CN101873329A - Portal compulsory authentication method and access equipment - Google Patents
Portal compulsory authentication method and access equipment Download PDFInfo
- Publication number
- CN101873329A CN101873329A CN201010212307A CN201010212307A CN101873329A CN 101873329 A CN101873329 A CN 101873329A CN 201010212307 A CN201010212307 A CN 201010212307A CN 201010212307 A CN201010212307 A CN 201010212307A CN 101873329 A CN101873329 A CN 101873329A
- Authority
- CN
- China
- Prior art keywords
- message
- portal
- user
- access device
- tcp
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a portal compulsory authentication method for reducing the message processing load of CPU (central processing unit) of access equipment and access equipment for realizing the method. The method comprises the following steps: enabling a portal authentication function on the access equipment; when the access equipment receives the message of an authenticated user, directly forwarding the message; when the access equipment receives an TCP (Transmission Control Protocol) connection-establishing message the port number of which is an HTTP (Hyper Text Transport Protocol) protocol port number, directly forwarding the TCP connection-establishing message; and when the access equipment receives the message of an unauthenticated user, and the message of the unauthenticated user is an HTTP request message, redirecting the HTTP request message to a portal server for portal authentication. The invention enables the unauthenticated user self to establish and terminate TCP connection with the WEB server of the extranet. The access equipment does not need to establish and terminate the TCP connection with the unauthenticated user while finishing a redirecting function, and thereby, the load of the CPU of the access equipment is reduced.
Description
Technical field
The present invention relates to the access authentication technique in the route exchange device, especially based on the Portal authentication mode of web.
Background technology
In present access authentication system, the Portal authentication is based on the authentication mode of type of service, because of not needing special client support, only needs browser just can finish, thereby is widely used as the simple and direct authentication means of a kind of convenience.For more convenient user carries out the Portal authentication, be that the user need not to remember that certificate server IP or domain name just can finish authentication, therefore in the Portal authentication, introduce the forcible authentication technology, promptly when the user passes through web browser access outer net, if the user not by authentication, forces to push the web server interface of setting in the network.Its concrete implementation is, the Portal User of unauthenticated sends the HTTP message, and access device is caught the HTTP message of the Portal User of unauthenticated; Disguise oneself as destination host that the user visited of access device is set up TCP with unauthenticated user's main frame and is connected; To Portal server, Portal server provides the web browser of html page to Portal User to access device with the HTTP message redirecting, imports username and password for the user and authenticates.Be existing access device Portal authentication compulsory authentication method finish redirected in, the TCP that also must handle unverified Portal User connects handshake message and stops handshake message.Like this, have many consumers at the same time and need carry out under the situation of forcible authentication, the message that can increase access device CPU is handled burden.
Summary of the invention
Technical problem to be solved by this invention is to provide a kind of message that reduces access device CPU to handle the Portal compulsory authentication method of burden and the access device of realizing this method.
The present invention solves the problems of the technologies described above the technical scheme that is adopted to be, a kind of Portal compulsory authentication method is characterized in that, comprises step:
On access device, enable the Portal authentication function;
When access device receives the message of authenticated user, then directly transmit; When access device receives port numbers is that the TCP of http protocol port numbers builds and connects message, then directly transmits; When access device receives the unauthenticated user message, and the unauthenticated user message is the HTTP request message, then the HTTP request message is redirected to Portal server and carries out the Portal authentication.
The present invention makes unauthenticated user oneself and the foundation of outer net WEB server be connected with termination TCP.Do not need when finishing redirection function, being connected with termination TCP of access device, reduce the CPU burden of access device with unauthenticated user foundation.
Concrete, the TCP of http protocol port numbers builds and connects message and build even message for the TCP of the http protocol port numbers that has SYN (synchronously), ACK (affirmations) or FIN (end) and indicate.Wherein, SYN, ACK set up the sign that TCP connects; FIN is for finishing the sign that TCP connects.
Further, when access device receives source IP address or purpose IP address is the message of the free resource network segment, then directly transmit.The free resource network segment is the corresponding network segment such as portal server, DNS (domain name system) server, DHCP (DynamicHost is provided with agreement) server, can be specified by configuration.
Concrete, access device judges by the source IP address or the purpose IP address of message whether the user authenticates.
Concrete, the HTTP request message is the HTTP message of GET type, and GET obtains data from server, and this is modal WEB request type.Import URL (URL(uniform resource locator)) when opening the page in browser, be exactly the request that sends a GET type to server at every turn.
