP地址和第一目的MAC地址。In S101, the user equipment sends an access message to the home gateway, where the access message includes a first source IP address, a first destination IP address, and a first destination MAC address.
家庭网关在桥模式下,用户设备获取的是公网地址(例如:10.20.30.x),其网关为家庭网关上层设备,它与家庭网关地址不为同一网段,家庭网关用户设备发起对家庭网关IP地址(例如:192.168.1.1)的访问,报文会被直接转发到外网,不能被送往家庭网关处理。In the bridge mode of the home gateway, the user equipment obtains the public network address (for example: 10.20.30.x), and its gateway is the upper device of the home gateway, which is not in the same network segment as the home gateway address. The home gateway user device initiates a pairing For access to the home gateway IP address (for example: 192.168.1.1), the message will be directly forwarded to the external network and cannot be sent to the home gateway for processing.
家庭网关驱动模块在上电启动时完成如图3所示初始的配置。The home gateway driver module completes the initial configuration shown in Figure 3 when it is powered on.
(1)生成提包规则配置到驱动模块,驱动模块生成内部规则,将目的IP地址为家庭网关地址的访问报文送上协议栈,否则直接由驱动根据芯片硬件转发。(1) Generate package rules and configure them to the driver module. The driver module generates internal rules and sends the access message with the destination IP address to the home gateway address to the protocol stack, otherwise the driver will directly forward it according to the chip hardware.
(2)生成包变换规则,配置到协议栈截包处理模块,由截包处理模块生成访问报文匹配条件和变换内容。(2) Generate packet transformation rules, configure them to the protocol stack interception processing module, and the interception processing module generates access message matching conditions and transformation content.
(3)动态配置路由模块,根据截包模块解析的报文内容,构造一条源IP地址到用户侧的路由规则,配置路由生成路由条目。(3) Dynamically configure the routing module, construct a routing rule from the source IP address to the user side according to the content of the message analyzed by the packet interception module, and configure the routing to generate routing entries.
增加了家庭网关转发前的特殊处理,家庭网关用户设备所发出报文,到达家庭网关首先经过驱动模块收包。The special processing before forwarding by the home gateway is added. The message sent by the home gateway user equipment reaches the home gateway and first receives the packet through the driver module.
S102当所述第一目的IP地址为所述家庭网关IP地址时,所述家庭网关将所述目的MAC地址修改为所述家庭网关对应的MAC地址;在一些实施方式中,驱动模块收包发现访问报文的第一目的IP为家庭网关IP地址(例如:192.168.1.1),则不直接硬件转发,而是将它送上协议栈处理。S102: When the first destination IP address is the IP address of the home gateway, the home gateway modifies the destination MAC address to the MAC address corresponding to the home gateway; in some embodiments, the driver module finds that the packet is received The first destination IP of the access message is the IP address of the home gateway (for example: 192.168.1.1), it is not directly forwarded by hardware, but is sent to the protocol stack for processing.
家庭网关协议栈的截包模块对访问报文做解析处理,判断如果其目的地址为家庭网关地址,送到地址变换模块。地址变换将此访问报文的第一目的MAC地址修改为家庭网关对应的MAC地址,记录第一源MAC地址,报文从二层协议栈被送到家庭网关自身处理,进入三层协议栈处理。The packet interception module of the home gateway protocol stack parses the access message, determines if the destination address is the home gateway address, and sends it to the address conversion module. Address conversion modifies the first destination MAC address of the access message to the MAC address corresponding to the home gateway, and records the first source MAC address. The message is sent from the layer 2 protocol stack to the home gateway itself for processing, and enters the layer 3 protocol stack for processing .
根据截包模块解析的报文内容,构造一条从第一源IP地址到用户侧设备的路由规则,配置路由生成路由条目,例如当第一源IP地址为192.168.1.x时,配置一条由192.168.1.0/24指向br0的路由。According to the packet content parsed by the packet interception module, construct a routing rule from the first source IP address to the user-side device, configure the route to generate a routing entry, for example, when the first source IP address is 192.168.1.x, configure a route 192.168.1.0/24 points to the route of br0.
如图2所示,该方法还包括以下步骤。As shown in Figure 2, the method also includes the following steps.
S103家庭网关构建应答报文,将所述应答报文发送至所述用户设备;在一些实施方式中,如图4所示,该步骤包括家庭网关在三层协议栈根据第一目的IP地址被送到对应的业务模块处理,家庭网关处理了这个报文,构造应答报文并返回。S103 The home gateway constructs a response message and sends the response message to the user equipment; in some embodiments, as shown in FIG. 4, this step includes that the home gateway is configured in the three-layer protocol stack according to the first destination IP address. Send it to the corresponding service module for processing. The home gateway processes this message, constructs a response message and returns it.
根据S102中配置的路由,家庭网关查找到这条路由后做路由处理,该应答报文被向LAN侧用户设备转发。According to the route configured in S102, the home gateway performs route processing after finding this route, and the response message is forwarded to the LAN-side user equipment.
在地址变换模块将应答报文的第二源MAC地址修改为原来用户设备发送的访问报文中的第一目的MAC地址,也就是在步骤S201记录的源MAC地址。The address conversion module modifies the second source MAC address of the response message to the first destination MAC address in the original access message sent by the user equipment, that is, the source MAC address recorded in step S201.
