CN114157653A

Movatterモバイル変換

Info

Publication number: CN114157653A
Application number: CN202111486057.3A
Authority: CN
Inventors: 林道彬; 林仁文; 李捷; 林鎏娟
Original assignee: Fujian Star Net eVideo Information Systems Co Ltd
Current assignee: Fujian Star Net eVideo Information Systems Co Ltd
Priority date: 2021-12-07
Filing date: 2021-12-07
Publication date: 2022-03-08

Abstract

Translated fromChinese

本发明提供了一种上网方法、局域网服务器和计算机存储介质，包括以下步骤：云端服务器远程开启局域网服务器识别功能，使局域网服务器可识别局域网设备；局域网设备通过通信协议向所述局域网服务器发送上网请求；局域网服务器根据所述上网请求识别所述局域网设备在局域网上的地址；局域网服务器将所述地址映射为互联网IP地址；局域网设备使用所述互联网IP地址连接互联网。局域网服务器根据上网请求识别局域网设备的地址，并将局域网设备的地址映射为互联网IP地址，从而使局域网设备上网时方便识其身份，并且通过云端服务器远程开启局域网服务器识别功能，从而提高局域网设备的上网管控程度，以及降低管理成本。

The invention provides a method for surfing the Internet, a local area network server and a computer storage medium, comprising the following steps: the cloud server remotely enables the local area network server identification function, so that the local area network server can identify the local area network device; the local area network device sends the Internet access request to the local area network server through a communication protocol The local area network server identifies the address of the local area network device on the local area network according to the Internet access request; the local area network server maps the address to an Internet IP address; the local area network device uses the Internet IP address to connect to the Internet. The LAN server identifies the address of the LAN device according to the Internet access request, and maps the address of the LAN device to the Internet IP address, so that the LAN device can easily identify its identity when surfing the Internet. Internet access control degree, and reduce management costs.

Description

Internet access method, local area network server and computer storage medium

Technical Field

The present invention relates to the field of computer network technology, and in particular, to a method for accessing a network, a local area network server, and a computer storage medium.

Background

Network security is an important part of internet technology, and internet management technology is born for realizing network security. The internet access management technology is currently widely applied to router internet access, server device network management and the like, for example, network devices perform authentication internet access through routers. The identity-recognizable internet access management method is used for recognizing the identity of internet access equipment and enabling the internet access equipment to access the internet in a managed state. The existing identity-recognizable internet management method is applied to the internet and the local area network, but when equipment in the local area network needs to be connected with the internet, the existing identity-recognizable internet management is complex in implementation mode, low in management and control degree and high in management cost.

Disclosure of Invention

Therefore, it is necessary to provide an internet access method for solving the technical problem of low internet access control degree of the local area network device.

In order to achieve the above object, the present invention provides a method for surfing the internet, which comprises the following steps:

the cloud server remotely starts a local area network server identification function, so that the local area network server can identify local area network equipment;

the local area network equipment sends an internet surfing request to the local area network server through a communication protocol;

the local area network server identifies the local area network equipment according to the internet surfing request;

the local area network server maps the address of the local area network equipment on the local area network into an internet IP address;

and the local area network equipment is connected with the Internet by using the Internet IP address.

Further, in the step "the local area network server maps the address of the local area network device on the local area network to an internet IP address", the local area network server maps the address to the internet IP address using NAT address mapping.

Further, the step of remotely starting the local area network server identification function by the cloud server includes:

the local area network server starts an active acquisition function;

the cloud server informs the local area network server to start remote control in a message queue mode, and the local area network server identifies local area network equipment by starting the remote control.

Further, the communication protocol is an internal communication protocol of the local area network, and the internet access request includes: the device information of the local area network device and the internet access service type, wherein the device information comprises a device ID and/or a local area network IP address.

Further, the local area network server identifies the identity of the local area network device according to the device ID or the local area network IP address.

