CN114726592A

Movatterモバイル変換

Info

Publication number: CN114726592A
Application number: CN202210279336.0A
Authority: CN
Inventors: 李聪; 张俊; 洪仕海; 吴家祺; 陈湧; 肖世建; 杨奕彬
Original assignee: China Telecom Corp Ltd Guangzhou Branch
Current assignee: China Telecom Corp Ltd Guangzhou Branch
Priority date: 2022-03-21
Filing date: 2022-03-21
Publication date: 2022-07-08
Anticipated expiration: 2042-03-21
Also published as: CN114726592B

Abstract

The application discloses a method, a device, equipment and a storage medium for detecting broadband attributes, wherein first broadband attribute information is obtained by extracting the attributes of a network data packet sent by a user terminal through a broadband link, so that hardware does not need to be additionally arranged, and only an application program set is required to be installed on the user terminal to realize data acquisition; then, the validity of the first broadband attribute information is verified, invalid data is removed, second broadband attribute information is obtained, the second broadband attribute information is corrected according to target actual attribute information, and third broadband attribute information is obtained, so that the validity of the broadband attribute information is guaranteed; and finally, carrying out compliance detection on the third broadband attribute information to obtain an attribute detection result of the broadband link so as to improve the accuracy and the automation degree of the detection result.

Description

Method, device and equipment for detecting broadband attribute and storage medium

Technical Field

The present application relates to the field of communications technologies, and in particular, to a method, an apparatus, a device, and a storage medium for detecting a broadband attribute.

Background

The traditional broadband attribute detection mode is a manual marking mode, and a user manually inputs broadband attribute items in a text box through a background management system of an operator. But manually marked attribute items are only for rate and bandwidth and lack active detection and verification of detailed attribute information. Although attribute items can be added manually, manual data entry is still not left. It can be seen that the current broadband attribute detection mode has the problem of low automation degree.

Disclosure of Invention

The application provides a method, a device, equipment and a storage medium for detecting broadband attributes, which aim to solve the technical problem of low automation degree of a broadband attribute detection mode.

In order to solve the above technical problem, in a first aspect, the present application provides a method for detecting a broadband attribute, including:

carrying out attribute extraction on a network data packet sent by a user terminal through a broadband link to obtain first broadband attribute information;

the validity of the first broadband attribute information is verified, invalid data is removed, and second broadband attribute information is obtained;

according to the target actual attribute information, correcting the second broadband attribute information to obtain third broadband attribute information;

and performing compliance detection on the third broadband attribute information to obtain an attribute detection result of the broadband link.

Preferably, the network data packet includes trace routing data, location information of the user terminal, and network service provider information, and the performing attribute extraction on the network data packet sent by the user terminal through the broadband link to obtain the first broadband attribute information includes:

and performing data analysis on the tracking routing data, the position information of the user terminal and the network service provider information to obtain the first broadband attribute information.

Preferably, the verifying the validity of the first broadband attribute information and removing invalid data to obtain second broadband attribute information includes:

performing field integrity verification on the first broadband attribute information to determine whether the first broadband attribute information meets the field integrity requirement;

and if the first broadband attribute information meets the field integrity requirement, removing the same value data in the first broadband attribute information to obtain second broadband attribute information.

Preferably, the modifying the second broadband attribute information according to the target actual attribute information to obtain third broadband attribute information includes:

acquiring the actual attribute information of the target according to the second broadband attribute information;

comparing the second broadband attribute information with the actual attribute information;

and if the second broadband attribute information does not have the illegal IP address, complementing missing attributes in the second broadband attribute information according to the target actual attribute information to obtain third broadband attribute information.

Preferably, the acquiring the target actual attribute information according to the second broadband attribute information includes:

determining the position information of the IP address of the user terminal according to the second broadband attribute information;

and verifying the actual IP address corresponding to the position information to obtain the target actual attribute information.

