CN101582794A - System and method for unified configuration of network equipment - Google Patents

Abstract

Translated fromChinese

本发明公开了一种网络设备统一配置系统及其配置方法，主要解决现有的配置方法对网络设备的配置工作量大和缺乏安全功能的问题。它使用一套自行设计的命令集来统一配置不同厂家、不同型号的网络设备，其主要组成部分有服务器、代理机和网络设备，服务器中加载有命令事件采集插件、回复事件采集插件、事件格式扩展插件、场景分析插件、事件响应插件和设备信息文件、命令转换信息文件、命令转换规则文件。自设计命令在服务器上转换为能够在目标网络设备中执行的特定命令后经由代理机转发给网络设备执行，待执行完毕其输出信息被发送给代理机进行处理并返回给服务器。本发明具有方便集中、统一配置网络设备的优点，能够被广泛应用于计算机网络管理领域。

The invention discloses a unified configuration system for network equipment and a configuration method thereof, which mainly solves the problems that the existing configuration method has a large workload for configuring network equipment and lacks security functions. It uses a self-designed command set to uniformly configure network devices of different manufacturers and models. Its main components include servers, agents and network devices. The server is loaded with command event collection plug-ins, reply event collection plug-ins, and event formats. Extension plug-ins, scenario analysis plug-ins, event response plug-ins and device information files, command conversion information files, and command conversion rule files. After the self-designed command is converted into a specific command that can be executed in the target network device on the server, it is forwarded to the network device for execution through the proxy machine. After the execution is completed, the output information is sent to the proxy machine for processing and returned to the server. The invention has the advantages of convenient centralized and uniform configuration of network equipment, and can be widely used in the field of computer network management.

Description

The network equipment is unified configuration-system and collocation method thereof

Technical field

The invention belongs to field of computer network administration, relate to the configuration of the network equipment, can be used for the network equipment of different manufacturers, different model is carried out centralization and unitized management.

Background technology

At the beginning of automatic network equipment was born, people just began in configuration and manage them, and in order to safeguard computer network one by one, in fact, configure network devices is not a difficult matter, below promptly were the schemes of several simple possible:

1, telnet---this is the scheme of the most frequently used configure network devices, and the network equipment of nearly all producer is all supported this agreement.The user only need key in the telnet order in the local terminal, and the input the user name and password just can land the network equipment and operate and manage.These similarly are directly to import on the control desk at equipment in the order that the equipment that sends to of this locality input is carried out, and operate very simple.Its advantage is a generality, is the standard agreement and the main mode of Internet telnet service.

2, SSH---this is the high a kind of allocation plan of fail safe in safe shell connection, it can be encrypted all transmission data, can prevent " go-between " attack, DNS and IP spoofing, in addition, also having the data of an extra advantage transmission is through overcompression, can accelerate transmitting speed.Can replace telnet in security requirement fully than higher occasion, just some network equipment must be configured in addition if will support this agreement.

3, remote desktop---this is the service that Microsoft releases for convenience of network manager's management maintenance server.Begin to introduce from windows 2000server version, the network manager uses the remote desktop linker to be connected on any computer of opening the remote desktop controlled function of network, just as oneself this computer of operation, working procedure, maintenance data base etc.Remote desktop is similar to early stage telnet in a sense, and it can give server with work such as program running, and return to remote control computer only be the image, the motion change track of mouse-keyboard.

4, Simple Network Management Protocol SNMP---be a kind of Simple Network Management Protocol, its predecessor is simple gateway monitoring protocol SGMP, is used for communication line is managed.Subsequently, people have carried out very big modification to SGMP, have particularly added the SMI and the MIB architecture that meet the Internet definition, and the agreement after the improvement is exactly famous SNMP.The target of SNMP is the hardware and software platform that managing internet Internet goes up numerous manufacturer production, so SNMP is subjected to the influence of Internet standard network Governance framework also very big.SNMP has gone out to the agreement of the 3rd version now, and its function is strengthened widely than before and improved.The architecture of SNMP designs round following four notions and target: keep the software cost of administration agent low as far as possible; Keep the function of telemanagement to greatest extent, so that make full use of the Internet resources of Internet; Architecture must have the leeway of expansion; Keep the independence of SNMP, do not rely on concrete computer, gateway and the network transmission protocol.In nearest improvement, added the target that guarantees the fail safe of SNMP system own again.