LAN侧用户设备收到应答报文后,使访问继续,发起后续交互报文,实现LAN侧用户设备对家庭网关的访问。After receiving the response message, the user equipment on the LAN side causes the access to continue, initiates subsequent interactive messages, and realizes the access of the user equipment on the LAN side to the home gateway.
如图5所示,以访问HTTP发起的TCP访问为例,本申请用户设备访问家庭网关TCP报文交互报文处理流程:首先,用户设备进行访问家庭网关的TCP握手访问报文(SYN报文),驱动硬件中断收到这个报文,将这个报文提上协议栈,协议栈解析报文内容,判断 TCP报文中携带的目的IP地址是否为家庭网关地址,如果是家庭网关的MAC地址,则将访问报文报文的目的MAC修改为家庭网关的MAC地址。As shown in Figure 5, taking the TCP access initiated by HTTP as an example, the processing flow of the TCP message interaction message of the user equipment accessing the home gateway of this application: First, the user equipment performs the TCP handshake access message (SYN message) for accessing the home gateway. ), the driver hardware interrupts the receipt of this message, puts this message on the protocol stack, the protocol stack analyzes the content of the message, and judges whether the destination IP address carried in the TCP message is the home gateway address, if it is the MAC address of the home gateway , Modify the destination MAC of the access message to the MAC address of the home gateway.
协议栈数据包处理函数判断报文的目的MAC地址为家庭网关自身MAC地址,进入IP层处理,家庭网关根据业务访问生成应答报文(SYN ACK报文)。The protocol stack data packet processing function determines that the destination MAC address of the message is the home gateway's own MAC address, enters the IP layer for processing, and the home gateway generates a response message (SYN ACK message) according to business access.
报文经过路由模块处理,查找到路由条目,将这个报文发送到LAN侧用户接入设备。The message is processed by the routing module, the routing entry is found, and the message is sent to the user access device on the LAN side.
用户设备继续进行访问家庭网关的TCP握手第三个报文(ACK报文),同样的经过家庭网关修改目的MAC,完成TCP握手,建立连接。The user equipment continues to perform the third packet (ACK packet) of the TCP handshake to access the home gateway, and also modifies the destination MAC through the home gateway to complete the TCP handshake and establish a connection.
随后的TCP GET报文和数据报文的处理等交互报文与上面流程做相同动作,这样就完成了用户设备对家庭网关的整个访问过程。The subsequent interactive messages such as the processing of the TCP GET message and the data message perform the same actions as the above process, which completes the entire access process of the user equipment to the home gateway.
实施例2Example 2
本实施例中提供了一种运行于上述家庭网关的访问方法,当上述家庭网关工作在桥接模式下时,图7是根据本申请实施例的访问过程流程图,如图7所示,该流程包括如下步骤。This embodiment provides an access method running on the above-mentioned home gateway. When the above-mentioned home gateway works in the bridge mode, FIG. 7 is a flow chart of the access process according to an embodiment of the present application. As shown in FIG. 7, the flow is Including the following steps.
S201用户设备向家庭网关发送访问报文,其中所述青访问报文中包括第一源IP地址,第一源MAC地址,第一目的IP地址和第一目的MAC地址。S201 The user equipment sends an access message to the home gateway, where the youth access message includes a first source IP address, a first source MAC address, a first destination IP address, and a first destination MAC address.
在一些实施方式中,家庭网关在桥模式下,用户设备发起对家庭网关地址的访问,报文会被直接转发到外网,不能被送往家庭网关处理。家庭网关在上电启动时完成如图6所示配置。In some embodiments, when the home gateway is in the bridge mode, the user equipment initiates access to the home gateway address, and the message is directly forwarded to the external network and cannot be sent to the home gateway for processing. The home gateway completes the configuration shown in Figure 6 when it is powered on.
(1)生成提包规则配置到驱动模块,驱动模块生成内部规则,将目的IP地址为家庭网关地址的访问报文送上协议栈,否则直接由驱动根据芯片硬件转发。(1) Generate package rules and configure them to the driver module. The driver module generates internal rules and sends the access message with the destination IP address to the home gateway address to the protocol stack, otherwise the driver will directly forward it according to the chip hardware.
(2)生成包变换规则,配置到协议栈截包处理模块,由截包处理模块生成访问报文匹配条件和变换内容,变换访问报文的第一目的MAC和第一IP地址,对应答返回LAN侧的报文做目的地址变换。(2) Generate packet transformation rules and configure them to the protocol stack interception processing module. The interception processing module generates access message matching conditions and transformation content, transforms the first destination MAC and first IP address of the access message, and returns the response The packets on the LAN side undergo a destination address conversion.
家庭网关用户设备所发出访问报文,该报文中包括源IP地址,源MAC地址,目的IP地址和目的MAC地址,到达家庭网关首先经过驱动模块收包。The access message sent by the home gateway user equipment includes the source IP address, the source MAC address, the destination IP address and the destination MAC address, and the packet is first received by the driver module when it reaches the home gateway.