Preferably, the performing compliance detection on the third broadband attribute information to obtain an attribute detection result of the broadband link includes:

comparing the installation operator in the third broadband attribute information with an actual operator;

and if the installation operator is consistent with the actual operator, determining that the attribute detection result is attribute compliance.

In a second aspect, the present application provides a device for detecting broadband properties, comprising:

the extraction module is used for extracting the attribute of a network data packet sent by a user terminal through a broadband link to obtain first broadband attribute information;

the verification module is used for verifying the validity of the broadband attribute information and removing invalid data to obtain second broadband attribute information;

the correction module is used for correcting the second broadband attribute information according to the target actual attribute information to obtain third broadband attribute information;

and the detection module is used for carrying out compliance detection on the third broadband attribute information to obtain an attribute detection result of the broadband link.

Preferably, the correction module includes:

the acquisition unit is used for acquiring the target actual attribute information according to the second broadband attribute information;

a comparison unit, configured to compare the second broadband attribute information with the actual attribute information;

and a completion unit, configured to, if the second broadband attribute information does not have an illegal IP address, complete the missing attribute in the second broadband attribute information according to the target actual attribute information, and obtain the third broadband attribute information.

In a third aspect, the present application provides a computer device comprising a processor and a memory for storing a computer program which, when executed by the processor, implements the method of detecting a broadband property as described in the first aspect.

In a fourth aspect, the present application provides a computer-readable storage medium storing a computer program which, when executed by a processor, implements the method for detecting broadband properties according to the first aspect.

Please refer to the relevant description of the first aspect for the beneficial effects of the second to fourth aspects, which are not repeated herein.

Drawings

Fig. 1 is a schematic flowchart of a method for detecting a broadband attribute according to an embodiment of the present application;

fig. 2 is a schematic structural diagram of a broadband property detection apparatus according to an embodiment of the present application;

fig. 3 is a schematic structural diagram of a computer device according to an embodiment of the present application.

Detailed Description

The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.

As described in the related art, the manually marked attribute items are only for rate and bandwidth, and active detection and verification of detailed attribute information is lacking. Although attribute items can be added manually, manual data entry is still not left. It can be seen that the current broadband attribute detection mode has the problem of low automation degree.

Therefore, the embodiment of the application provides a method for detecting broadband attributes, which obtains first broadband attribute information by extracting attributes of a network data packet sent by a user terminal through a broadband link, so that data acquisition can be realized only by installing an application program on the user terminal without installing hardware, and attribute items can be added; then, the validity of the first broadband attribute information is verified, invalid data is removed, second broadband attribute information is obtained, the second broadband attribute information is corrected according to target actual attribute information, and third broadband attribute information is obtained, so that the validity of the broadband attribute information is guaranteed; and finally, carrying out compliance detection on the third broadband attribute information to obtain an attribute detection result of the broadband link so as to improve the accuracy and the automation degree of the detection result.

Referring to fig. 1, fig. 1 is a schematic flowchart illustrating a method for detecting a broadband attribute according to an embodiment of the present disclosure. The method for detecting the broadband attribute in the embodiment of the application can be applied to computer equipment which is loaded with a cloud platform, and the computer equipment includes but is not limited to equipment such as a notebook computer, a tablet computer, a desktop computer and a physical server. As shown in fig. 1, the method for detecting broadband attributes of the present embodiment includes steps S101 to S104, which are detailed as follows:

step S101, extracting the attribute of the network data packet sent by the user terminal through the broadband link to obtain first broadband attribute information.

And step S102, carrying out validity verification on the first broadband attribute information, and removing invalid data to obtain second broadband attribute information.

And step S103, correcting the second broadband attribute information according to the target actual attribute information to obtain third broadband attribute information.

And step S104, performing compliance detection on the third broadband attribute information to obtain an attribute detection result of the broadband link.

In this embodiment, the broadband link includes a user terminal, a cloud platform, and a target receiving end. The broadband attribute information includes, but is not limited to, a loading area, a loading operator, an egress public network IP address, an egress public network TCP port, TCP request packet contents, tracert route integrity information, and loader information.