Generally use though above-mentioned these allocation plans have been user institute, have the following disadvantages:

1) unitized management degree is low.Existing allocation plan often only is applicable to and disposes one or several machines simultaneously, when the number of devices in the network increases, the user need be switched, land on the different device ends continually, and can not be configured and manage by the equipment to all controls on identical platform, so problem concentrated, the unified management network equipment has to be solved.

2) the configuration effort amount is big.Because each network equipment manufacturer is for the consideration to number one, all can be the distinctive configuration order collection of oneself equipment configuration, and, the command set size that equipment was equipped with of different model also is not quite similar.The direct result of this right-safeguarding doctrine is the worry that has increased the network management personnel, for example will then need to import different orders to the same attribute of the equipment disposition of different manufacturers, different model.Nowadays the manufacturer of the network equipment, model what more than, the order of generation is countless simply, no matter and can remember, even turn over the also real assignment that belongs to a misery of handbook inquiry.

3) lack safety function.Manage a network, except the equipment in the network is managed for configuration, a safety problem that problem is exactly a network also should considering carefully, for the network management personnel, when being busy with configuration management equipment, also must pay close attention to the security incident in the network constantly, otherwise in case there is security incident to take place, it is precarious that network will become, this has increased network management personnel's workload virtually, and cause carelessness easily to safety problem, both combine if can and guarantee network security configure network devices, realize that by a cover configuration-system that just can alleviate network management personnel's burden, improve the fail safe of network simultaneously, but existing allocation plan often can only be used for configure network devices, and lacks the function that guarantees network security, and can't satisfy network management personnel's demand.

Summary of the invention

The objective of the invention is to overcome the shortcoming of above-mentioned prior art, provide a kind of network equipment to unify configuration-system and collocation method thereof, realize all network equipments are configured to use a cover command set, and the safety means that link are simultaneously handled security incident.

For achieving the above object, unified configuration-system of the present invention comprises:

The input of the network equipment is connected with proxy machine, is used for transmitting the output information to the network equipment, reception, the processing network equipment command execution of ordering from server, and result is returned to server;

Be loaded with feature card and data file in the server, be used to accept the order and the conversion command of the input of user or safety means, and be sent to proxy machine, receive to reply and output to terminal;

This feature card comprises:

A. accept input command, judge that command format corrects errors, encapsulates and generate the command event of command event and gather plug-in unit

B. the answer incident that receives return information, generation answer incident is gathered plug-in unit;

C. the event format expansion plugin of definition command, command event and answer event format;

D. judge whether order can be converted, triggered response plug-in unit conversion command, arrive or the scene analysis plug-in unit of timer expired the finish command conversion executing state transition by the answer incident;

E. change input command and be the order that to carry out at target device and the event response plug-in unit that is sent to proxy machine;

This data file comprises:

A. the facility information file of memory device ID, unit type, proxy machine IP, proxy machine port;

B. the command conversion message file of the transformation rule filename of memory device model, each model correspondence;

C. store the command conversion rule file of the command information of unity of command, corresponding concrete model.

The described network equipment comprises switch, router.

Described proxy machine comprises receiving command module and sending a reply module that the reception command module is used to receive the order from server, and forward command is given the network equipment; Send a reply the output information after module is used for receiving and handle network equipment command execution, the information after handling is returned to server.

For achieving the above object, unified collocation method of the present invention comprises the steps:

(1) design one cover can be used for disposing the unity of command collection of different manufacturers, the different model network equipment, and facility information file, command conversion message file, command conversion rule file are positioned in the server;

(2) the loading command incident is gathered plug-in unit, command event form expansion plugin, scene analysis plug-in unit, event response plug-in unit, answer incident collection plug-in unit in server;

(3) user needs the destination network device number of configuration and the order that unity of command is concentrated from terminal input, command event is gathered plug-in unit and is obtained after this order its form to be judged, if correct format, then generate command event according to the event format that defines in the command event form expansion plugin, if format error then finishes the execution of this order;

