CN104506593A

Movatterモバイル変換

Info

Publication number: CN104506593A
Application number: CN201410765938.2A
Authority: CN
Inventors: 梅烽; 陈励
Original assignee: Shanghai Yinlian Enterprise Consulting Partnership (general Partnership
Current assignee: Shanghai Yinlian Enterprise Consulting Partnership (general Partnership
Priority date: 2014-12-11
Filing date: 2014-12-11
Publication date: 2015-04-08

Abstract

本发明涉及一种大规模可扩展的免费无线增值平台，包括：至少一个以上的独立子平台，所述独立子平台包括3G无线路由器、用户端、行为网关及本地路由器，用于对接网络的中央对接路由器，用户上网行为分析模块，对所有3G无线路由器进行统一监控、管理、配置及上网流量统计的设备与平台管理模块，分析判断用户所使用的设备类型、接入的地点及时间，以执行相应指令的规则引擎模块，用户通过信息验证后，对用户的来源、类型、喜好及上网行为分析，提供相对应的增值服务的增值平台模块；本发明优点：采用本发明的中央平台、本地3G无线路由器，运营商基于3G网络的VPDN网络，为用户端提供免费无线的认证、接入和接入后的增值服务。为满足用户的不同需求，用户验证方式可以多样性。

The present invention provides a large-scale scalable free wireless value-added platform, comprising: at least one or more independent sub-platforms, the independent sub-platforms comprising a 3G wireless router, a user terminal, a behavior gateway and a local router, a central docking router for docking with a network, a user online behavior analysis module, a device and platform management module for uniformly monitoring, managing, configuring and online traffic statistics of all 3G wireless routers, a rule engine module for analyzing and judging the device type, access location and time used by the user to execute corresponding instructions, and a value-added platform module for analyzing the source, type, preference and online behavior of the user after the user passes the information verification, and providing corresponding value-added services; the present invention has the advantages that by using the central platform and local 3G wireless router of the present invention, the operator provides free wireless authentication, access and post-access value-added services for the user terminal based on the VPDN network of the 3G network. In order to meet the different needs of users, the user verification method can be diversified.

Description

Translated fromChinese

一种大规模可扩展的免费无线增值平台A Massively Scalable Free Wireless Value-Added Platform

[技术领域][technical field]

本发明涉及电子通信技术领域，具体地说是一种免大规模可扩展的免费无线增值平台。The invention relates to the technical field of electronic communication, in particular to a large-scale extensible free wireless value-added platform.

[背景技术][Background technique]

今年越来越多的无线网络服务因为商业目的而向公众提供服务，而这些无线网络都是分散的，或是部分中央化的，或必须以本地固网宽带为基础的，局限性很大。同时用户端通过这些无线网络服务所产生的后续行为在现有的各种技术平台上，不仅不能全生命周期的进行跟踪，也不能和用户身份的唯一性进行绑定后进行以单个用户端为基础的行为分析，即使能够有一定的分析，也仅是只能基于一个群体样本进行的。This year, more and more wireless network services are provided to the public for commercial purposes, and these wireless networks are decentralized, or partially centralized, or must be based on local fixed-line broadband, which has great limitations. At the same time, the follow-up behaviors generated by the client through these wireless network services can not only be tracked throughout the life cycle on the existing various technology platforms, but also cannot be bound to the uniqueness of the user's identity and performed on a single client. Basic behavioral analysis, even if it can be analyzed to a certain extent, can only be done based on a group sample.

[发明内容][Content of the invention]

本发明的目的就是要解决上述的不足，而提供一种大规模可扩展的免费无线增值平台。采用本发明的中央平台、本地3G无线路由器，运营商基于3G网络的VPDN网络，在集成了其他硬件和设备，为用户端提供免费无线的认证、接入和接入后的增值服务。The purpose of the present invention is to solve the above-mentioned deficiencies, and provide a large-scale scalable free wireless value-added platform. Using the central platform and the local 3G wireless router of the present invention, the operator integrates other hardware and equipment based on the VPDN network of the 3G network to provide free wireless authentication, access and value-added services after access for the user.

为实现上述目的设计一种大规模可扩展的免费无线增值平台，该平台包括：Design a large-scale scalable free wireless value-added platform to achieve the above purpose, the platform includes:

至少一个以上的独立子平台：包括3G无线路由器、用户端、行为网关及本地路由器，所述3G无线路由器提供用户端WIFI接入，同时通过3G信号链路与中央相连，所述行为网关提供用户端Internet接入，并对用户上网行为进行审计和限制，所述本地路由器提供不同网络之间信息互通；At least one independent sub-platform: including 3G wireless router, user end, behavioral gateway and local router. The 3G wireless router provides WIFI access of the user end, and is connected to the center through a 3G signal link at the same time. The behavioral gateway provides user end Internet access, and audit and limit the user's online behavior, and the local router provides information exchange between different networks;