Optionally, the attribute of the data packet sent by the terminal is extracted, the extracted broadband attribute is validated to remove duplicate data and redundant data, the extracted data of the data packet is compared with actual data to judge whether an illegal IP exists, and finally the compared final attribute is subjected to compliance judgment to judge whether the broadband has illegal access.

Illustratively, the terminal actively requests the cloud platform, and after the data packet is sent to the cloud platform, the cloud platform performs data analysis on the data packet to obtain original network information including an ip address. The terminal comprises a windows system operation terminal and an android system operation terminal, and the terminal can periodically send tracert (namely tracking route) data content, information such as province, city and known ISP (Internet service provider) and the like to a target receiving interface after the terminal is agreed by a user.

The terminal also supports automatic detection of new versions and configuration files, which stipulate default province lists, city lists and ISP lists, and define the network address of the remote server. When one of the network addresses is not available, the next network address is automatically enumerated until the submission is successful. The terminal supports data packet disguise, bypasses the interception of a malicious gateway through a random interface method, and simulates normal internet access behavior to submit data. The terminal supports the online updating version and the online updating configuration file. The android terminal also supports automatic acquisition of a test address through GPS positioning.

The target receiving end operates in an internet server, provides service for the whole network, is only used for receiving the data of the terminal, and forwards the data to an intranet host of a local area network where the target receiving end is located in a reverse proxy mode, and the intranet host deploys a set of interfaces for storing the data of the terminal in a database in the host.

Through the form, the terminal and the core computer room do not directly have the key of a physical or logical network, and the core computer room is protected from malicious attack of the Internet to the maximum extent.

It should be noted that, according to the broadband attribute detection method and device, broadband data are sent by a probe program deployed at a terminal and then uploaded to a cloud platform for broadband attribute acquisition and detection, so that the automation degree of broadband attributes is improved, and the accuracy of broadband attribute detection is improved. In addition, the application also has the following beneficial effects: 1. the data collection can be realized only by installing a terminal without additionally installing hardware; 2. the method can effectively avoid the limitations of a proxy server, an intranet and the like, and safely acquire the public network attribute; 3. the cloud platform can realize the logical isolation of the internal network and the external network in an active and passive dual execution mode, and the data security is ensured.

In an embodiment, on the basis of the embodiment shown in fig. 1, the network data packet includes trace route data, location information of the user terminal, and network service provider information, and the step S101 includes:

In this embodiment, the probe program is deployed in a computer terminal of a broadband user, and the user can complete the extraction and reporting of the attributes by running the probe program. Specifically, after receiving an active request of a terminal, a cloud platform receives a data packet sent by the terminal; the terminal supports data packet disguise when sending a data packet, bypasses interception of a malicious gateway through a random interface method, and simulates normal internet access behavior to submit data; the cloud platform acquires original network information, periodically transmits tracert data content, and information such as provinces, cities and known ISPs where the tracert data content is located so as to obtain broadband attributes.

In an embodiment, based on the embodiment shown in fig. 1, the step S102 includes:

In this embodiment, validity verification (field integrity verification and verification with an IP library locally established by an operator) is performed on the extracted broadband attribute, and duplicate data and redundant data (for example, data with the same value repeatedly reported on the same day) are removed.

Optionally, the remote proxy of the cloud platform synchronizes the data of the target receiving end to the data source database in the secure local computer room every 1 minute, and changes the state of the data of the target receiving end, thereby avoiding repeated synchronization. The remote proxy and the target receiving end belong to one-way communication, only the remote proxy is allowed to access data in the target receiving end, and the target receiving end is not allowed to access the remote proxy, so that the core computer room is protected from being attacked by the Internet.

In an embodiment, based on the embodiment shown in fig. 1, the step S103 includes:

Optionally, the obtaining the target actual attribute information according to the second broadband attribute information includes:

In this embodiment, the broadband attribute is compared with the data interface of the cloud platform (the original data of the local database is compared), and the missing attribute is intelligently complemented. After the data in the data source database is comprehensively processed, the data is transferred to the data result database. The comprehensive processing mode mainly comprises the steps of extracting an account number, extracting tracert data content and judging information such as an ISP (Internet service provider), province, city, IP type, client name and the like to which an actual IP belongs according to a service scene.