(4) after command event generates, the scene analysis plug-in unit is according to the command conversion rule file of command conversion message file and destination network device correspondence, the coomand mode jump condition is mated, judge whether the order of terminal input meets transformation rule, if do not meet transformation rule, the transition coomand mode, finish the execution of this order, if meet transformation rule, also transition coomand mode, the concurrent order of losing one's life of trigger event response plug-in unit conversion is opened timer simultaneously and is replied message age for receiving;

(5) after the event response plug-in unit is triggered by the scene analysis plug-in unit, command conversion rule according to the destination network device correspondence, command conversion with the terminal input is some orders can carrying out on destination network device earlier, obtain the proxy machine IP that destination network device links to each other by the inquiry apparatus information file again, at last the command information after destination network device number, order ID and the conversion is sent to this proxy machine together;

(6) after proxy machine receives information from server,, find the IP of this destination network device, then order is transmitted to destination network device and carries out, will order ID to be stored in this locality simultaneously according to destination network device number;

(7) after destination network device is carried out the order of transmitting from proxy machine, terminal output information is replied to proxy machine handle, the order ID of return information after the processing and preservation is sent back to server in the lump by proxy machine;

(8) after the collection of the answer incident in server plug-in unit generates the answer incident with the return information that receives, the scene analysis plug-in unit is by the matching status jump condition, in analyze replying with order ID with whether send the ID that orders identical, if it is identical, the transition coomand mode, print return information to terminal, and finish the execution of this order, if it is inequality or do not receive return information all the time, in next command when input then,, timer expired mates the state transitions condition of this order, the transition coomand mode finishes the execution of this order.

The present invention has following advantage:

1) the network equipments configuration workload is little.The present invention is owing to designed a cover unity of command collection voluntarily, and on server, be loaded with feature card and facility information file, command conversion message file and command conversion rule file, make that any order in this cover command set can be according to the command conversion rule of the model correspondence of the network equipment to be configured, being converted into can actual some the particular command of carrying out, promptly can use this cover order in command set that the network equipment of all known models is configured, and the particular command that need not input equipment manufacturer and provide is configured.This has alleviated network management personnel's burden to a certain extent, and the network management personnel only need understand that the order in the unity of command collection just can be configured distinct device on the network, has removed the worry of its memory and a large amount of orders of inquiry different manufacturers from.

2) make things convenient for the management of catenet.The present invention is owing to added proxy machine between the server and the network equipment, and storing proxy machine IP and the port information that the network equipment connects in the facility information file that in server, loads, make server can pass through the proxy machine managing network device, and a proxy machine can connect several the network equipments simultaneously, the number of devices that ought be connected into managed networks so more for a long time, proxy machine can reduce the management role of server to the network equipment to a great extent, alleviates the live load of server.

3) be easy in network, add new equipment.The present invention is owing to be loaded with command conversion message file and command conversion rule file on server, make when adding new equipment to managed networks, only need know its model, just can inquire corresponding transformation rule file by the command conversion message file, acquisition command conversion rule, thus the order that can use unity of command to concentrate is configured it.If the model of new interpolation equipment is not put down in writing, then only be required to be this new model and write corresponding transformation rule file, then model name and transformation rule filename write command transitional information file are got final product, can increase the network equipment of any model so at an easy rate, be convenient to the scale of extended network.

4) extensibility of feature card is strong.The present invention is because each feature card that uses is general, as long as change inner the realization under the constant prerequisite of the interface that keeps them, just can be used to realize other functional module.When for example being used for incident that the analytical system daily record writes down, can utilizing form, the incident of event format expansion plugin definition log event to gather plug-in unit and obtain the incident that belongs to the network security category that occurs in the state of log event, scene analysis plug-in unit transition log event and the event response plug-in unit response log incident.