其中一个示例为,用户设备发送的访问报文中携带的第一源IP是:10.46.x.x,也就是用户获得的公网IP地址,访问192.168.1.1,该地址为访问报文中的第一目的IP地址。One example is that the first source IP carried in the access message sent by the user equipment is: 10.46.xx, which is the public IP address obtained by the user, to access 192.168.1.1, which is the first address in the access message Destination IP address.
S202当用户设备向家庭网关发送的访问报文中的第一目的IP地址为所述家庭网关IP地址时,则将所述第一目的MAC地址修改为所述家庭网关对应的MAC地址;家庭网关驱动模块发现报文的第一目的IP为家庭网关的IP地址(例如:192.168.1.1),将它送上协议栈处理。S202: When the first destination IP address in the access message sent by the user equipment to the home gateway is the home gateway IP address, modify the first destination MAC address to the MAC address corresponding to the home gateway; The driver module finds that the first destination IP of the message is the IP address of the home gateway (for example: 192.168.1.1), and sends it to the protocol stack for processing.
协议栈对访问报文做解析处理,判断如果其目的地址为家庭网关地址,则记录访问报 文的第一源MAC地址,将访问报文的第一目的MAC地址修改为家庭网关对应的MAC地址,同时将第一源IP地址变换成家庭网关私网网段的IP地址,将这个访问请求的第一源IP变换成家庭网关私网网段的IP地址,比如变换成:192.168.1.3,这样就变成了:192.168.1.3访问192.168.1.1。The protocol stack parses the access message, determines if the destination address is the home gateway address, records the first source MAC address of the access message, and modifies the first destination MAC address of the access message to the MAC address corresponding to the home gateway At the same time, the first source IP address is transformed into the IP address of the private network segment of the home gateway, and the first source IP of this access request is transformed into the IP address of the private network segment of the home gateway, such as: 192.168.1.3, so It becomes: 192.168.1.3 access 192.168.1.1.
该报文在二层协议栈被提到家庭网关自身处理,进入三层协议栈处理。在三层协议栈,根据第一目的IP地址被送到本地处理流程,本地业务模块构造应答报文并返回。The message is referred to the home gateway for processing in the second layer protocol stack, and enters the third layer protocol stack for processing. In the three-layer protocol stack, the first destination IP address is sent to the local processing flow, and the local service module constructs a response message and returns it.
S203家庭网关构建应答报文,将所述应答报文发送至所述用户设备;家庭网关在地址变化模块对应答报文做变换,结合变换规则,将应答报文中的第二源MAC地址变换成原来用户设备发送的访问报文的第一目的MAC地址,同时将应答报文中的目的IP地址变换成用户设备发送的访问报文中携带的第一源IP地址,例如10.46.x.x,这个IP地址就是LAN侧设备的地址,LAN侧设备可以接收并处理这个报文。S203 The home gateway constructs a response message and sends the response message to the user equipment; the home gateway transforms the response message in the address change module, and combines the transformation rules to transform the second source MAC address in the response message It is converted into the first destination MAC address of the access message sent by the user equipment, and the destination IP address in the response message is converted into the first source IP address carried in the access message sent by the user equipment, such as 10.46.xx, this The IP address is the address of the LAN-side device, and the LAN-side device can receive and process this message.
LAN侧用户设备收到应答报文,可以继续发起后续交互报文,实现LAN侧用户设备对家庭网关的访问。After receiving the response message, the user equipment on the LAN side can continue to initiate subsequent interaction messages to realize the access of the user equipment on the LAN side to the home gateway.
如图8所示,以用户访问家庭网关HTTP业务发起TCP访问为例,说明用户设备访问家庭网关TCP报文交互报文处理:首先,用户设备进行访问家庭网关的TCP握手访问报文(SYN报文),驱动硬件中断收到报文,提取报文送到协议栈,协议栈解析报文内容,判断TCP报文的目的IP地址如果为家庭网关地址,则在MAC地址变换处理中将该报文的目的MAC修改为家庭网关的MAC地址,同时将报文的源IP地址做变换,变换成家庭网关私网网段的IP地址。As shown in Figure 8, taking the user accessing the home gateway HTTP service to initiate TCP access as an example, the user equipment accesses the home gateway TCP message interaction message processing: first, the user equipment performs the TCP handshake access message (SYN message) for accessing the home gateway The driver hardware interrupts the received message, extracts the message and sends it to the protocol stack. The protocol stack analyzes the content of the message and judges that the destination IP address of the TCP message is the address of the home gateway. The destination MAC of the message is modified to the MAC address of the home gateway, and the source IP address of the message is converted to the IP address of the private network segment of the home gateway.
继续经过协议栈数据包处理,判断报文的目的MAC地址为家庭网关自身MAC地址,进入IP层处理,相应的业务模块处理这个业务访问,家庭网关生成相应应答报文(SYN ACK报文)。Continue through the protocol stack data packet processing, determine that the destination MAC address of the packet is the home gateway's own MAC address, enter the IP layer for processing, the corresponding service module processes the service access, and the home gateway generates a corresponding response packet (SYN ACK packet).
报文经过地址变换模块,将应答报文的目的IP地址根据规则变化成LAN侧设备上来时所使用的源IP地址,报文发送到LAN侧用户设备。After the message passes through the address conversion module, the destination IP address of the response message is changed to the source IP address used by the LAN side device when it comes up according to the rules, and the message is sent to the LAN side user device.