中央对接路由器：用于对接网络；Central docking router: used to connect to the network;

用户上网行为分析模块：收集用户上网行为日志，对用户的行为进行分析；User online behavior analysis module: collect user online behavior logs and analyze user behavior;

设备与平台管理模块：对所有3G无线路由器进行统一监控、管理、配置及上网流量统计等；Equipment and platform management module: conduct unified monitoring, management, configuration and Internet traffic statistics for all 3G wireless routers;

缓存模块：提供高速缓存，用户以最快的方式打开访问页面；Cache module: provide high-speed cache, and users can open access pages in the fastest way;

规则引擎模块：分析判断用户所使用的设备类型、接入的地点及时间，以执行相应指令。Rule engine module: analyze and judge the type of equipment used by the user, the location and time of access, and execute the corresponding instructions.

增值平台模块：用户通过信息验证后，对用户的来源、类型、喜好及上网行为分析，提供相对应的增值服务。Value-added platform module: After the user passes the information verification, analyze the source, type, preference and online behavior of the user, and provide corresponding value-added services.

所述增值平台中的用户信息验证方式采用:短消息发送验证码、由CRM模块进行验证、与第三方CRM对接进行用户验证或者在微信企业号、服务号、订阅号的基础上，给微信公众号粉丝提供一键授权验证方式。The user information verification method in the value-added platform adopts: sending verification code by short message, verifying by CRM module, docking with third-party CRM for user verification or on the basis of WeChat enterprise number, service number, subscription number, to WeChat public No. fans provide a one-click authorization verification method.

本发明有益效果：Beneficial effects of the present invention:

出口唯一性：3G无线路由器和中央基于运营商基于3G网络的VPDN网络进行连接，保证了所有的流量除了和中央平台进行内部交互，只能通过指定的出口连接到Internet，为同一获取全局用户行为，和后续的大数据分析提供了依据。Exit uniqueness: The 3G wireless router is connected to the central operator-based VPDN network based on the 3G network, which ensures that all traffic can only be connected to the Internet through the specified exit, except for the internal interaction with the central platform, to obtain global user behavior for the same , and the follow-up big data analysis provides a basis.

身份唯一性：在基于VPDN网络的L2TPVPN隧道内，通过嵌套第二层L2TPVPN隧道，以及中央地址分配，确保了每台本地3G无线路由器拥有一个唯一的，可识别的子网号码，基于该子网号码每台接入无线的设备拥有一个中央统一管理的唯一的私网地址，在中央平台CRM模块的配合下，实现了每台设备的身份唯一性，以及和用户端信息的唯一性绑定，同一获取全局用户行为。Identity uniqueness: In the L2TPVPN tunnel based on the VPDN network, by nesting the second-layer L2TPVPN tunnel and central address allocation, it is ensured that each local 3G wireless router has a unique and identifiable subnet number. Network number Each device connected to the wireless network has a unique private network address that is centrally managed and unified. With the cooperation of the central platform CRM module, the unique identity of each device and the unique binding with the user terminal information are realized. , the same way to get the global user behavior.

基于来源判断的同一平台架构下的多个独立的子平台：在身份唯一性的基础上，中央的后台内容管理模块CMS基于用户端的身份和后台规则引擎将用户端分配到预设的，完全独立的子站点上，展现完全不同的内容，并且实现完全不同的互动交互逻辑。Multiple independent sub-platforms under the same platform architecture based on source judgment: on the basis of identity uniqueness, the central background content management module CMS assigns users to preset, completely independent On the sub-site of , display completely different content, and realize completely different interaction logic.

分层横向可扩展性：每个架构层面均可以按照设计容量进行无限的横向扩展，充分考虑了高并发、大负载的可扩展需求，使平台应对快速扩展和大数量的用户并发访问。在前端层根据设备性能将拨入中央平台的用户按每1000个远端子站点(本地路由器)划分为一个群集，配置单独的接入路由和出口行为网关，每个群集理论最大负载为20000个用户并发。通过汇聚层路由器，前端层的群集数量理论上可以无限扩展。Hierarchical horizontal scalability: Each architectural level can be infinitely scaled according to the design capacity, fully considering the scalability requirements of high concurrency and heavy load, so that the platform can cope with rapid expansion and a large number of concurrent users. At the front-end layer, according to the performance of the equipment, the users dialing in to the central platform are divided into a cluster for every 1,000 remote sub-sites (local routers), and a separate access route and egress behavior gateway are configured. The theoretical maximum load of each cluster is 20,000 users. concurrent. Through the aggregation layer router, the number of clusters at the front-end layer can theoretically be expanded infinitely.