5) strengthened the security performance of network.Plug-in unit is only responsible to obtain order from terminal because the command event that loads on server is gathered in the present invention, and no matter what the importer of order is, it can be that the people can certainly be safety means, as fire compartment wall, intruding detection system, auditing system, as long as they can export the order that unity of command is concentrated, just can be gathered plug-in unit and obtain, and be changed, reach the purpose of configuration destination network device by other feature card by command event.Safety means often appear at it makes response to the security incident in the network occasion as order importer's situation, when having certain security incident to take place on the network and being detected by safety means, may need the configuration of certain network equipment that this security incident is associated to carry out certain change, to respond the safety of this security incident and guarantee network, at this moment just require safety means to import configuration order to the network equipment, but safety means are not also known the producer of its network equipment that networks, model, also just can't know the particular command that to carry out on the network equipment, can't configure network devices, if at this time it can be gathered the order importer of plug-in unit as command event of the present invention, just can use among the present invention and be configured with the concrete device-independent unity of command set pair network equipment, therefore, use configure network devices of the present invention can overcome safety means in the past and can not make the drawback of timely response, realize the high security of network detected security incident.

Description of drawings

Fig. 1 unifies the topological schematic diagram of configuration-system for the network equipment of the present invention;

Fig. 2 is the command conversion status transition chart of scene analysis plug-in unit in the system of the present invention;

Fig. 3 unifies the collocation method flow chart for the network equipment of the present invention.

Embodiment

With reference to Fig. 1, the network equipment of the present invention is unified configuration-system, mainly is made of server, proxy machine and the network equipment three parts.Wherein:

Server, be arranged on the network control center, receive and order that the unity of command of management conversion person or safety means input is concentrated, order is sent to proxy machine, reception and output from the return information of proxy machine, be loaded with feature card and data file in this server.Feature card includes: (1) accept input command, judge that command format corrects errors, encapsulates and generate the command event of command event and gather plug-in unit a; (2) the answer incident that receives return information, generation answer incident is gathered plug-in unit b; (3) the event format expansion plugin c of definition command, command event and answer event format; (4) judge whether order can be converted, triggered response plug-in unit conversion command, arrive or the scene analysis plug-in unit d of timer expired the finish command conversion executing state transition by the answer incident; (5) the conversion input command is the order that can carry out at target device and the event response plug-in unit e that is sent to proxy machine, but is not limited to these plug-in units.Data file includes: 1) the facility information file f of memory device ID, unit type, proxy machine IP, proxy machine port; 2) the command conversion message file g of the transformation rule filename of memory device model, each model correspondence; 3) the command conversion rule file h of the command information of storage unity of command, corresponding concrete model, but be not limited to these files.

Proxy machine, can select general PC for use, according to the quantity of the size of network size and the network equipment what, set its quantity, as long as satisfy the demands, concrete quantity is not limit, and it is mainly used in forwarding ordering to the network equipment, reception, the processing network equipment the output information after the command execution and processing result information is returned to server from server.

The network equipment comprises router, switch, and its producer, model are not limit, and is mainly used in to carry out the order that proxy machine sends over, and the information of terminal output is sent to proxy machine.

The annexation of each part is in system: server links to each other with some proxy machines, and every proxy machine links to each other with some the network equipments again.Transmitting two kinds of information between them, a kind of is command information, the order after promptly the feature card of the serviced device of unity of command is changed according to data file, and it sends the network equipment to through proxy machine; Another kind is a return information, i.e. output information after the network equipment fill order, and it is returned to server after proxy machine is handled.The command conversion status change situation that scene analysis plug-in unit in the server is finished can be with reference to Fig. 2, and it comprises coomand mode jump condition and coomand mode two parts, and wherein the coomand mode jump condition is:

(1) IncorrectCmd condition: if order does not meet transformation rule, then mate this condition, make order be transitted towards state final from state s0;

(2) CorrectCmd condition: if order meets transformation rule, then mate this condition, make order be transitted towards state send from state s0;

(3) Reply condition: if the ID that institute band order ID and transmission are ordered in the answer that receives is identical, then mate this condition, make order be transitted towards state final from state send;

(4) TimerExpiry condition:, make order be transitted towards state final from state send if timer expired then mates this condition.

Coomand mode is:

1) initial condition s0: order residing at the beginning state;

2) transmit status send: be used for the concurrent order of losing one's life of trigger event response plug-in unit conversion, open timer simultaneously and reply message age for receiving;

3) state of termination final: be used for the execution of the finish command.