用户设备继续进行访问家庭网关的TCP握手第三个报文(ACK报文),同样的经过家庭网关修改目的MAC和特殊防火墙规则修改IP地址流程完成TCP握手,建立连接。The user equipment continues with the third packet (ACK packet) of the TCP handshake to access the home gateway, and also completes the TCP handshake and establishes the connection after the home gateway modifies the destination MAC and special firewall rules to modify the IP address.
随后的TCP GET报文和数据报文的处理等交互报文与上面流程做相同动作,这样就完成了用户设备对家庭网关的整个访问过程。The subsequent interactive messages such as the processing of the TCP GET message and the data message perform the same actions as the above process, which completes the entire access process of the user equipment to the home gateway.
通过上述步骤,解决了家庭网关工作在桥模式下,用户接入设备获取的是公网地址,它和家庭网关的私网地址处在不同网段,用户无法对家庭网关进行访问的问题,实现LAN侧用户设备对家庭网关的访问。Through the above steps, the problem that the home gateway works in bridge mode, the user accesses the device to obtain the public network address, and the private network address of the home gateway is on a different network segment, and the user cannot access the home gateway. Access to the home gateway from the user equipment on the LAN side.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到根据上述实施例的 方法可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件,但很多情况下前者是更佳的实施方式。基于这样的理解,本申请的技术方案本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质(如ROM/RAM、磁碟、光盘)中,包括若干指令用以使得一台终端设备(可以是手机,计算机,服务器,或者网络设备等)执行本申请各个实施例所述的方法。Through the description of the above embodiments, those skilled in the art can clearly understand that the method according to the above embodiment can be implemented by means of software plus the necessary general hardware platform, of course, it can also be implemented by hardware, but in many cases the former is Better implementation. Based on this understanding, the technical solution of this application essentially or the part that contributes to the existing technology can be embodied in the form of a software product, and the computer software product is stored in a storage medium (such as ROM/RAM, magnetic disk, The optical disc) includes several instructions to enable a terminal device (which can be a mobile phone, a computer, a server, or a network device, etc.) to execute the method described in each embodiment of the present application.
实施例3Example 3
在本实施例中还提供了一种家庭网关,该装置用于实现上述实施例及优选实施方式,已经进行过说明的不再赘述。如以下所使用的,术语“模块”可以实现预定功能的软件和/或硬件的组合。尽管以下实施例所描述的装置较佳地以软件来实现,但是硬件,或者软件和硬件的组合的实现也是可能并被构想的。In this embodiment, a home gateway is also provided, and the device is used to implement the above-mentioned embodiments and preferred implementation manners, and those that have been described will not be repeated. As used below, the term "module" can implement a combination of software and/or hardware with predetermined functions. Although the devices described in the following embodiments are preferably implemented by software, implementation by hardware or a combination of software and hardware is also possible and conceived.
图9是根据本申请实施例的家庭网关的结构示意图,如图9所示,该装置包括以下模块。Fig. 9 is a schematic structural diagram of a home gateway according to an embodiment of the present application. As shown in Fig. 9, the device includes the following modules.
接收模块,用于接收用户设备发送的访问报文,所述访问报文中包括源IP地址,源MAC地址,目的IP地址和目的MAC地址。The receiving module is configured to receive an access message sent by the user equipment, and the access message includes a source IP address, a source MAC address, a destination IP address, and a destination MAC address.
地址修改模块,当所述目的IP地址为所述家庭网关IP地址时,用于将所述目的MAC地址修改为所述家庭网关对应的MAC地址。The address modification module is used to modify the destination MAC address to the MAC address corresponding to the home gateway when the destination IP address is the home gateway IP address.
应答模块,用于构建应答报文,将所述应答报文发送至所述用户设备。The response module is used to construct a response message and send the response message to the user equipment.
在一些实施方式中,该装置除包括图9所示的所有模块外,还包括路由解析模块,用于根据解析所述访问报文的内容,构建从所述第一源IP地址到所述用户侧的路由规则。In some embodiments, in addition to all the modules shown in FIG. 9, the device also includes a route analysis module for constructing a route from the first source IP address to the user according to the content of the access message. Side routing rules.
该家庭网关中的应答模块中还包括地址恢复模块,用于将所述第二源MAC地址修改为所述第一目的MAC地址;以及转发模块,用于根据所述路由规则,将所述应答报文发送至所述用户设备。The response module in the home gateway also includes an address recovery module, which is used to modify the second source MAC address to the first destination MAC address; and a forwarding module, which is used to transfer the response according to the routing rule The message is sent to the user equipment.
在一些实施方式中,该装置中地址转换模块还包括IP地址转换模块,用于将所述第一源IP地址变换成家庭网关私网网段的IP地址。In some embodiments, the address conversion module in the device further includes an IP address conversion module, configured to convert the first source IP address into an IP address of the private network segment of the home gateway.