Further, the method also comprises the following steps:

when the Internet access is not needed, the local area network equipment sends an Internet access ending request to the local area network server through an internal communication protocol of the local area network;

the local area network server finishes mapping the address to the internet IP address.

Furthermore, the local area network device is an on-demand terminal in a digital audio-visual place box, and the local area network server is a digital audio-visual place server;

the internet access service type in the internet access request comprises downloading advertisement information, and the advertisement information is controlled by the on-demand terminal to be played in a box.

In order to solve the above technical problem, the present invention further provides another technical solution:

a local area network server is connected with local area network equipment, and a cloud server remotely starts an identification function so that the local area network server can identify the local area network equipment;

the local area network server identifies the local area network equipment according to the internet surfing request sent by the local area network equipment and maps the address of the local area network equipment in a local area network into an internet IP address; and the Internet IP address is used for connecting the local area network equipment with the Internet.

Further, the local area network server maps the address to an internet IP address using NAT address mapping.

a computer storage medium having a computer program stored thereon, which when executed by a processor, implements the steps performed by the local area network server in the internet access method according to any one of the above.

Different from the prior art, the local area network server identifies the address of the local area network equipment according to the internet request and maps the address of the local area network equipment into an internet IP address, so that the identity of the local area network equipment can be conveniently identified when the local area network equipment is on the internet, and the local area network server identification function is remotely started through the cloud server, so that the internet access control degree of the local area network equipment is improved, and the management cost is reduced.

In the technical scheme, the local area network server and the local area network equipment are communicated through an internal communication protocol of the local area network, the local area network server can identify the identity of the local area network equipment according to the internal communication protocol, the identity of the internet equipment can be identified without occupying the bandwidth of the internet, and the possibility of bandwidth pollution of the external network is reduced; the local area network equipment is isolated from the external network and can not be directly accessed to the Internet, so that the safety of the local area network equipment can be effectively ensured.

In addition, in the technical scheme, the local area network server can accurately control the internet access service of the local area network equipment through an internal communication protocol, so that the accurate internet access control is realized, and the internet access safety of the local area network equipment is improved.

Drawings

Fig. 1 is a flowchart of a method for accessing a network according to an embodiment;

FIG. 2 is a diagram illustrating a LAN component architecture according to an embodiment;

FIG. 3 is a flow diagram illustrating remote activation of a LAN server identification function in accordance with an exemplary embodiment;

FIG. 4 is a diagram of a LAN server according to an embodiment;

FIG. 5 is a schematic diagram of a computer storage medium according to an embodiment;

description of reference numerals:

100. a cloud server;

200. a local area network server;

300. a local area network device;

400. a computer storage medium;

Detailed Description

To explain technical contents, structural features, and objects and effects of the technical solutions in detail, the following detailed description is given with reference to the accompanying drawings in conjunction with the embodiments.

The invention designs an internet method capable of identifying the identity of local area network equipment in a local area network, the local area network equipment is isolated from the internet, so that the local area network equipment cannot be directly connected with the internet. The local area network device and the local area network server are communicated through a local area network protocol, when the local area network device needs to be connected with the Internet, the local area network device sends an Internet access request to the local area network server, the local area network server identifies the local area network device and obtains a corresponding Internet IP address through address mapping, the local area network device can perform proxy Internet access by using the Internet IP address, and the local area network server can perform Internet access management on the local area network device according to the mapping relation and the communication protocol.

In the present invention, the lan refers to a computer network composed of limited nodes in a local area and capable of transmitting information with each other, and the lan may be any one of Ethernet (Ethernet), Token Ring (Token Ring), FDDI, Asynchronous Transfer Mode (ATM).

The local area network device is a terminal which is located in the local area network, is isolated from the internet and cannot be directly connected with the internet, and the local area network device comprises electronic devices with information processing, such as a computer, a smart phone, a tablet device and a set-top box.