Concrete, access device generates the HTTP redirection message that purpose IP address is unauthenticated user IP address according to IP head in the HTTP request message and TCP header, send from the interface that receives the HTTP request message, Redirect Address is the URL of Portal server.
Realize the access device of said method, comprise message matching module, forwarding module, Portal module;
The message matching module is used for, and message to the forwarding module of authenticated user is handled; With port numbers is that the TCP of http protocol port numbers builds and connects message and deliver to forwarding module and handle; The HTTP request message of unauthenticated user is delivered to the Portal module to be handled;
Forwarding module is used for, and receives message and directly forwarding from the message matching module;
The Portal module is used for, and receives message from the message matching module, and sends the HTTP redirection message to the user, makes the user be redirected to the portal server and carries out the portal authentication.
Further, the message matching module also is used for, and is that the message of the free resource network segment is delivered to forwarding module and handled with source IP address or purpose IP address.
Further, the message matching module also is used for, and judges by the IP address of message whether the user authenticates.
Further, the message matching module also is used for, and the TCP that abandons port numbers and be the http protocol port numbers builds the unauthenticated user message that connects outside message and the HTTP request message.
The invention has the beneficial effects as follows, the TCP handshake message that connects with stop being connected when visiting outer net by isolating unauthenticated user, handshake procedure is finished by the server of user and outer net, in the Portal forcible authentication that realizes unauthenticated user simultaneously, the message that reduces access device CPU is handled burden.
Description of drawings
Fig. 1 is the access device system block diagram.
Fig. 2 is the embodiment method flow diagram.
Embodiment
As shown in Figure 1, access device comprises message matching module, forwarding module, Portal module; By being set in the message matching module, a cover message matched rule butt joint receipts message forwarding controls, make user to be certified oneself and need the outer network server foundation of visit to be connected with termination TCP, access device is only transmitted foundation and is stopped the message that TCP is connected by forwarding module, simultaneously the HTTP request message of unauthenticated user is carried out re-orientation processes, to realize the Portal forcible authentication of unauthenticated user by the Portal module of access device.
Message matched rule in the message matching module and order are:
Rule a: source IP address or purpose IP address are that the message of the free resource network segment is given forwarding module; The free resource network segment is here disposed by the user, and the free resource network segment can be Portal server, dns server, Dynamic Host Configuration Protocol server etc.;
Rule b: source IP address or purpose IP address are for giving forwarding module by the message of IP address of authentication;
Rule c: all ports that have SYN, ACK or FIN sign are that the TCP of http protocol port numbers builds and connects message and give forwarding module;
Rule d: enabling to give Portal resume module with the HTTP request message of GET type on three layer interfaces of Portal;
Rule e: enabling on three layer interfaces of Portal, the TCP that abandons the port that has SYN, ACK or FIN sign and be the http protocol port numbers builds all messages outside the HTTP request message that connects message and GET type.
The Portal module to the processing mode of HTTP request message is: the GET type message of the HTTP on three layer interfaces, generate the redirection message that purpose IP is the HTTP of unauthenticated user according to IP head in the message and TCP header, send from the interface that receives.
Forwarding module is transmitted the message that receives according to normal protocol stack processing mode.
Implementation step for the message matched rule:
Step 201: global configuration Portal function, execution in step 202;
Step 202: write regular a in the message matching module, promptly allowing source IP address or purpose IP address is that the message of the free resource network segment is directly transmitted;
Step 203: configuration Portal function on the access device interface, execution in step 204;
Step 204: after regular a, write regular c, regular d and regular e successively in order.Rule c is that the TCP of http protocol port numbers builds and connects message and transmit to all ports that have SYN, ACK or a FIN sign directly for allowing forwarding module, does not give Portal resume module; Rule d is on this three layer interface, gives Portal resume module with the HTTP request message of GET type; Rule e is all other packet loss with unauthenticated user.
Step 205: after unauthenticated user passes through authentication alternately through portal protocol, execution in step 206;
Step 206: between regular a and regular c, write regular b, promptly source IP address or purpose IP address directly have forwarding module to transmit for the message by authenticated user IP address, do not give the Portal resume module.