First, basic information is extracted, wherein the basic information comprises a terminal province, a city, an ISP, an MAC address, a test account, a test terminal ID, an actual IP and an actual port number. And then according to the actual IP address, sequentially passing through the group interface, the province company interface and the third party interface to verify the actual province of the IP, the actual city and the actual ISP to obtain actual data. And judging whether the illegal IP exists or not by comparing the data of the two. Then the system will extract the content of tracert data, format character string, extract the first public network IP except the inner network, judge province, city, operator where IP locates. Meanwhile, the state of the historical data is changed, and the uniqueness of the data is kept.

In an embodiment, based on the embodiment shown in fig. 1, the step S104 includes:

In this embodiment, the compliance of the final attributes of the comparison is determined, and whether the access violation exists in the broadband is determined. The system can judge whether illegal access exists according to the content of the tracert data packet by combining the AI intelligent engine and the big data, and further judge whether the conditions of using the agent and the multi-level agent exist. Optionally, the broadband installation operator and the actual operator agree with rules for compliance. For example, in some rural areas in cities, China moves during installation, but the bandwidth belongs to China telecommunications and is not compliant.

In order to implement the detection method of the broadband attribute corresponding to the above method embodiment, corresponding functions and technical effects are achieved. Referring to fig. 2, fig. 2 is a block diagram illustrating a structure of a device for detecting broadband properties according to an embodiment of the present application. For convenience of explanation, only the part related to the present embodiment is shown, and the detection apparatus for broadband property provided in the embodiment of the present application includes:

an extractingmodule 201, configured to perform attribute extraction on a network data packet sent by a user terminal through a broadband link to obtain first broadband attribute information;

theverification module 202 is configured to perform validity verification on the broadband attribute information, and remove invalid data to obtain second broadband attribute information;

the correctingmodule 203 is configured to correct the second broadband attribute information according to the target actual attribute information to obtain third broadband attribute information;

a detectingmodule 204, configured to perform compliance detection on the third broadband attribute information to obtain an attribute detection result of the broadband link.

Preferably, the network data packet includes trace routing data, location information of the user terminal, and network service provider information, and the extractingmodule 201 includes:

and the analysis unit is used for carrying out data analysis on the tracking routing data, the position information of the user terminal and the network service provider information to obtain the first broadband attribute information.

Preferably, theverification module 202 includes:

the verification unit is used for carrying out field integrity verification on the first broadband attribute information so as to determine whether the first broadband attribute information meets the field integrity requirement;

and the removing unit is used for removing the same value data in the first broadband attribute information to obtain second broadband attribute information if the first broadband attribute information meets the field integrity requirement.

Preferably, themodification module 203 includes:

Preferably, the acquiring unit includes:

a determining subunit, configured to determine, according to the second broadband attribute information, location information of an IP address of the user terminal;

and the verification subunit is used for verifying the actual IP address corresponding to the position information to obtain the target actual attribute information.

Preferably, the detectingmodule 204 includes:

a second comparison unit, configured to compare the installation provider in the third broadband attribute information with an actual provider;

a determining unit, configured to determine that the attribute detection result is an attribute compliance if the installation provider is consistent with the actual provider.

The above-mentioned detection device for broadband properties can implement the detection method for broadband properties of the above-mentioned method embodiments. The alternatives in the above-described method embodiments are also applicable to this embodiment and will not be described in detail here. The rest of the embodiments of the present application may refer to the contents of the above method embodiments, and in this embodiment, details are not described again.

Fig. 3 is a schematic structural diagram of a computer device according to an embodiment of the present application. As shown in fig. 3, thecomputer device 3 of this embodiment includes: at least one processor 30 (only one shown in fig. 3), amemory 31, and acomputer program 32 stored in thememory 31 and executable on the at least oneprocessor 30, theprocessor 30 implementing the steps of any of the above-described method embodiments when executing thecomputer program 32.