除包括图9所示的所有模块外,该装置还包括地址恢复模块,用于将应答报文中携带的第二源MAC地址修改为原访问报文中的第一目的MAC地址,将应答报文中携带的第二目的IP地址,修改为原访问报文中携带的第一源IP地址。In addition to including all the modules shown in Figure 9, the device also includes an address recovery module, which is used to modify the second source MAC address carried in the response message to the first destination MAC address in the original access message, and the response message The second destination IP address carried in the text is modified to the first source IP address carried in the original access message.
还包括转发模块,用于根据应答报文中修改后的第二目的IP地址,将所述应答报文发送至所述用户设备。It also includes a forwarding module, configured to send the response message to the user equipment according to the modified second destination IP address in the response message.
在另一示例中,还提供了一种用户设备,该用户设备用于访问工作在桥模式下的家庭网关,实现上述实施例及优选实施方式,已经进行过说明的不再赘述。如以下所使用的,术语“模块”可以实现预定功能的软件和/或硬件的组合。尽管以下实施例所描述的装置较 佳地以软件来实现,但是硬件,或者软件和硬件的组合的实现也是可能并被构想的。In another example, a user equipment is also provided, and the user equipment is used to access a home gateway working in a bridge mode to implement the above-mentioned embodiments and preferred implementations, and those that have been explained will not be repeated. As used below, the term "module" can implement a combination of software and/or hardware with predetermined functions. Although the devices described in the following embodiments are preferably implemented by software, implementation by hardware or a combination of software and hardware is also possible and conceived.
图10是根据本申请实施例的家庭网关的结构框图,如图10所示,该装置包括:数据发送模块,用于将访问报文发送至家庭网关,其中,所述访问报文中包括第一源IP地址,第一源MAC地址,第一目的IP地址和第一目的MAC地址。FIG. 10 is a structural block diagram of a home gateway according to an embodiment of the present application. As shown in FIG. 10, the device includes: a data sending module for sending an access message to the home gateway, wherein the access message includes the first A source IP address, a first source MAC address, a first destination IP address and a first destination MAC address.
应答接收模块,用于当所述目的IP地址为所述家庭网关IP地址时,接收家庭网关将所述目的MAC地址修改为所述家庭网关对应的MAC地址后的应答报文。The response receiving module is configured to receive a response message in which the home gateway modifies the destination MAC address to the MAC address corresponding to the home gateway when the destination IP address is the IP address of the home gateway.
访问模块,用于根据所述应答报文,对所述家庭网关进行访问。The access module is used to access the home gateway according to the response message.
实施例4Example 4
本申请的实施例还提供了一种存储介质,该存储介质包括存储的程序,其中,上述程序运行时执行上述实施例所述的方法,包括:接收用户设备发送的访问报文,所述访问报文中包括源IP地址,源MAC地址,目的IP地址和目的MAC地址;当所述目的IP地址为所述家庭网关IP地址时,将所述目的MAC地址修改为所述家庭网关对应的MAC地址;构建应答报文,将所述应答报文发送至所述用户设备。The embodiment of the present application also provides a storage medium, the storage medium includes a stored program, wherein the execution of the method described in the above embodiment when the above program runs includes: receiving an access message sent by a user equipment, the access The message includes a source IP address, a source MAC address, a destination IP address, and a destination MAC address; when the destination IP address is the home gateway IP address, the destination MAC address is modified to the MAC corresponding to the home gateway Address; construct a response message, and send the response message to the user equipment.
在一些实施方式中,在本实施例中,上述存储介质可以被设置为存储用于执行以下步骤的程序代码。In some embodiments, in this embodiment, the above-mentioned storage medium may be configured to store program codes for executing the following steps.
根据解析所述访问报文的内容,构建所述目的IP地址到所述用户侧的路由规则,将所述源MAC地址修改为所述目的MAC地址;根据所述路由规则,将所述应答报文发送至所述用户设备。According to the analysis of the content of the access message, a routing rule from the destination IP address to the user side is constructed, and the source MAC address is modified to the destination MAC address; according to the routing rule, the response is reported The document is sent to the user equipment.
在一些实施方式中,存储介质还被设置为存储用于执行以下步骤的程序代码:构建应答报文之前,将源IP地址变换成家庭网关私网网段的IP地址。In some embodiments, the storage medium is further configured to store program code for performing the following steps: before constructing the response message, the source IP address is converted into the IP address of the private network segment of the home gateway.
将所述应答报文发送至所述用户设备还包括将所述源MAC地址修改为所述目的MAC地址;将所述目的IP地址修改为所述源IP地址;根据所述源IP地址,将所述应答报文发送至所述用户设备。Sending the response message to the user equipment also includes modifying the source MAC address to the destination MAC address; modifying the destination IP address to the source IP address; according to the source IP address, The response message is sent to the user equipment.
在一些实施方式中,在本实施例中,上述存储介质可以包括但不限于:U盘、只读存储器(Read-Only Memory,简称为ROM)、随机存取存储器(Random Access Memory,简称为RAM)、移动硬盘、磁碟或者光盘等各种可以存储程序代码的介质。In some embodiments, in this embodiment, the above-mentioned storage medium may include, but is not limited to: U disk, Read-Only Memory (Read-Only Memory, ROM for short), Random Access Memory (Random Access Memory, RAM for short) ), mobile hard drives, magnetic disks or optical discs and other media that can store program codes.