Under the effect of above rule, the implementation step of this Portal forcible authentication as shown in Figure 2:
Step 301: after three layer interfaces of access device receive message, enter step 302;
Step 302: judging whether three layer interfaces that receive this message enable the Portal function, is then to enter step 303; Otherwise enter step 306;
Step 303: the message matching module carries out judgment processing to message:
One, judges whether user's IP address is free resource network segment IP address;
Two, judge whether user's IP address is the IP address of having passed through authenticated user;
Three, judge that whether the message receive is that the port that has SYN, ACK, a FIN sign is that the TCP of http protocol port numbers builds and connects message;
As above-mentioned three each for being, then enter step 306, otherwise enter step 304;
Step 304: the message matching module judges that further whether message is the GET type message of HTTP, is then to enter step 305, otherwise abandons this message;
Step 305:Portal module is according to IP head in the message and TCP head, construct code field value in the HTTP message and be 302 HTTP redirection response message, send from receiving port, purpose IP address is the IP address of this unauthenticated user, and Redirect Address is the URL of Portal server.
Step 306: forwarding module is handled according to the normal protocol stack, E-Packets.
Claims (10)
1. a portal compulsory authentication method is characterized in that, comprises step:
On access device, enable the portal authentication function;
When access device receives the message of authenticated user, then directly transmit; When access device receives port numbers is that the TCP of http protocol port numbers builds and connects message, then directly transmits; When access device receives the unauthenticated user message, and the unauthenticated user message is the HTTP request message, then the HTTP request message is redirected to the portal server and carries out the portal authentication.
2. a kind of according to claim 1 portal compulsory authentication method, it is characterized in that the TCP of described http protocol port numbers builds and connects message and comprise that the TCP that has the SYN sign builds the TCP that connects message, has an ACK sign and builds the TCP that connects message, has a FIN sign and build and connect message.
3. a kind of according to claim 1 portal compulsory authentication method is characterized in that, when access device receives source IP address or purpose IP address is the message of the free resource network segment, then directly transmits.
4. as a kind of portal compulsory authentication method as described in the claim 3, it is characterized in that the described free resource network segment is the network segment of portal server, dns server, Dynamic Host Configuration Protocol server correspondence.
5. a kind of according to claim 1 portal compulsory authentication method is characterized in that, access device judges by user's IP address whether the user authenticates.
6. a kind of according to claim 1 portal compulsory authentication method is characterized in that, the HTTP message that described HTTP request message is the GET type.
7. access device is characterized in that, comprises message matching module, forwarding module, portal module;
Described message matching module is used for, and message to the forwarding module of authenticated user is handled; With port numbers is that the TCP of http protocol port numbers builds and connects message and deliver to forwarding module and handle; The HTTP request message of unauthenticated user is delivered to the portal module to be handled;
Described forwarding module is used for, and receives message and directly forwarding from the message matching module;
Described portal module is used for, and receives message from the message matching module, and sends the HTTP redirection message to the user, makes the user be redirected to the portal server and carries out the portal authentication.
8. as access device as described in the claim 7, it is characterized in that described message matching module also is used for, is that the message of the free resource network segment is delivered to forwarding module and handled with source IP address or purpose IP address.
9. as access device as described in the claim 7, it is characterized in that described message matching module also is used for, judge by the IP address of message whether the user authenticates.