Thecomputer device 3 may be a computing device such as a smart phone, a tablet computer, a desktop computer, and a cloud server. The computer device may include, but is not limited to, aprocessor 30, amemory 31. Those skilled in the art will appreciate that fig. 3 is merely an example of thecomputer device 3, and does not constitute a limitation of thecomputer device 3, and may include more or less components than those shown, or combine some of the components, or different components, such as input output devices, network access devices, etc.

Theprocessor 30 may be a Central Processing Unit (CPU), and theprocessor 30 may be other general purpose processor, a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), an off-the-shelf Programmable Gate Array (FPGA) or other Programmable logic device, a discrete Gate or transistor logic device, a discrete hardware component, or the like. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.

Thememory 31 may in some embodiments be an internal storage unit of thecomputer device 3, such as a hard disk or a memory of thecomputer device 3. Thememory 31 may also be an external storage device of thecomputer device 3 in other embodiments, such as a plug-in hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash memory Card (Flash Card), and the like, which are provided on thecomputer device 3. Further, thememory 31 may also include both an internal storage unit and an external storage device of thecomputer device 3. Thememory 31 is used for storing an operating system, an application program, a BootLoader (BootLoader), data, and other programs, such as program codes of the computer program. Thememory 31 may also be used to temporarily store data that has been output or is to be output.

In addition, an embodiment of the present application further provides a computer-readable storage medium, where a computer program is stored, and when the computer program is executed by a processor, the computer program implements the steps in any of the method embodiments described above.

The embodiments of the present application provide a computer program product, which when executed on a computer device, enables the computer device to implement the steps in the above method embodiments.

In several embodiments provided herein, it will be understood that each block in the flowchart or block diagrams may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved.

The functions, if implemented in the form of software functional modules and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present application or portions thereof that substantially contribute to the prior art may be embodied in the form of a software product stored in a storage medium and including instructions for causing a computer device to perform all or part of the steps of the method according to the embodiments of the present application. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.

The above-mentioned embodiments are further detailed to explain the objects, technical solutions and advantages of the present application, and it should be understood that the above-mentioned embodiments are only examples of the present application and are not intended to limit the scope of the present application. It should be understood that any modifications, equivalents, improvements and the like, which come within the spirit and principle of the present application, may occur to those skilled in the art and are intended to be included within the scope of the present application.

Claims

1. A method for detecting broadband properties, comprising:

extracting the attribute of a network data packet sent by a user terminal through a broadband link to obtain first broadband attribute information;

2. The detecting method according to claim 1, wherein the network data packet includes trace route data, location information of the user terminal and network service provider information, and the performing attribute extraction on the network data packet sent by the user terminal through the broadband link to obtain the first broadband attribute information includes:

3. The method for detecting according to claim 1, wherein said validating the first broadband attribute information and removing invalid data to obtain second broadband attribute information comprises:

4. The detection method according to claim 1, wherein the modifying the second wideband attribute information according to the target actual attribute information to obtain third wideband attribute information comprises:

and if the second broadband attribute information does not have the illegal IP address, complementing the missing attribute in the second broadband attribute information according to the target actual attribute information to obtain third broadband attribute information.

5. The detection method according to claim 4, wherein the obtaining the target actual attribute information according to the second broadband attribute information comprises:

6. The method as claimed in claim 1, wherein said performing compliance detection on said third broadband attribute information to obtain an attribute detection result of said broadband link comprises:

7. An apparatus for detecting broadband properties, comprising:

8. The detection apparatus of claim 7, wherein the modification module comprises:

9. A computer device comprising a processor and a memory for storing a computer program which, when executed by the processor, implements the method of detecting a broadband property of any one of claims 1 to 6.

10. A computer-readable storage medium, characterized in that it stores a computer program which, when executed by a processor, implements the method of detection of a broadband property according to any one of claims 1 to 6.