The local area network server is a node in the local area network, and plays roles in information transmission, storage, management and the like in the local area network, so that the local area network can normally work and provide information interaction service. The lan server may be a lan gateway, lan switch, or other device.

The cloud server is called a cloud server, and can be a server cluster consisting of a plurality of distributed servers and used for providing functions of data analysis, processing, storage and the like. The cloud server can be provided by third-party companies such as Tencent and Ali, so that a user does not need to purchase server hardware, and the cloud server can provide simple, efficient, safe and reliable computing service with elastically-stretchable processing capacity.

Referring to fig. 1, the internet access method of the present embodiment includes the following steps:

s101, remotely starting a local area network server identification function by a cloud server to enable the local area network server to identify local area network equipment;

s102, the local area network equipment sends an internet access request to the local area network server through a communication protocol;

s103, the local area network server identifies the local area network equipment according to the internet surfing request;

s104, the local area network server maps the address of the local area network equipment in the local area network to be an Internet IP address;

and S105, the local area network equipment uses the Internet IP address to connect the Internet.

In step S101, thelan server 200 is connected to thecloud server 100 via the internet, and thecloud server 100 provides services such as function setting, data processing, data storage, and management for thelan server 200. As shown in fig. 2, thecloud server 100 may be connected to two ormore lan servers 200, eachlan server 200 corresponds to a lan, and eachlan server 200 is connected to two ormore lan devices 300.

Thecloud server 100 is provided with a control button (virtual button) by which thelan server 200 has an identity recognition function, and thelan server 200 can recognize the identity of thelan device 300 in the lan.

In step S102, thelan device 300 interacts with thelan server 200 through a communication protocol, which may support a plurality of different communication protocols in different types of lans, and the lan device and the lan server may use an existing lan communication protocol. When the local area network device needs to surf the internet (namely, is connected with the internet), the local area network device sends a surfing request to the local area network server through a communication protocol, wherein the surfing request comprises device information, a surfing service type, a network start-stop state and the like of the local area network device.

In step S103, thelan server 200 may identify the address of thelan device 300 on the lan by looking up a table or the like. Thelan server 200 stores a correspondence table between the lan device information and the address, and when thelan server 200 obtains the device information of the lan device, the address of thelan device 300 on the lan can be obtained by looking up the table.

Since the address of thelan device 300 on the lan can only be identified in the lan where the lan is located, and cannot be directly connected to the internet, in step S104, thelan server 200 maps the address of the lan device on the lan to an internet IP address that can be used on the internet by using an address mapping technique, and therefore, in step S105, the lan device can surf the internet by using the internet IP address. When the address is mapped, the address of the local area network device on the local area network corresponds to the internet IP address one by one, so that when the local area network device uses the internet IP address to surf the internet, the on-line local area network device can be determined through the internet IP address and the address mapping relation.

In the above technical solution, thelan server 200 may identify the address of thelan device 300 according to the internet request, and map the address of thelan device 300 to an internet IP address, so as to conveniently identify the identity of thelan device 300 when the lan device is on the internet, and remotely start the identification function of thelan server 200 through thecloud server 100, thereby improving the internet access control degree of the lan device, and reducing the management cost.

In some embodiments, in the step of "the lan server maps the address of the lan device on the lan to an internet IP address" in step S103, the lan server maps the address to an internet IP address using NAT address mapping.

NAT (Network Address Translation), which is an english name, can translate a local Network Address into an internet IP Address through NAT Address mapping. When NAT address mapping is used, NAT software needs to be installed on a local area network server, and the server provided with the NAT software is called an NAT server. Thus, when all lan devices using a lan address (private IP address) are connected to the internet, their local lan addresses are translated to internet IP addresses on the NAT server, and the lan devices use the internet IP addresses and the internet connection.

In the above steps S104 and S105, the localarea network server 200 is provided with NAT software, the localarea network server 200 may generate an IP mapping environment of the localarea network device 300, and the localarea network device 300 may obtain an internet IP address through NAT address mapping to connect to the internet.