10. as access device as described in the claim 7, it is characterized in that described message matching module also is used for, abandon except that port numbers be that the TCP of http protocol port numbers builds other unauthenticated user message that connects message and the HTTP request message.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010212307A CN101873329A (en) | 2010-06-29 | 2010-06-29 | Portal compulsory authentication method and access equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010212307A CN101873329A (en) | 2010-06-29 | 2010-06-29 | Portal compulsory authentication method and access equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101873329A true CN101873329A (en) | 2010-10-27 |
Family
ID=42997989
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201010212307A Pending CN101873329A (en) | 2010-06-29 | 2010-06-29 | Portal compulsory authentication method and access equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101873329A (en) |
Cited By (24)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102075583A (en) * | 2011-01-30 | 2011-05-25 | 杭州华三通信技术有限公司 | HTTP request message processing method and equipment |
| CN102801795A (en) * | 2012-08-03 | 2012-11-28 | 苏州迈科网络安全技术股份有限公司 | Method and system for identifying and processing HTTP request |
| CN103023727A (en) * | 2012-12-28 | 2013-04-03 | 迈普通信技术股份有限公司 | Portal performance testing system and Portal performance testing method |
| CN103124238A (en) * | 2013-01-17 | 2013-05-29 | 深圳市共进电子股份有限公司 | Method for improving managing page login security of broad band router |
| CN103825881A (en) * | 2013-12-13 | 2014-05-28 | 福建三元达通讯股份有限公司 | Method and apparatus for realizing redirection of WLAN user based on wireless access controller (AC) |
| CN104038506A (en) * | 2014-06-25 | 2014-09-10 | 上海斐讯数据通信技术有限公司 | Kernel implementing method and system for captive portal based on ECOS system |
| CN104144491A (en) * | 2013-05-10 | 2014-11-12 | 中国电信股份有限公司 | Method and system used for positioning WiFi terminal in real time |
| CN104254073A (en) * | 2014-09-03 | 2014-12-31 | 深信服网络科技(深圳)有限公司 | Method and device for authentication of access terminal |
| CN104270364A (en) * | 2014-09-30 | 2015-01-07 | 杭州华三通信技术有限公司 | Message processing method and device for hypertext transfer protocol |
| CN104821940A (en) * | 2015-04-16 | 2015-08-05 | 京信通信技术(广州)有限公司 | Method and equipment for sending portal redirected address |
| CN105554170A (en) * | 2015-12-09 | 2016-05-04 | 福建星网锐捷网络有限公司 | DNS message processing method, device and system |
| CN105791451A (en) * | 2014-12-22 | 2016-07-20 | 华为技术有限公司 | Message response method and device |
| CN105991640A (en) * | 2015-07-16 | 2016-10-05 | 杭州迪普科技有限公司 | Method for processing HTTP (hypertext transfer protocol) request and apparatus for processing HTTP (hypertext transfer protocol) request |
| CN105991641A (en) * | 2015-08-06 | 2016-10-05 | 杭州迪普科技有限公司 | Portal authentication method and portal authentication device |
| CN106789864A (en) * | 2016-04-29 | 2017-05-31 | 新华三技术有限公司 | A kind of message anti-attack method and device |
| CN106878270A (en) * | 2016-12-30 | 2017-06-20 | 深圳市风云实业有限公司 | Enhanced access control equipment based on portal agreements |
| CN107197461A (en) * | 2017-06-09 | 2017-09-22 | 上海寰创通信科技股份有限公司 | A kind of ipv6 message redirecting methods based on linux system |
| CN108600191A (en) * | 2018-03-30 | 2018-09-28 | 深圳市伟文无线通讯技术有限公司 | Advertisement authentication based on mobile router lightweight and url filtering method |
| CN108737413A (en) * | 2018-05-15 | 2018-11-02 | 北京奇安信科技有限公司 | Data processing method, device and the User space protocol stack of transport layer |
| CN109474588A (en) * | 2018-11-02 | 2019-03-15 | 杭州迪普科技股份有限公司 | A kind of terminal authentication method and device |
| CN109618004A (en) * | 2019-01-16 | 2019-04-12 | 新华三技术有限公司 | A kind of message forwarding method and device |
| CN109831407A (en) * | 2017-11-23 | 2019-05-31 | 哈曼国际工业有限公司 | Captive portals (CAPTIVE PORTAL) detection |
| WO2021169291A1 (en) * | 2020-02-29 | 2021-09-02 | 华为技术有限公司 | Route advertising method, network elements, system, and device |
| CN115086953A (en) * | 2021-03-10 | 2022-09-20 | 中国电信股份有限公司 | WLAN user management method and device |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1416056A (en) * | 2002-06-28 | 2003-05-07 | 华为技术有限公司 | Method of easy to access portal web site of network service provider |
| CN1464425A (en) * | 2002-06-28 | 2003-12-31 | 华为技术有限公司 | A method of simplified access of internet service provider's portal websites |