With reference to Fig. 3, collocation method of the present invention comprises the steps:

Step 1, the design command set is placed data file in server.

Design one cover and the irrelevant unity of command collection of the concrete network equipment are write data file for every kind of unit type, and data file comprises: the command conversion rule file of the command information of (1) storage unity of command, corresponding concrete model; (2) the command conversion message file of the transformation rule filename of memory device model, each model correspondence; (3) the facility information file of memory device ID, unit type, proxy machine IP, proxy machine port is positioned over these files in the server then.

Step 2, server value-added tax function plug-in unit.

Feature card comprises command event to be gathered plug-in unit, command event form expansion plugin, scene analysis plug-in unit, event response plug-in unit and answer incident and gathers plug-in unit, with these plug-in units be compiled into dynamic link library put into server and revise each configuration file of plug-in unit correspondence can successful loading of plug-in on server.

Step 3, command event are gathered the unity of command generation command event of plug-in unit according to input.

The user needs the destination network device number of configuration and the order that unity of command is concentrated from terminal input, command event is gathered plug-in unit and is obtained after this order its form to be judged, if correct format, the then order of importing according to the command format encapsulation that defines in the command event form expansion plugin, then generate command event, if format error then finishes the execution of this order.

Step 4, the scene analysis plug-in unit is finished the command conversion status change.

After command event generates, the scene analysis plug-in unit is according to the command conversion rule file of command conversion message file and destination network device correspondence, the coomand mode jump condition is mated, whether the order of judging the terminal input meets transformation rule, if do not meet transformation rule, then mate the IncorrectCmd condition, order is transitted towards state final from state s0, carry out and finish, if meet transformation rule, then mate the CorrectCmd condition, order is transitted towards state send from state s0, and the action of trigger event response plug-in unit is also opened timer and replied message age for receiving.

Step 5, the conversion of event response plug-in unit also sends a command to proxy machine.

After the event response plug-in unit is triggered by the state send in the scene analysis plug-in unit, command conversion rule according to the destination network device correspondence, command conversion with the terminal input is some orders can carrying out on destination network device earlier, obtain the proxy machine IP that destination network device links to each other by the inquiry apparatus information file again, at last the command information after destination network device number, order ID and the conversion is sent to this proxy machine together.

Step 6, the proxy machine forward command is to destination network device.

After proxy machine receives information from server,, find the IP of this destination network device, then order is transmitted to destination network device and carries out, will order ID to be stored in this locality simultaneously according to destination network device number.

Step 7, the destination network device fill order also sends output information to proxy machine.

After destination network device is carried out the order of transmitting from proxy machine, terminal output information is replied to proxy machine, proxy machine focuses on these information, judge that whether order is by successful execution, if run succeeded, then the order ID with return information and preservation sends back to server together, if carry out failure, then returns the significant information and the order ID that carry out failure and gives server.

Step 8, answer incident are gathered plug-in unit and are received and export return information to server terminal.

Answer incident in the server is gathered plug-in unit and is always being detected the arrival whether return information is arranged, in case receive return information, generate the answer incident immediately, then stimulate scene analysis to carry out the coupling of coomand mode jump condition, in analyze replying with order ID with whether send the ID that orders identical, if it is identical, then mate the Reply condition, order is transitted towards state final from state send, the system print return information is to terminal, and finish the execution of this order, if inequality or do not receive return information all the time, then during the next command input, timer expired, coupling TimerExpiry condition, order also is transitted towards state final from state send, finishes its implementation.

Claims (6)