本申请的实施例还提供了一种处理器,该处理器用于运行程序,其中,该程序运行时执行上述任一项方法中的步骤。The embodiment of the present application also provides a processor, which is used to run a program, wherein the program executes the steps in any one of the above-mentioned methods when the program is running.
在一些实施方式中,在本实施例中,上述程序用于执行以下步骤。In some embodiments, in this embodiment, the above procedure is used to execute the following steps.
接收用户设备发送的访问报文,所述访问报文中包括源IP地址,源MAC地址,目的IP地址和目的MAC地址;当所述目的IP地址为所述家庭网关IP地址时,将所述目的MAC地址修改为所述家庭网关对应的MAC地址;构建应答报文,将所述应答报文发送至所述 用户设备。Receive an access message sent by a user equipment, where the access message includes a source IP address, a source MAC address, a destination IP address, and a destination MAC address; when the destination IP address is the home gateway IP address, the The destination MAC address is modified to the MAC address corresponding to the home gateway; a response message is constructed, and the response message is sent to the user equipment.
在一些实施方式中,本实施例中的具体示例可以参考上述实施例及可选实施方式中所描述的示例,本实施例在此不再赘述。In some implementation manners, for specific examples in this embodiment, reference may be made to the examples described in the above-mentioned embodiments and alternative implementation manners, and details are not described herein again in this embodiment.
通过本申请的技术方案,当目的地址为家庭网关私网地址的业务访问(包括HTTP、TELNET等)报文经过家庭网关时,家庭网关拦截这种报文,判断报文目的IP地址如果是家庭网关的私网地址,则将报文目的MAC地址修改为家庭网关的MAC地址,这样家庭网关的协议栈在三层处理这种报文,并构造应答报文。在家庭网关上根据用户设备访问报文的内容动态配置路由规则或者采用数据包变换时将目的MAC和源IP地址同时变换,构造的报文根据路由条目路由或者目的IP地址变化,使报文到达LAN侧设备,LAN侧设备收到应答后,则可以在一些实施方式中完成TCP三次握手和GET数据等业务访问报文,从而解决相关技术中家庭网关工作在桥模式下,用户接入设备获取的是公网地址,它和家庭网关的私网地址处在不同网段,用户无法对家庭网关进行访问的问题,实现LAN侧用户设备对家庭网关的访问。Through the technical solution of this application, when a business access (including HTTP, TELNET, etc.) message whose destination address is the private network address of the home gateway passes through the home gateway, the home gateway intercepts such a message and determines whether the destination IP address of the message is a home For the private network address of the gateway, the destination MAC address of the message is modified to the MAC address of the home gateway, so that the protocol stack of the home gateway processes this kind of message at the third layer and constructs a response message. Dynamically configure routing rules on the home gateway according to the content of the user equipment to access the message or change the destination MAC and source IP address at the same time when using data packet conversion. The constructed message is routed according to the routing entry or the destination IP address changes to make the message arrive After the LAN-side device receives the response, the LAN-side device can complete the TCP three-way handshake and GET data and other business access messages in some implementations, so as to solve the problem that the home gateway works in the bridge mode in the related technology, and the user access device obtains The problem is that the public network address is in a different network segment from the private network address of the home gateway, and the user cannot access the home gateway, so that the LAN side user equipment can access the home gateway.
显然,本领域的技术人员应该明白,上述的本申请的各模块或各步骤可以用通用的计算装置来实现,它们可以集中在单个的计算装置上,或者分布在多个计算装置所组成的网络上,在一些实施方式中,它们可以用计算装置可执行的程序代码来实现,从而,可以将它们存储在存储装置中由计算装置来执行,并且在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤,或者将它们分别制作成各个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。这样,本申请不限制于任何特定的硬件和软件结合。Obviously, those skilled in the art should understand that the above-mentioned modules or steps of this application can be implemented by a general computing device, and they can be concentrated on a single computing device or distributed in a network composed of multiple computing devices. Above, in some embodiments, they can be implemented with program codes executable by a computing device, so that they can be stored in a storage device for execution by the computing device, and in some cases, they can be different from here. The steps shown or described are executed in the order of, or they are respectively fabricated into individual integrated circuit modules, or multiple modules or steps of them are fabricated into a single integrated circuit module to achieve. In this way, this application is not limited to any specific combination of hardware and software.
以上所述仅为本申请的优选实施例而已,并不用于限制本申请,对于本领域的技术人员来说,本申请可以有各种更改和变化。凡在本申请的原则之内,所作的任何修改、等同替换、改进等,均应包含在本申请的保护范围之内。The above descriptions are only preferred embodiments of the application, and are not intended to limit the application. For those skilled in the art, the application can have various modifications and changes. Any modification, equivalent replacement, improvement, etc. made within the principles of this application shall be included in the protection scope of this application.

