CN101083594A - Method and system for managing network appliance - Google Patents
Method and system for managing network appliance Download PDFInfo
- Publication number
- CN101083594A CN101083594A CNA2006100834460A CN200610083446A CN101083594A CN 101083594 A CN101083594 A CN 101083594A CN A2006100834460 A CNA2006100834460 A CN A2006100834460A CN 200610083446 A CN200610083446 A CN 200610083446A CN 101083594 A CN101083594 A CN 101083594A
- Authority
- CN
- China
- Prior art keywords
- mentioned
- network element
- state information
- network
- information table
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/04—Network management architectures or arrangements
- H04L41/044—Network management architectures or arrangements comprising hierarchical management structures
Abstract
The invention supplies network settings cluster management method. The network settings includes at least one net element manager, at least one main net element, at least one driven net element with private address. The method includes the following steps: informing driven net element data information from driven net element to its connected main net element; building a state information table; sending the table to its connected net element manager. The data information table includes driven net element private address and the corresponding port. The invention can make the net element manager directly access the network setting with private address to further save public IP address by largely using the host computer carried with private address.
Description
Technical field
The present invention relates to a kind of management method of the network equipment, the especially management method of the network equipment on Internet, and the device corresponding with this method.
Background technology
Along with the development of Internet, the number of computers that is connected on the network is also more and more, and in order to distinguish the computer on the network, ICP/IP protocol stipulates that the computer on each network all will have " an IP address " that telephone number is the same.Because the Internet network has connected many local area network (LAN)s, if local area network (LAN) adopts ICP/IP protocol to connect, then every of local area network (LAN) machine all must have an IP address.But the IP address resource is very limited, and along with the continuous expansion of network size and the sharp increase of number of users, the IP address can exhaust very soon.Use international Internet Assigned Number Authority (Internet Assigned NumbersAuthority for convenience; IANA) regulation is divided into two classes with the IP address: privately owned address and publicly-owned address.
Privately owned address is meant the host address of internal network (local area network (LAN) inside), is and external address address field independently mutually, and it does not have a uniqueness in global network, can use in the network of global any old place; And publicly-owned address is the external address of local area network (LAN), is in the globally unique IP address on the internet.Press the regulation of IANA, private network address can not be assigned with on the internet, but in the inner use of an enterprise (local area network (LAN)).A suitable network address is selected according to what of foreseeable future host number by each enterprise.Different enterprises, their internal network address can be identical.
Because privately owned address can not seen on Internet, uses privately owned address of host can not directly visit Internet, same, on Internet, also can not have access to and use privately owned address of host.If the computer in the local area network (LAN) will be visited Internet, he just should not adopt privately owned address, but publicly-owned address.But the public ip address resource is limited, and the computer in many local area network (LAN)s has to adopt privately owned address.Produced NAT technology (Network AddressTranslation in order to address the above problem; NAT).
Network address translation NAT technology is meant the IP address from the method for an address field to another address field mapping, and it comprises NAT (Outbound NAT/tradition NAT), two-way NAT, twice NAT, many interfaces NAT etc.And to solve between the address, inside and outside conversion and since safety or address use when illegal in network-external, people usually use out the NAT technology, its principle is, the main frame of local area network (LAN) inside (computer) remains privately owned address, the main frame of local area network (LAN) inside has only when need be visited Internet, be interim legal IP address of this host assignment (publicly-owned address) just by the NAT technology, make this main frame can visit Internet, therefore the main frame of every local area network (LAN) inside does not need all to have legal IP address and just can visit Internet, has so just saved legal IP address greatly.
But, sometimes required process is just in time opposite with said process, NE management person's (management server) that need be positioned on the public network can directly visit the network equipment with privately owned address, and in the network configuration that has network address translation NAT at present, can't achieve this end.
Summary of the invention
Therefore, main purpose of the present invention is to provide a kind of management method of the network equipment, and the NE management person who makes this method of employing be positioned on the public network can directly visit the network equipment with privately owned address.