As shown in fig. 3, in some embodiments, the step "the cloud server remotely turns on the local area network server identification function" includes:

s301, the local area network server starts an active acquisition function;

s302, the cloud server informs the local area network server to start remote control in a message queue mode, and the local area network server identifies local area network equipment by starting the remote control.

In step S301, the lan server starts the active acquisition function, so that the control information sent by thecloud server 100 can be received in real time, and the identification function is started according to the received control information. In step S302, the message queue is equivalent to a container for temporarily storing messages to be transmitted in the communication between the lan server and the cloud server, the cloud server first sends control information to be transmitted to the message queue, and the message queue sends the control information to the lan server, where the message queue mainly aims to provide routing and ensure reliable transmission of the messages; if the LAN server does not receive or is unavailable when the message is sent, the message queue will hold the message until it can be successfully delivered to the LAN server.

Therefore, in the above embodiment, the lan server starts the active acquisition function, and the cloud server notifies the lan server to start remote control in a message queue manner, so that reliability of remote control of the lan server can be improved, and control failure caused by a network environment can be avoided.

In some embodiments, the communication protocol is an internal communication protocol of the local area network, and the internet access request includes: the device information of the local area network device and the internet access service type, wherein the device information comprises a device ID and/or a local area network IP address.

The device information is mainly used for identifying the identity of the device, and the local area network server identifies the identity of the local area network device according to the device ID or the local area network IP address. The internet access service type refers to what service type is executed by the local area network device to connect with the internet, and the internet access service type can include downloading multimedia files, downloading advertisement data and the like. The network request includes the network service type, so the local area network server can only open the network function and resource corresponding to the network service type through controlling the network port, etc., and the network function and resource irrelevant to the network service type are not opened. Therefore, in the implementation method, the internet access service of the local area network device can be accurately controlled through the internal communication protocol, the accurate internet access control is realized, the risk that the local area network device is attacked by the network is reduced, and the internet access safety of the local area network device is improved.

Further, in some embodiments, the internet access method further includes the steps of:

For example, when a certain service is added to the local area network device in the place, such as a negative income augmentation advertisement service, the local area network device is required to surf the internet to download the data of the advertisement service, and the local area network device can send a surfing request for connecting the internet to the place server through the local area network internal protocol; when the service is finished or the internet access is not needed, the local area network device sends an internal protocol of the state of no internet access to a local area network server (namely, a site server), and the local area network server manages the proxy mapping corresponding to the local area network device to finish the internet access.

Further, in some embodiments, the local area network device is an on-demand terminal in a digital audiovisual place box, and the local area network server is a digital audiovisual place server;

the internet access service type in the internet access request comprises downloading advertisement information, and the advertisement information is controlled by the set top box to be played in the box.

The digital audio-visual place comprises a KTV, a bar, a cinema and the like, the on-demand terminal can be connected with a display screen and sound equipment, the sound equipment comprises audio input equipment and audio output equipment, the on-demand terminal can be specifically on-demand equipment such as a set top box and the like, and the set top box is used for controlling the display screen and the sound equipment to realize the functions of playing and singing multimedia files and the like. The set top box is connected with the digital audio-visual place server through a local area network, one digital audio-visual place server can be connected with a plurality of set top boxes, the set top box is connected with the digital audio-visual place server through an internal communication protocol of the local area network, and the digital audio-visual place server is connected with the cloud server through the Internet.

The cloud server can remotely start the local area network server identification function and start the digital audio-visual place server identification function in the embodiment, so that the digital audio-visual place server can identify the on-demand terminal identity according to the internet request.

When the on-demand terminal needs to be networked, the on-demand terminal interacts an internet request to the digital audiovisual place server through an internal communication protocol, requests the digital audiovisual place server to start an internet access certificate, and the internet access request of the internal communication protocol comprises equipment information, an internet access service type and a network start-stop state.

And after the digital audio-visual place server authenticates that the on-demand terminal can access the Internet according to the Internet access service type, the address of the on-demand terminal in the local area network is mapped into the IP address of the Internet through NAT address mapping. And the on-demand terminal (such as a set-top box) realizes internet surfing through the IP address of the internet obtained by mapping.

For example, when an advertisement service is newly added to the digital audiovisual site device, the set-top box needs to surf the internet to download advertisement data, at this time, the set-top box can send a request for surfing the internet to the site server through the internal protocol, the digital audiovisual site server maps the address of the set-top box in the local area network into the IP address of the internet through NAT address mapping, and the set-top box surfs the internet by using the IP address. When the downloading of the advertisement data is finished or the Internet surfing is not needed, the set-top box sends a request for finishing the Internet surfing, and the digital audio-visual place server manages the corresponding address mapping agent mapping to finish the Internet surfing.

As shown in fig. 4, in one embodiment, a localarea network server 200 is provided. Thelan server 200 is connected to thelan device 300 in the above embodiment, and thelan server 200 remotely starts the identification function from thecloud server 100, so that thelan server 200 can identify the lan device;

thelan server 200 identifies the lan device according to the internet access request sent by thelan device 300, and maps the address of the lan device in the lan to an internet IP address; and the Internet IP address is used for connecting the local area network equipment with the Internet.

Since the address of thelan device 300 on the lan can only be identified in the lan where the lan is located, the lan cannot be directly used on the internet, thelan server 200 maps the address of the lan device on the lan to an internet IP address that can be used on the internet by using an address mapping technique, and the lan device can use the internet IP address to surf the internet. When the address is mapped, the address of the local area network device on the local area network corresponds to the internet IP address one by one, so that when the local area network device uses the internet IP address to surf the internet, the on-line local area network device can be determined through the internet IP address and the address mapping relation.

In an embodiment, the communication protocol is an internal communication protocol of the local area network, and the internet access request includes: the device information of the local area network device and the internet access service type, wherein the device information comprises a device ID and/or a local area network IP address.

In one embodiment, the local area network server maps the address to an internet IP address using NAT address mapping.

In the above embodiment, the localarea network server 200 is provided with NAT software, the localarea network server 200 can generate an IP mapping environment of the localarea network device 300, and the localarea network device 300 can obtain an internet IP address through NAT address mapping to connect to the internet.

As shown in fig. 5, in an embodiment, acomputer storage medium 400 is provided, thecomputer storage medium 400 having stored thereon a computer program, which when executed by a processor, implements the steps as performed by the localarea network server 200 in any of the above embodiments.

In the above embodiment, thelan server 200 identifies the address of thelan device 300 according to the internet access request, and maps the address of thelan device 300 to an internet IP address, so that the identity of the lan device can be conveniently identified when the lan device accesses the internet, and the lan server identification function is remotely turned on through the cloud server, thereby improving the internet access control degree of the lan device and reducing the management cost.

In the above embodiment, thelan server 200 and thelan device 300 communicate with each other through the internal communication protocol of the lan, and thelan server 200 can identify the identity of thelan device 300 according to the internal communication protocol, and can identify the identity of the internet access device without occupying the internet bandwidth, thereby reducing the possibility of external bandwidth pollution; the local area network equipment is isolated from the external network and can not be directly accessed to the Internet, so that the safety of the local area network equipment can be effectively ensured.

In the above embodiment, thelan server 200 may accurately control the internet access service of thelan device 300 through an internal communication protocol, so as to realize accurate internet access control and improve the internet access security of the lan device.

It should be noted that, although the above embodiments have been described herein, the invention is not limited thereto. Therefore, based on the innovative concepts of the present invention, the technical solutions of the present invention can be directly or indirectly applied to other related technical fields by making changes and modifications to the embodiments described herein, or by using equivalent structures or equivalent processes performed in the content of the present specification and the attached drawings, which are included in the scope of the present invention.