Claims (14)

  1. 一种访问处理方法,应用于工作在桥模式下的家庭网关,其中,包括以下步骤:An access processing method applied to a home gateway working in bridge mode, which includes the following steps:
    接收用户设备发送的访问报文,所述访问报文中包括第一源IP地址、第一目的IP地址和第一目的MAC地址;Receiving an access message sent by the user equipment, the access message including a first source IP address, a first destination IP address, and a first destination MAC address;
    在所述第一目的IP地址为所述家庭网关IP地址的情况下,将所述第一目的MAC地址修改为所述家庭网关对应的MAC地址。In the case where the first destination IP address is the IP address of the home gateway, the first destination MAC address is modified to the MAC address corresponding to the home gateway.
  2. 如权利要求1所述方法,其中,所述方法还包括,构建应答报文,将所述应答报文发送至所述用户设备。The method according to claim 1, wherein the method further comprises constructing a response message, and sending the response message to the user equipment.
  3. 如权利要求2所述方法,其中,所述应答报文发送至所述用户设备还包括:The method according to claim 2, wherein the sending of the response message to the user equipment further comprises:
    根据解析所述访问报文的内容,构建从所述第一源IP地址到所述用户设备的路由规则。Constructing a routing rule from the first source IP address to the user equipment according to parsing the content of the access message.
  4. 如权利要求3所述方法,其中,所述应答报文中包括第二源MAC地址,将所述应答报文发送至所述用户设备还包括:The method according to claim 3, wherein the response message includes a second source MAC address, and sending the response message to the user equipment further comprises:
    将所述第二源MAC地址修改为所述第一目的MAC地址;Modify the second source MAC address to the first destination MAC address;
    根据所述路由规则,将所述应答报文发送至所述用户设备。According to the routing rule, the response message is sent to the user equipment.
  5. 如权利要求2所述方法,其中,所述构建应答报文之前,所述方法还包括:3. The method according to claim 2, wherein, before the constructing the response message, the method further comprises:
    将所述第一源IP地址变换成家庭网关私网网段的IP地址。The first source IP address is transformed into an IP address of the private network segment of the home gateway.
  6. 如权利要求4所述方法,其中,所述应答报文中包括第二源MAC地址,第二目的IP地址,将所述应答报文发送至所述用户设备还包括:The method according to claim 4, wherein the response message includes a second source MAC address and a second destination IP address, and sending the response message to the user equipment further comprises:
    将所述第二源MAC地址修改为所述第一目的MAC地址;Modify the second source MAC address to the first destination MAC address;
    将所述第二目的IP地址修改为所述第一源IP地址;Modify the second destination IP address to the first source IP address;
    根据修改后的第二目的IP地址,将所述应答报文发送至所述用户设备。Send the response message to the user equipment according to the modified second destination IP address.
  7. 一种工作在桥模式下的家庭网关,其中,包括:A home gateway working in bridge mode, which includes:
    接收模块,用于接收用户设备发送的访问报文,所述访问报文中包括第一源IP地址,第一源MAC地址,第一目的IP地址和第一目的MAC地址;A receiving module, configured to receive an access message sent by a user equipment, the access message including a first source IP address, a first source MAC address, a first destination IP address, and a first destination MAC address;
    地址修改模块,当所述第一目的IP地址为所述家庭网关IP地址时,用于将所述第一目的MAC地址修改为所述家庭网关对应的MAC地址。The address modification module is used to modify the first destination MAC address to the MAC address corresponding to the home gateway when the first destination IP address is the home gateway IP address.
  8. 如权利要求7所述的家庭网关,其中,所述家庭网关还包括:The home gateway of claim 7, wherein the home gateway further comprises:
    应答模块,用于构建应答报文,将所述应答报文发送至所述用户设备。The response module is used to construct a response message and send the response message to the user equipment.
  9. 一种家庭网关访问方法,用于访问工作在桥模式下的家庭网关,其中,所述方法包括:A home gateway access method for accessing a home gateway working in bridge mode, wherein the method includes:
    将访问报文发送至家庭网关,其中,所述访问报文中包括第一源IP地址,第一目的IP地址和第一目的MAC地址;Sending an access message to the home gateway, where the access message includes a first source IP address, a first destination IP address, and a first destination MAC address;
    在所述第一目的IP地址为所述家庭网关IP地址的情况下,接收家庭网关将所述第一目的MAC地址修改为所述家庭网关对应的MAC地址后的应答报文;In the case that the first destination IP address is the IP address of the home gateway, receiving a response message in which the home gateway modifies the first destination MAC address to the MAC address corresponding to the home gateway;
    根据所述应答报文,对所述家庭网关进行访问。According to the response message, the home gateway is accessed.
  10. 一种用户设备,用于访问工作在桥模式下的家庭网关,其中,所述用户设备包括:A user equipment for accessing a home gateway working in a bridge mode, wherein the user equipment includes:
    数据发送模块,用于将访问报文发送至家庭网关,其中,所述访问报文中包括第一源IP地址,第一目的IP地址和第一目的MAC地址;A data sending module, configured to send an access message to the home gateway, where the access message includes a first source IP address, a first destination IP address, and a first destination MAC address;
    应答接收模块,用于在所述第一目的IP地址为所述家庭网关IP地址的情况下,接收家庭网关将所述第一目的MAC地址修改为所述家庭网关对应的MAC地址后的应答报文;A response receiving module, configured to receive a response report from the home gateway after the first destination MAC address is modified to the MAC address corresponding to the home gateway when the first destination IP address is the IP address of the home gateway Text
    访问模块,用于根据所述应答报文,对所述家庭网关进行访问。The access module is used to access the home gateway according to the response message.
  11. 一种家庭网关访问方法,其中:A home gateway access method, where:
    用户设备向家庭网关发送访问报文,其中,所述访问报文中包括第一源IP地址,第一目的IP地址和第一目的MAC地址;The user equipment sends an access message to the home gateway, where the access message includes a first source IP address, a first destination IP address, and a first destination MAC address;
    在所述第一目的IP地址为所述家庭网关IP地址的情况下,所述家庭网关将将所述目的MAC地址修改为所述家庭网关对应的MAC地址。In the case that the first destination IP address is the IP address of the home gateway, the home gateway will modify the destination MAC address to the MAC address corresponding to the home gateway.
  12. 如权利要求11所述家庭网关访问方法,其中,The home gateway access method of claim 11, wherein:
    所述家庭网关构建应答报文,将所述应答报文发送至所述用户设备;Constructing a response message by the home gateway, and sending the response message to the user equipment;
    所述用户设备根据所述应答报文对所述家庭网关进行访问。The user equipment accesses the home gateway according to the response message.
  13. 一种存储介质,其中,所述存储介质包括存储的程序,其中,所述程序运行时执行权利要求1至5中任一项所述的访问处理方法,或权利要求9或11所述的访问方法。A storage medium, wherein the storage medium includes a stored program, wherein the access processing method according to any one of claims 1 to 5 or the access according to claim 9 or 11 is executed when the program is running. method.
  14. 一种处理器,其中,所述处理器用于运行程序,其中,所述程序运行时执行权利要求1至5中任一项所述的访问处理方法,或权利要求9或11所述的访问方法。A processor, wherein the processor is used to run a program, wherein the access processing method according to any one of claims 1 to 5 or the access method according to claim 9 or 11 is executed during the running .
PCT/CN2020/120451 2019-12-31 2020-10-12 Method and apparatus for accessing home gateway, system processor and storage medium WO2021135493A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201911425858.1A CN113132218B (en) 2019-12-31 2019-12-31 Home gateway access method, device, system processor and storage medium
CN201911425858.1 2019-12-31