For achieving the above object, technical scheme of the present invention specifically is achieved in that a kind of management method of the network equipment, the above-mentioned network equipment comprise at least one NE management person, at least one master network element, at least one have privately owned address from network element, the method includes the steps of:
(1) above-mentionedly its state information notification is given and the above-mentioned above-mentioned master network element that links to each other from network element from network element;
(2) state information table of above-mentioned master network element structure;
(3) above-mentioned master network element sends to the said network element manager who links to each other with above-mentioned master network element with above-mentioned state information table.
Above-mentioned state information table comprise above-mentioned from network element privately owned address and above-mentioned master network element on above-mentioned from the network element corresponding port.Above-mentioned state information table also comprises said network element manager and above-mentioned from the employed agreement of net element communication and above-mentioned from the pairing port numbers of network element.Usually above-mentioned is TCP or udp port number from the pairing port numbers of network element.
Preceding in step (1), said network element manager must be by above-mentioned authentication from network element.In step (1), above-mentionedly when starting, its state information notification is given and the above-mentioned above-mentioned master network element that links to each other from network element from network element.
In step (3), above-mentioned master network element synchronously sends to the said network element manager who links to each other with above-mentioned master network element with above-mentioned state information table.
Usually, above-mentioned master network element is a gateway device.
The present invention also comprises a kind of management devices of the network equipment, the above-mentioned network equipment comprise at least one NE management person, at least one master network element, at least one have privately owned address from network element, it is characterized in that: above-mentioned master network element comprises a receiving element, a structural unit and a transmitting element, above-mentioned receiving element receives the above-mentioned state information that is notified to above-mentioned master network element from network element, state information table of above-mentioned structural unit structure, above-mentioned transmitting element sends to the said network element manager with above-mentioned state information table.The state information table of above-mentioned structural unit structure comprise above-mentioned from network element privately owned address and above-mentioned master network element on above-mentioned from the network element corresponding port.In addition, the state information table of above-mentioned structural unit structure also comprises said network element manager and above-mentioned from the employed agreement of net element communication and above-mentioned from the pairing port numbers of network element.
As seen, the management method of the network equipment provided by the present invention and device thereof have following advantage and characteristics:
(1) the inventive method makes the NE management person who is positioned on the public network can directly visit the network equipment with privately owned address, therefore can use in a large number in local area network (LAN) inside and have privately owned address of host, and need not to have publicly-owned address, thereby saved publicly-owned IP address.
(2) the inventive method is to change in the software of the network equipment, the hardware components of the network equipment then be need not to change, thereby be easy to realize that the cost of hardware modification is extremely low.
Description of drawings
Below in conjunction with accompanying drawing the specific embodiment of the present invention is described in further detail, wherein:
Fig. 1 is the structural representation of the embodiment of the invention.
Fig. 2 is the state information hoist pennants of the embodiment of the invention.
Embodiment
Fig. 1 is the structural representation of the embodiment of the invention.The network equipment among the figure comprises two management servers (Element Manager), be respectively management server 1 (EM1) and management server 2 (EM2), a gateway, the main frame of three local area network (LAN) inside, above-mentioned management server EM1, EM2 is connected on the gateway by gateway respectively, the identifier of above-mentioned three local area network (LAN) internal hosts is respectively SNE1, SNE2, SNE3, they have private IP address 192.168.0.1 respectively, 192.168.0.2,192.168.0.3, and respectively by on gateway 81,82,83 ports are connected on the gateway, and the port numbers of carrying out TCP or UDP communication on these three main frames all is 80.
If management server EM1~EM2 wants to visit the main frame of local area network (LAN) inside, then at first need by a safety certification between it and the above-mentioned main frame, after the authentication, management server just has the authority of the main frame of the above-mentioned local area network (LAN) of visit inside.Authentication can be adopted authentication mode commonly used among the Internet, for example modes such as message encryption method validation, Message Authentication Code authentication, hash function authentication.After authentication, EM1, EM2 can visit the main frame SNE1~SNE3 in the local area network (LAN) respectively.