| US20080307044A1 (en) * | 2007-06-07 | 2008-12-11 | Bea Systems Inc. | System and method for url compression |
| CN101631026A (en) * | 2008-07-18 | 2010-01-20 | 北京启明星辰信息技术股份有限公司 | Method and device for defending against denial-of-service attacks |
| CN101631312A (en) * | 2009-08-19 | 2010-01-20 | 北京傲天动联技术有限公司 | Portal authentication method based on thin AP framework |
| US20100115272A1 (en) * | 2008-10-30 | 2010-05-06 | Symbol Technologies, Inc. | Communicating a packet from a mesh-enabled access point to a mesh portal in a multi-hop mesh network |
-
2010
- 2010-06-29 CN CN201010212307A patent/CN101873329A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1416056A (en) * | 2002-06-28 | 2003-05-07 | 华为技术有限公司 | Method of easy to access portal web site of network service provider |
| CN1464425A (en) * | 2002-06-28 | 2003-12-31 | 华为技术有限公司 | A method of simplified access of internet service provider's portal websites |
| US20080307044A1 (en) * | 2007-06-07 | 2008-12-11 | Bea Systems Inc. | System and method for url compression |
| CN101631026A (en) * | 2008-07-18 | 2010-01-20 | 北京启明星辰信息技术股份有限公司 | Method and device for defending against denial-of-service attacks |
| US20100115272A1 (en) * | 2008-10-30 | 2010-05-06 | Symbol Technologies, Inc. | Communicating a packet from a mesh-enabled access point to a mesh portal in a multi-hop mesh network |
| CN101631312A (en) * | 2009-08-19 | 2010-01-20 | 北京傲天动联技术有限公司 | Portal authentication method based on thin AP framework |
Cited By (37)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102075583A (en) * | 2011-01-30 | 2011-05-25 | 杭州华三通信技术有限公司 | HTTP request message processing method and equipment |
| CN102801795A (en) * | 2012-08-03 | 2012-11-28 | 苏州迈科网络安全技术股份有限公司 | Method and system for identifying and processing HTTP request |
| CN103023727B (en) * | 2012-12-28 | 2015-08-26 | 迈普通信技术股份有限公司 | Portal Performance Test System and method |
| CN103023727A (en) * | 2012-12-28 | 2013-04-03 | 迈普通信技术股份有限公司 | Portal performance testing system and Portal performance testing method |
| CN103124238A (en) * | 2013-01-17 | 2013-05-29 | 深圳市共进电子股份有限公司 | Method for improving managing page login security of broad band router |
| CN103124238B (en) * | 2013-01-17 | 2015-09-16 | 深圳市共进电子股份有限公司 | A kind of method improving the administration page login security of broadband router |
| CN104144491A (en) * | 2013-05-10 | 2014-11-12 | 中国电信股份有限公司 | Method and system used for positioning WiFi terminal in real time |
| CN104144491B (en) * | 2013-05-10 | 2017-12-29 | 中国电信股份有限公司 | A kind of method and system to the real-time positioning of WiFi terminal |
| CN103825881A (en) * | 2013-12-13 | 2014-05-28 | 福建三元达通讯股份有限公司 | Method and apparatus for realizing redirection of WLAN user based on wireless access controller (AC) |
| CN103825881B (en) * | 2013-12-13 | 2017-05-31 | 福建三元达网络技术有限公司 | The reorientation method and device of WLAN user are realized based on wireless access controller AC |
| CN104038506A (en) * | 2014-06-25 | 2014-09-10 | 上海斐讯数据通信技术有限公司 | Kernel implementing method and system for captive portal based on ECOS system |
| CN104254073A (en) * | 2014-09-03 | 2014-12-31 | 深信服网络科技(深圳)有限公司 | Method and device for authentication of access terminal |
| CN104254073B (en) * | 2014-09-03 | 2018-02-06 | 深信服网络科技(深圳)有限公司 | The method and device being authenticated to access terminal |
| CN104270364A (en) * | 2014-09-30 | 2015-01-07 | 杭州华三通信技术有限公司 | Message processing method and device for hypertext transfer protocol |
| CN104270364B (en) * | 2014-09-30 | 2018-01-12 | 新华三技术有限公司 | A kind of Hypertext Transfer Protocol message treating method and apparatus |
| CN105791451A (en) * | 2014-12-22 | 2016-07-20 | 华为技术有限公司 | Message response method and device |
| CN105791451B (en) * | 2014-12-22 | 2020-02-21 | 华为技术有限公司 | Message response method and device |
| CN104821940A (en) * | 2015-04-16 | 2015-08-05 | 京信通信技术(广州)有限公司 | Method and equipment for sending portal redirected address |
| CN105991640A (en) * | 2015-07-16 | 2016-10-05 | 杭州迪普科技有限公司 | Method for processing HTTP (hypertext transfer protocol) request and apparatus for processing HTTP (hypertext transfer protocol) request |
| CN105991640B (en) * | 2015-07-16 | 2019-06-04 | 杭州迪普科技股份有限公司 | Handle the method and device of HTTP request |
| CN105991641A (en) * | 2015-08-06 | 2016-10-05 | 杭州迪普科技有限公司 | Portal authentication method and portal authentication device |
| CN105554170A (en) * | 2015-12-09 | 2016-05-04 | 福建星网锐捷网络有限公司 | DNS message processing method, device and system |