Publications (1)

Publication Number Publication Date
WO2021135493A1 true WO2021135493A1 (en) 2021-07-08

Family

ID=76687254

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2020/120451 WO2021135493A1 (en) 2019-12-31 2020-10-12 Method and apparatus for accessing home gateway, system processor and storage medium

Country Status (2)

Country Link
CN (1) CN113132218B (en)
WO (1) WO2021135493A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112235175B (en) * 2020-09-01 2022-03-18 深圳市共进电子股份有限公司 Access method and access device of network bridge equipment and network bridge equipment
CN117812117A (en) * 2022-09-30 2024-04-02 华为技术有限公司 Data transmission system, data transmission method and networking equipment

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101577722A (en) * 2009-06-03 2009-11-11 中兴通讯股份有限公司 Method for realizing MAC forced forwarding function and device
US20130346629A1 (en) * 2012-06-26 2013-12-26 Cisco Technology, Inc. Determining the type of upstream network address translation from a home gateway
CN103546286A (en) * 2012-07-13 2014-01-29 中兴通讯股份有限公司 Authentication processing method and device
CN104618241A (en) * 2015-01-14 2015-05-13 杭州华三通信技术有限公司 Transmission method and device for three-layer message

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007016809A1 (en) * 2005-08-05 2007-02-15 Zte Corporation A managing method of bridging device
CN100571199C (en) * 2005-12-16 2009-12-16 华为技术有限公司 The method of a kind of home gateway and guarantee in-home network service terminal QoS
CN101052009B (en) * 2007-05-14 2010-08-18 中兴通讯股份有限公司 Method for realizing internal access by NAT device for private net element using public net address
CN101360030B (en) * 2008-08-21 2011-10-05 华为技术有限公司 Method for private network customer to access public network using public network address
CN103856436B (en) * 2012-11-28 2017-12-05 中国电信股份有限公司 Method, home gateway and the Internet of selecting network by user equipment layer protocol
CN103475750B (en) * 2013-09-16 2017-05-10 新华三技术有限公司 Address translation method and equipment suitable for multi-export network
KR101901341B1 (en) * 2014-04-07 2018-09-27 한국전자통신연구원 Method and apparatus for supporting mobility of user equipment
CN104301451B (en) * 2014-10-17 2019-03-01 福建星网锐捷网络有限公司 A kind of cross-network segment host communication method, apparatus and system
CN105763592A (en) * 2014-12-19 2016-07-13 中兴通讯股份有限公司 Cluster internal and external data interaction method, cluster gateway and source device
CN107070691B (en) * 2017-01-12 2020-01-21 阿里巴巴集团控股有限公司 Cross-host communication method and system of Docker container
CN109151084A (en) * 2017-06-15 2019-01-04 中兴通讯股份有限公司 File transmitting method and device, system, CGN equipment
CN110365557B (en) * 2018-03-26 2021-11-02 中兴通讯股份有限公司 Network interconnection method and device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101577722A (en) * 2009-06-03 2009-11-11 中兴通讯股份有限公司 Method for realizing MAC forced forwarding function and device
US20130346629A1 (en) * 2012-06-26 2013-12-26 Cisco Technology, Inc. Determining the type of upstream network address translation from a home gateway
CN103546286A (en) * 2012-07-13 2014-01-29 中兴通讯股份有限公司 Authentication processing method and device
CN104618241A (en) * 2015-01-14 2015-05-13 杭州华三通信技术有限公司 Transmission method and device for three-layer message

Also Published As

Publication number Publication date
CN113132218B (en) 2023-10-20
CN113132218A (en) 2021-07-16

Similar Documents

Publication Publication Date Title
US11451510B2 (en) Method and apparatus for processing service request
US8861522B2 (en) Method for providing an internal server with reduced IP addresses
CA2421665C (en) Wireless provisioning device
US7970878B1 (en) Method and apparatus for limiting domain name server transaction bandwidth
JP2002502152A (en) Proxy server for TCP / IP network address mobile terminal
US9065684B2 (en) IP phone terminal, server, authenticating apparatus, communication system, communication method, and recording medium
US10454880B2 (en) IP packet processing method and apparatus, and network system
US20190215308A1 (en) Selectively securing a premises network
CN105430059A (en) Smart client routing
WO2020011152A1 (en) Pfcp connection processing method and apparatus, network element, system, and storage medium
WO2021135493A1 (en) Method and apparatus for accessing home gateway, system processor and storage medium
WO2021196568A1 (en) Traffic flow proxy method, server, and storage medium
WO2018149342A1 (en) Public network accessing method and device and computer storage medium for user terminal of mobile private network
WO2016050109A1 (en) Communication method, cloud management server and virtual switch
KR101083480B1 (en) Virtual connectivity with subscribe-notify service
CN109600292A (en) A kind of LAC router initiates the method and system of L2TP Tunnel connection from dialing
US20110276673A1 (en) Virtually extending the functionality of a network device
US11968237B2 (en) IPsec load balancing in a session-aware load balanced cluster (SLBC) network device
WO2024016593A1 (en) Edge node access method and apparatus
CN113472625B (en) Transparent bridging method, system, equipment and storage medium based on mobile internet
US8285853B2 (en) Message and system for implementing the inter-access of stack members
US11381544B2 (en) Service type determining method and related device
US20210203604A1 (en) Load balancing method, device and system
CN115022178A (en) Network card switching method and device, electronic equipment and readable storage medium
CN114666846A (en) Communication method and gateway equipment

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20909207

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 20909207

Country of ref document: EP

Kind code of ref document: A1

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 14/02/2023)

122 Ep: pct application non-entry in european phase

Ref document number: 20909207

Country of ref document: EP

Kind code of ref document: A1