Main frame when local area network (LAN) inside, when the main frame 1 that for example privately owned address is 192.168.0.1 starts, internal host can send a piece of news to the gateway that links to each other with this internal host, just this has on the router of public network IP address, this message can be carried some state informations, and for example the address of this local area network (LAN) internal host is the identifier SNE1 of private IP address 192.168.0.1, this local area network (LAN) internal host etc.When receiving this message, gateway can be constructed a state information table, this state information table is made up of some territories, wherein has privately owned address field, the main frame of main frame to send the employed port of message territory, above-mentioned main frame pairing port territory, the visit communication protocol territory that above-mentioned main frame allowed (for example only allowing the UDP bag to pass through) on gateway.For convenience's sake, above-mentioned state information table can also comprise a hostid territory.Therefore the state information table that constructs is shown in Figure 2.After gateway constructs above-mentioned state information table, immediately above-mentioned state information table is sent to above-mentioned management server EM1 and the EM2 that links to each other with above-mentioned gateway, make that state information table and the management information table on the above-mentioned gateway on EM1 and the EM2 is synchronous.If management server EM1 will visit the main frame SNE1 of local area network (LAN) inside, the above-mentioned gateway of message informing that will visit earlier of management server then.Gateway is according to above-mentioned state information table then, finding and will visiting privately owned address is that the UDP bag of the internal host of 192.168.0.1 needs to transmit by 81 ports, therefore above-mentioned UDP bag is transmitted by 81 ports, so just realized the purpose of visit local area network (LAN) internal host.
If what management server was sent is the TCP bag, because regulation is not transmitted the TCP bag in the protocol domain of above-mentioned state information table, therefore can not issue inner main frame, also just can't conduct interviews to these main frames.
In addition, the management devices of the network equipment in the embodiment of the invention also as shown in Figure 1, the above-mentioned network equipment comprises that 2 management servers, gateway, 3 have privately owned address of host, above-mentioned gateway comprises a receiving element, a structural unit and a transmitting element, above-mentioned receiving element receives the state information that above-mentioned host notification with privately owned address is given this gateway, state information table of above-mentioned structural unit structure, above-mentioned transmitting element sends to above-mentioned management server with above-mentioned state information table.The state information table of above-mentioned structural unit structure is made up of some territories, wherein has privately owned address field, the main frame of main frame to send the employed port of message territory, above-mentioned main frame pairing port territory, the visit communication protocol territory that above-mentioned main frame allowed (for example only allowing the UDP bag to pass through) on gateway.For convenience's sake, above-mentioned state information table can also comprise a hostid territory.
The inventive method makes the NE management person who is positioned on the public network can directly visit the network equipment with privately owned address, therefore can use in a large number in local area network (LAN) inside and have privately owned address of host, and need not to have publicly-owned address, thereby saved publicly-owned IP address.In addition, the present invention only needs to change in the software of the network equipment, the hardware components of the network equipment then be need not to change, thereby be easy to realize that the cost of hardware modification is extremely low.
Claims (11)
1. the management method of a network equipment, the above-mentioned network equipment comprise at least one NE management person, at least one master network element, at least one have privately owned address from network element, it is characterized in that the method includes the steps of:
(1) above-mentionedly its state information notification is given and the above-mentioned above-mentioned master network element that links to each other from network element from network element;
(2) state information table of above-mentioned master network element structure;
(3) above-mentioned master network element sends to the said network element manager who links to each other with above-mentioned master network element with above-mentioned state information table.
2. the cluster management method of a kind of network equipment according to claim 1 is characterized in that: above-mentioned state information table comprise above-mentioned from network element privately owned address and above-mentioned master network element on above-mentioned from the network element corresponding port.
3. the cluster management method of a kind of network equipment according to claim 2, it is characterized in that: above-mentioned state information table also comprises said network element manager and above-mentioned from the employed agreement of net element communication and above-mentioned from the pairing port numbers of network element.
4. the cluster management method of a kind of network equipment according to claim 3 is characterized in that: above-mentioned is TCP or udp port number from the pairing port numbers of network element.