在规则引擎层和应用层前端采用了自建缓存群集，负载均衡和站点群集的方法，不仅提高了用户访问的响应速度，而且每个群集，每层均可以横向扩展，按每个站点理论并发连接数2500来计算，一个群集在高可用的前提下可以容纳不低于5000个并发的用户访问，且群集本身还可以进行横向扩展，通过增加节点的方式来提高系统容量。At the front end of the rule engine layer and the application layer, the method of self-built cache cluster, load balancing and site cluster is adopted, which not only improves the response speed of user access, but also each cluster, each layer can be expanded horizontally, and the theoretical concurrency of each site The number of connections is calculated at 2500. A cluster can accommodate no less than 5000 concurrent user visits under the premise of high availability, and the cluster itself can also be scaled out to increase system capacity by adding nodes.

验证方式多样性：考虑到用户的需求多种多样，对本平台的用户验证也提供了多种方式，例如：短消息发送验证码，由CRM模块进行验证，与第三方CRM对接进行用户验证，以及在微信企业号、服务号、订阅号的基础上，给微信公众号粉丝提供一键授权验证。Diversity of verification methods: Considering the diverse needs of users, this platform also provides a variety of methods for user verification, such as: sending verification codes by SMS, verification by the CRM module, and user verification by connecting with a third-party CRM, and On the basis of WeChat enterprise account, service account, and subscription account, it provides one-click authorization verification for fans of WeChat public accounts.

合规性：考虑了政策合规性，所有上网历史以及对应的身份信息可以通过公安接口服务器同步到公安金盾服务器。Compliance: Considering policy compliance, all online history and corresponding identity information can be synchronized to the public security golden shield server through the public security interface server.

[附图说明][Description of drawings]

图1是本发明的结构框图；Fig. 1 is a block diagram of the present invention;

[具体实施方式][Detailed ways]

下面结合附图对本发明作以下进一步说明：Below in conjunction with accompanying drawing, the present invention will be further described as follows:

参见附图1，本发明包括：Referring to accompanying drawing 1, the present invention comprises:

接入流程：以联通网络为例，联通拨号连入中央对接路由器，和中央建立加密通信，3G无线路由器通过联通网络向中央对接路由器发起加密连接请求，中央接受加密请求并由认证服务器分配一个唯一的internet IP地址给3G无线路由器，3G无线路由器和中央成功建立加密通信。Access process: Take China Unicom network as an example, China Unicom dials into the central docking router, and establishes encrypted communication with the center. The 3G wireless router initiates an encrypted connection request to the central docking router through the Unicom network, and the center accepts the encryption request and the authentication server assigns a unique The internet IP address is given to the 3G wireless router, and the 3G wireless router and the center successfully establish encrypted communication.

用户端通过3G无线路由器的无线模块接入网络，3G无线路由器分配一个唯一的IP地址给用户端，用户端获取IP后将会跳转到portal页面，指定连接到一个更快的高速缓存，以最快的方式打开认证页面。根据portal提示，用户端完成认证，认证完成后，用户端将获得上网权限。The client accesses the network through the wireless module of the 3G wireless router, and the 3G wireless router assigns a unique IP address to the client. The fastest way to open the authentication page. According to the portal prompt, the user terminal completes the authentication, and after the authentication is completed, the user terminal will obtain the Internet access permission.

本发明并不受上述实施方式的限制，其他的任何未背离本发明的精神实质与原理下所作的改变、修饰、替代、组合、简化，均应为等效的置换方式，都包含在本发明的保护范围之内。The present invention is not limited by the above-mentioned embodiments, and any other changes, modifications, substitutions, combinations, and simplifications that do not deviate from the spirit and principles of the present invention should be equivalent replacement methods and are included in the present invention. within the scope of protection.

Claims

1. an extensive extendible free wireless value-added platform, it is characterized in that, this platform comprises:

At least more than one independent sub-platform: comprise 3G wireless router, user side, behavior gateway and local router, described 3G wireless router provides user side WIFI to access, be connected with central authorities by 3G signal link simultaneously, described behavior gateway provides user side Internet to access, and user's internet behavior is audited and limits, described local router provides information mutual communication between heterogeneous networks;

Central authorities' docking router: for docking network;

User's internet behavior analysis module: collect the daily record of user's internet behavior, the behavior of user is analyzed;

Equipment and platform management module: unified monitoring, management, configuration and surfing flow are carried out to all 3G wireless routers and adds up;

Cache module: high-speed cache is provided, user opens accession page in the fastest mode;

Rule engine module: analyze and judge device type that user uses, the place of access and time, to perform command adapted thereto.

Value increasing platform module: user, by after Information Authentication, to the source of user, type, hobby and internet behavior analysis, provides corresponding value-added service.

2. extensive extendible free wireless value-added platform as claimed in claim 1, it is characterized in that: user profile verification mode in described value increasing platform adopts: short message sends identifying code, undertaken verifying by CRM module, dock with third party CRM carry out user rs authentication or at micro-letter enterprise number, to serve number, on the basis of to subscribe to number, provide a key authority checking mode to micro-letter public number bean vermicelli.