| CN105554170B (en) * | 2015-12-09 | 2019-06-14 | 福建星网锐捷网络有限公司 | A kind of processing method of DNS message, apparatus and system |
| CN106789864B (en) * | 2016-04-29 | 2020-08-21 | 新华三技术有限公司 | Message anti-attack method and device |
| CN106789864A (en) * | 2016-04-29 | 2017-05-31 | 新华三技术有限公司 | A kind of message anti-attack method and device |
| CN106878270A (en) * | 2016-12-30 | 2017-06-20 | 深圳市风云实业有限公司 | Enhanced access control equipment based on portal agreements |
| CN107197461B (en) * | 2017-06-09 | 2020-06-12 | 上海寰创通信科技股份有限公司 | Ipv6 message redirection method based on Linux system |
| CN107197461A (en) * | 2017-06-09 | 2017-09-22 | 上海寰创通信科技股份有限公司 | A kind of ipv6 message redirecting methods based on linux system |
| CN109831407A (en) * | 2017-11-23 | 2019-05-31 | 哈曼国际工业有限公司 | Captive portals (CAPTIVE PORTAL) detection |
| CN109831407B (en) * | 2017-11-23 | 2022-04-26 | 哈曼国际工业有限公司 | CAPTIVE PORTAL detection |
| CN108600191A (en) * | 2018-03-30 | 2018-09-28 | 深圳市伟文无线通讯技术有限公司 | Advertisement authentication based on mobile router lightweight and url filtering method |
| CN108737413A (en) * | 2018-05-15 | 2018-11-02 | 北京奇安信科技有限公司 | Data processing method, device and the User space protocol stack of transport layer |
| CN108737413B (en) * | 2018-05-15 | 2021-08-24 | 奇安信科技集团股份有限公司 | Data processing method and device of transmission layer and computer readable storage medium |
| CN109474588A (en) * | 2018-11-02 | 2019-03-15 | 杭州迪普科技股份有限公司 | A kind of terminal authentication method and device |
| CN109618004A (en) * | 2019-01-16 | 2019-04-12 | 新华三技术有限公司 | A kind of message forwarding method and device |
| WO2021169291A1 (en) * | 2020-02-29 | 2021-09-02 | 华为技术有限公司 | Route advertising method, network elements, system, and device |
| CN115086953A (en) * | 2021-03-10 | 2022-09-20 | 中国电信股份有限公司 | WLAN user management method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101873329A (en) | Portal compulsory authentication method and access equipment | |
| CN104270379B (en) | HTTPS agency retransmission methods and device based on transmission control protocol | |
| TWI624165B (en) | Method and multi-homed equipment for establishing a multipath connection | |
| CN103825881B (en) | The reorientation method and device of WLAN user are realized based on wireless access controller AC | |
| CN103188207B (en) | A kind of cross-domain single sign-on realization method and system | |
| JP6526248B2 (en) | Server and program | |
| CN101873332B (en) | WEB authentication method and equipment based on proxy server | |
| CN101582856B (en) | Session setup method of portal server and BAS (broadband access server) device and system thereof | |
| EP3286893A1 (en) | Secure transmission of a session identifier during service authentication | |
| JP5112806B2 (en) | Wireless LAN communication method and communication system | |
| CN106027565B (en) | A kind of method and apparatus of the intranet and extranet unified certification based on PPPOE | |
| CN105592003A (en) | Cross-domain single sign-on method and system based on notification | |
| WO2015131524A1 (en) | Remote access server method and web server | |
| CN102811219A (en) | Method for remotely accessing desktop of computer in intranet across network segments in cluster system | |
| JP2009163546A (en) | Gateway, repeating method and program | |
| CN102710667A (en) | Method for realizing Portal authentication server attack prevention and broadband access server | |
| CN1538706A (en) | HTTP relocation method for WEB identification | |
| CN102638472B (en) | Portal authentication method and equipment | |
| CN111935312B (en) | Industrial Internet container cloud platform and flow access control method thereof | |
| CN102710559A (en) | Resource gateway implementation method of digital literature adopting reverse-proxy technology | |
| CN104980461A (en) | Page pushing method, page pushing device, page pushing server and centralized network management controller | |
| AU2017344389B2 (en) | Portal aggregation service mapping subscriber device identifiers to portal addresses to which connection and authentication requests are redirected and facilitating mass subscriber apparatus configuration | |
| JP6393475B2 (en) | Communication adapter device, communication system, tunnel communication method, and program | |
| CN109379339A (en) | A kind of portal authentication method and device | |
| CN103607403A (en) | Method, device and system for using safety domain in NAT network environment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20101027 |