5. according to the cluster management method of the arbitrary described a kind of network equipment of claim 1 to 3, it is characterized in that: in step (1), above-mentionedly when starting, its state information notification is given and the above-mentioned above-mentioned master network element that links to each other from network element from network element.
6. according to the cluster management method of the arbitrary described a kind of network equipment of claim 1 to 3, it is characterized in that: preceding in step (1), said network element manager is by above-mentioned authentication from network element.
7. according to the cluster management method of the arbitrary described a kind of network equipment of claim 1 to 3, it is characterized in that: in step (3), above-mentioned master network element synchronously sends to the said network element manager who links to each other with above-mentioned master network element with above-mentioned state information table.
8. according to the cluster management method of the arbitrary described a kind of network equipment of claim 1 to 3, it is characterized in that: above-mentioned master network element is a gateway device.
9. the management devices of a network equipment, the above-mentioned network equipment comprise at least one NE management person, at least one master network element, at least one have privately owned address from network element, it is characterized in that: above-mentioned master network element comprises a receiving element, a structural unit and a transmitting element, above-mentioned receiving element receives the above-mentioned state information that is notified to above-mentioned master network element from network element, state information table of above-mentioned structural unit structure, above-mentioned transmitting element sends to the said network element manager with above-mentioned state information table.
10. the management devices of a kind of network equipment according to claim 9 is characterized in that: the state information table of above-mentioned structural unit structure comprise above-mentioned from network element privately owned address and above-mentioned master network element on above-mentioned from the network element corresponding port.
11. the management devices of a kind of network equipment according to claim 9 is characterized in that: the state information table of above-mentioned structural unit structure also comprises said network element manager and above-mentioned from the employed agreement of net element communication and above-mentioned from the pairing port numbers of network element.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2006100834460A CN101083594A (en) | 2006-05-31 | 2006-05-31 | Method and system for managing network appliance |
| PCT/EP2007/055227 WO2007138068A1 (en) | 2006-05-31 | 2007-05-30 | A type of management method and device for network equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2006100834460A CN101083594A (en) | 2006-05-31 | 2006-05-31 | Method and system for managing network appliance |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101083594A true CN101083594A (en) | 2007-12-05 |
Family
ID=38319280
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2006100834460A Pending CN101083594A (en) | 2006-05-31 | 2006-05-31 | Method and system for managing network appliance |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN101083594A (en) |
| WO (1) | WO2007138068A1 (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101997875A (en) * | 2010-10-29 | 2011-03-30 | 北京大学 | Secure multi-party network communication platform and construction method and communication method thereof |
| CN101500023B (en) * | 2008-02-03 | 2011-11-16 | 北京艾德斯科技有限公司 | Automatic configuration method for network appliance IP address |
| CN102308523A (en) * | 2011-07-27 | 2012-01-04 | 华为技术有限公司 | Data communication network configuration method, gateway network element and data communication system |
| CN102487408A (en) * | 2010-12-02 | 2012-06-06 | 中华电信股份有限公司 | Network equipment monitoring method |
| CN102739428A (en) * | 2011-04-15 | 2012-10-17 | 中兴通讯股份有限公司 | Method and device for data acquisition, and system |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8516171B2 (en) | 2005-04-06 | 2013-08-20 | Raritan Americas Inc. | Scalable, multichannel remote device KVM management system for converting received signals into format suitable for transmission over a command network |