Translated fromChinese

1、一种网络设备统一配置系统，包括网络设备和服务器，其特征在于：1. A unified configuration system for network equipment, including network equipment and servers, characterized in that:网络设备的输入端连接有代理机，用于转发来自服务器的命令至网络设备、接收、处理网络设备中命令执行后的输出信息，并将处理结果返回给服务器；The input end of the network device is connected with a proxy machine, which is used to forward the command from the server to the network device, receive and process the output information after the command execution in the network device, and return the processing result to the server;服务器内加载有功能插件和数据文件，用于接受用户输入的命令和转换命令，并发送至代理机、接收回复输出到终端；The server is loaded with functional plug-ins and data files, which are used to accept commands and conversion commands input by users, send them to the agent, and receive replies and output them to the terminal;所述的功能插件包括：The functional plugins described include:A.接受输入命令、判断命令格式正误、封装并生成命令事件的命令事件采集插件；A. A command event collection plug-in that accepts input commands, judges whether the command format is correct, encapsulates and generates command events;B.接收回复信息、生成回复事件的回复事件采集插件；B. A reply event collection plug-in that receives reply information and generates reply events;C.定义命令、命令事件和回复事件格式的事件格式扩展插件；C. Event format extensions that define the format of commands, command events, and reply events;D.判断命令是否能被转换、触发响应插件转换命令、由回复事件到达或计时器超时结束命令转换执行状态变迁的场景分析插件；D. Judging whether the command can be converted, triggering the response plug-in conversion command, the scene analysis plug-in of the command conversion execution state transition when the reply event arrives or the timer times out;E.转换输入命令为能在目标设备执行的命令、并发送至代理机的事件响应插件；E. Convert the input command into a command that can be executed on the target device and send it to the event response plug-in of the agent;所述的数据文件包括：The data files described include:a.存储设备ID、设备型号、代理机IP、代理机端口的设备信息文件；a. Device information files storing device ID, device model, proxy machine IP, and proxy machine port;b.存储设备型号、各型号对应的转换规则文件名的命令转换信息文件；b. store the device model, the command conversion information file of the conversion rule file name corresponding to each model;c.存储统一命令、对应具体型号的命令信息的命令转换规则文件。c. A command conversion rule file storing unified commands and command information corresponding to specific models.2.根据权利要求1所述的网络设备统一配置系统，其特征在于：所述网络设备包括交换机、路由器。2. The unified configuration system for network devices according to claim 1, wherein the network devices include switches and routers.3.根据权利要求1所述的网络设备统一配置系统，其特征在于：所述代理机包括接收命令模块和发送回复模块，接收命令模块用于接收来自服务器的命令，转发命令给网络设备；发送回复模块用于接收并处理网络设备中命令执行后的输出信息，将处理后的信息返回给服务器。3. the network equipment unified configuration system according to claim 1, is characterized in that: described agent machine comprises receiving command module and sending reply module, and receiving command module is used for receiving the order from server, forwards order to network equipment; The reply module is used to receive and process the output information after the execution of the command in the network device, and return the processed information to the server.4.一种网络设备统一配置方法，包括如下步骤：4. A unified configuration method for network equipment, comprising the steps of:(1)设计一套可用于配置不同厂家、不同型号网络设备的统一命令集，将设备信息文件、命令转换信息文件、命令转换规则文件放置于服务器中；(1) Design a set of unified command sets that can be used to configure network devices of different manufacturers and models, and place the device information files, command conversion information files, and command conversion rule files in the server;(2)在服务器中加载命令事件采集插件、命令事件格式扩展插件、场景分析插件、事件响应插件、回复事件采集插件；(2) Load the command event collection plug-in, command event format extension plug-in, scene analysis plug-in, event response plug-in, reply event collection plug-in in the server;(3)用户从终端输入需要配置的目标网络设备号和统一命令集中的一条命令，命令事件采集插件获得该命令后对其格式进行判断，若格式正确，则根据命令事件格式扩展插件中定义的事件格式生成命令事件，若格式错误，则结束该条命令的执行；(3) The user inputs the target network device number to be configured and a command in the unified command set from the terminal, and the command event collection plug-in judges its format after obtaining the command. If the format is correct, it will expand the plug-in according to the command event format defined The event format generates a command event. If the format is wrong, the execution of the command will end;(4)命令事件生成后，场景分析插件根据命令转换信息文件和目标网络设备对应的命令转换规则文件，对命令状态转移条件进行匹配，判断终端输入的命令是否符合转换规则，若不符合转换规则，变迁命令状态，结束该条命令的执行，若符合转换规则，亦变迁命令状态，触发事件响应插件转换并发送命令，同时开启计时器为接收回复消息计时；(4) After the command event is generated, the scene analysis plug-in matches the command state transition conditions according to the command conversion information file and the command conversion rule file corresponding to the target network device, and judges whether the command input by the terminal conforms to the conversion rule. , change the command state, end the execution of the command, if it meets the conversion rules, also change the command state, trigger the event response plug-in to convert and send the command, and start the timer to time the reply message;(5)事件响应插件由场景分析插件触发后，根据目标网络设备对应的命令转换规则，先将终端输入的命令转换为能在目标网络设备上执行的若干条命令，再通过查询设备信息文件获得目标网络设备相连的代理机IP，最后将目标网络设备号、命令ID和转换后的命令信息一起发送到该代理机；(5) After the event response plug-in is triggered by the scene analysis plug-in, according to the command conversion rules corresponding to the target network device, the command input by the terminal is first converted into several commands that can be executed on the target network device, and then obtained by querying the device information file. The IP of the proxy machine connected to the target network device, and finally send the target network device number, command ID and converted command information to the proxy machine together;(6)代理机接收到来自服务器的信息后，根据目标网络设备号，查找到该目标网络设备的IP，然后把命令转发给目标网络设备执行，同时将命令ID存储于本地；(6) After receiving the information from the server, the agent machine searches for the IP of the target network device according to the target network device number, then forwards the order to the target network device for execution, and stores the command ID locally;(7)目标网络设备执行来自代理机转发的命令后，将终端输出信息回复给代理机进行处理，处理后的回复信息和保存的命令ID被代理机一并发回给服务器；(7) After the target network device executes the command forwarded from the proxy machine, the terminal output information is returned to the proxy machine for processing, and the processed reply information and the saved command ID are sent back to the server by the proxy machine;(8)服务器中的回复事件采集插件将接受到的回复信息生成回复事件后，场景分析插件通过匹配状态转移条件，分析回复中所带的命令ID与发送命令的ID是否相同，若相同，变迁命令状态，打印回复信息到终端，并结束该条命令的执行，若不相同或始终未接受到回复信息，则下一条命令输入时，计时器超时，匹配该条命令的状态转移条件，变迁命令状态，结束该条命令的执行。(8) After the reply event collection plug-in in the server generates a reply event from the received reply information, the scene analysis plug-in analyzes whether the command ID carried in the reply is the same as the ID of the sent command by matching the state transition conditions. Command status, print the reply information to the terminal, and end the execution of the command. If it is not the same or the reply information has not been received, the timer will time out when the next command is entered, and the state transition condition of the command will be matched. Change the command status, end the execution of this command.5.根据权利要求4所述的网络设备统一配置方法，其中步骤4所述命令状态转移条件5. The network device unified configuration method according to claim 4, wherein the command state transition condition described in step 4包括：include:1)IncorrectCmd条件：若命令不符合转换规则，则匹配该条件，使命令从状态s0变迁到状态final；1) IncorrectCmd condition: if the command does not meet the conversion rules, then match the condition, so that the command transitions from state s0 to state final;2)CorrectCmd条件：若命令符合转换规则，则匹配该条件，使命令从状态s0变迁到状态send；2) CorrectCmd condition: if the command meets the conversion rule, then match the condition, so that the command transitions from state s0 to state send;3)Reply条件：若接收到的回复中所带命令ID与发送命令的ID相同，则匹配该条件，使命令从状态send变迁到状态final；3) Reply condition: If the command ID contained in the received reply is the same as the ID of the sent command, the condition will be matched so that the command transitions from the state send to the state final;4)TimerExpiry条件：若计时器超时，则匹配该条件，使命令从状态send变迁到状态final。4) TimerExpiry condition: if the timer expires, the condition is matched, so that the command transitions from the state send to the state final.6.根据权利要求4所述的网络设备统一配置方法，其中步骤4所述的命令状态包括：6. The network device unified configuration method according to claim 4, wherein the command status described in step 4 comprises:a)初始状态s0：命令一开始所处的状态；a) Initial state s0: the state at the beginning of the command;b)发送状态send：用于触发事件响应插件转换并发送命令，同时开启计时器为接收回复消息计时；b) Send status send: used to trigger event response plug-in conversion and send commands, and start the timer to time the reply message;c)终止状态final：用于结束命令的执行。c) Termination state final: used to end the execution of the command.

Images