| US8332523B2 (en) * | 2005-04-06 | 2012-12-11 | Raritan Americas, Inc. | Architecture to enable keyboard, video and mouse (KVM) access to a target from a remote client |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| DE19504078A1 (en) * | 1995-02-08 | 1996-08-14 | Telefonbau & Normalzeit Gmbh | Method for initiating remote maintenance of a private branch exchange |
| US6665702B1 (en) * | 1998-07-15 | 2003-12-16 | Radware Ltd. | Load balancing |
| US6425008B1 (en) * | 1999-02-16 | 2002-07-23 | Electronic Data Systems Corporation | System and method for remote management of private networks having duplicate network addresses |
| US8065408B2 (en) * | 2004-06-30 | 2011-11-22 | Nokia, Inc. | Method and system for dynamic device address management |
-
2006
- 2006-05-31 CN CNA2006100834460A patent/CN101083594A/en active Pending
-
2007
- 2007-05-30 WO PCT/EP2007/055227 patent/WO2007138068A1/en active Application Filing
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101500023B (en) * | 2008-02-03 | 2011-11-16 | 北京艾德斯科技有限公司 | Automatic configuration method for network appliance IP address |
| CN101997875A (en) * | 2010-10-29 | 2011-03-30 | 北京大学 | Secure multi-party network communication platform and construction method and communication method thereof |
| CN101997875B (en) * | 2010-10-29 | 2013-05-29 | 北京大学 | Secure multi-party network communication platform and construction method and communication method thereof |
| CN102487408A (en) * | 2010-12-02 | 2012-06-06 | 中华电信股份有限公司 | Network equipment monitoring method |
| CN102739428A (en) * | 2011-04-15 | 2012-10-17 | 中兴通讯股份有限公司 | Method and device for data acquisition, and system |
| WO2012139461A1 (en) * | 2011-04-15 | 2012-10-18 | 中兴通讯股份有限公司 | Data acquisition method, apparatus and system |
| CN102739428B (en) * | 2011-04-15 | 2014-08-13 | 中兴通讯股份有限公司 | Method and device for data acquisition, and system |
| CN102308523A (en) * | 2011-07-27 | 2012-01-04 | 华为技术有限公司 | Data communication network configuration method, gateway network element and data communication system |
| WO2012106935A1 (en) * | 2011-07-27 | 2012-08-16 | 华为技术有限公司 | Data communication network configuration method, gateway element and data communication system |
| CN102308523B (en) * | 2011-07-27 | 2014-07-16 | 华为技术有限公司 | Data communication network configuration method, gateway network element and data communication system |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2007138068A1 (en) | 2007-12-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106576118B (en) | Dynamic DNS-based service discovery | |
| CN101465856B (en) | Method and system for controlling user access | |
| KR101034938B1 (en) | System and method for managing ipv6 address and connection policy | |
| KR100791298B1 (en) | Apparatus and method for controlling device of home network | |
| US7680954B2 (en) | Proxy DNS for web browser request redirection in public hotspot accesses | |
| CN104427010A (en) | NAT (network address translation) method and device applied to DVPN (dynamic virtual private network) | |
| EP2781049B1 (en) | Distributing overlay network ingress information | |
| CN101083594A (en) | Method and system for managing network appliance | |
| WO2004105333A1 (en) | Safe virtual private network | |
| KR20060044435A (en) | Virtual private network structures reuse for mobile computing devices | |
| CN1649309A (en) | Network managing method and system and computer | |
| WO2017206701A1 (en) | Access control method and home gateway | |
| JP2009163546A (en) | Gateway, repeating method and program | |
| JP2009100064A (en) | Communication method and communication system for wireless lan | |
| CN103812900A (en) | Data synchronization method, device and system | |
| CN103327008A (en) | HTTP reorienting method and HTTP reorienting device | |
| JP2005020112A (en) | Network setting system, managing apparatus, terminal and network setting method | |
| CN102075504B (en) | Method and system for realizing two-layer Portal authentication and Portal server | |
| CN107071075B (en) | Device and method for dynamically jumping network address | |
| CN102035703A (en) | Family wireless network and implementation method thereof | |
| JP2005101890A (en) | Device and program for name registration mediation, and for name solution mediation name solution system, and name solution method | |
| CN103795581A (en) | Address processing method and address processing device | |
| CN1859384B (en) | Method for controlling user's message passing through network isolation device | |
| CN104301197B (en) | It is a kind of to realize the method and system mutually found between user multiple terminals | |
| CN105516121B (en) | The method and system that AC is communicated with AP in WLAN |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |