CN103188234A - Remote maintenance method based on distributed system and device thereof - Google Patents
Remote maintenance method based on distributed system and device thereof Download PDFInfo
- Publication number
- CN103188234A CN103188234A CN2011104558329A CN201110455832A CN103188234A CN 103188234 A CN103188234 A CN 103188234A CN 2011104558329 A CN2011104558329 A CN 2011104558329A CN 201110455832 A CN201110455832 A CN 201110455832A CN 103188234 A CN103188234 A CN 103188234A
- Authority
- CN
- China
- Prior art keywords
- distributed system
- attendant
- long
- intelligent equipment
- distance intelligent
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a remote maintenance method based on a distributed system and a device of the remote maintenance method based on the distributed system, and when maintenance persons login the distributed system, identity authentication for the maintenance persons is performed; when the maintenance persons need to perform maintenance operations for remote intelligent devices in the distributed system, and authority limit authentication for the maintenance operations of the maintenance persons is performed; after the identity authentication for the maintenance persons and the authority limit authentication pass, the remote intelligent devices needing to be maintained are found; and a virtual channel is established between a client side and the remote intelligent devices, and the maintenance persons maintain the remote intelligent devices through the virtual channel. Not only is each maintenance person enabled to maintain the remote intelligent devices within respective authority limits of each maintenance person, but also the maintenance persons can maintain the remote intelligent devices through the virtual channel by using of third party maintenance software, and therefore the safety among the distributed system and the remote intelligent devices is further improved.
Description
Technical field
The present invention relates to a kind of remote maintenance technology, relate in particular to a kind of remote maintenance technology of distributed system.
Background technology
At present, along with territorial scope and each stop number of spots that industrial automation system is contained are increasing, need the smart machine object of remote maintenance also more and more.In the prior art, for the fault message and the timely analyzing failure cause of energy that obtain the long-distance intelligent device object that needs maintenance, the attendant generally adopts remote control software that long-distance intelligent equipment is safeguarded.It mainly adopts the screen mode of copying, and connects to realize the complete operation of long-distance intelligent equipment is taken over by IP network, thereby reaches distributed system and be connected to the purpose of each long-distance intelligent plant maintenance of distributed system.And in actual applications, the shortcoming of this solution comes out gradually: any attendant all can realize control fully to long-distance intelligent equipment, form new hidden danger, easily cause misoperation and the operation problem out of control of distributed system and long-distance intelligent equipment, violated the security doctrine of isolation and subregion.
In order to address the above problem, the attendant has proposed serial server again can pass through transmission control protocol/internet interconnection protocol (Transmission Control Protocol/Internet Protocol, abbreviation " TCP/IP ") network realizes the serial communication of long-distance intelligent equipment is converted to the long-range serial ports of network enabled communication, thereby realize the telecommunication transmission by internet/intranet (Internet/Intranet), and then realize the remote maintenance management function to each smart machine.Yet because telemechanical unit virtual support port function not usually, realize the remote maintenance to smart machine, just must be with network and the direct UNICOM of outer net in the station of connection serial server, thereby it is outer online to make long-distance intelligent equipment be directly exposed to, control operation just can directly be carried out to long-distance intelligent equipment in the IP address that general attendant only need obtain serial server, so this remote maintenance is cost to sacrifice safety.And at the smart machine that adopts network communication to carry out maintenance management, because the telemechanical unit does not possess safe routing function, be faced with a safe difficult problem identical with serial server too.
Summary of the invention
The technical problem that the present invention mainly solves provides a kind of long-distance maintenance method based on distributed system and device thereof, not only make each attendant only can safeguard the long-distance intelligent equipment in its authority, and can use third party's maintenance software that long-distance intelligent equipment is safeguarded by tunnel again, thereby have further improved the fail safe between distributed system and the long-distance intelligent equipment.。
In order to solve the problems of the technologies described above, the invention provides a kind of long-distance maintenance method based on distributed system, the method includes the steps of:
When the attendant logins distributed system, this attendant is carried out authentication; Receiving to carry out attended operation to the long-distance intelligent equipment in the distributed system from the attendant time, this attendant's attended operation is being carried out purview certification; After attendant's identity and purview certification were passed through, finding needed the long-distance intelligent equipment safeguarded; Set up a tunnel between client and long-distance intelligent equipment, the attendant safeguards long-distance intelligent equipment by this tunnel.
As further improvement, when the attendant logins distributed system, this attendant to be carried out in the step of authentication, the burning that the attendant is provided has the usbkey of digital certificate to carry out authentication.
As further improvement, after attendant's identity and purview certification are passed through, find in the step that needs the long-distance intelligent equipment safeguarded, carry out positioning service by the resource locator server in the distributed system, finding needs the long-distance intelligent equipment safeguarded.
As further improvement, between client and long-distance intelligent equipment, set up in the step of a tunnel, select the access way of long-distance intelligent equipment, carry out corresponding IP address and/or port arrangement.
As further improvement, the access way of long-distance intelligent equipment can comprise: network interface, serial ports and agency.
As further improvement, by this tunnel long-distance intelligent equipment is safeguarded in the step, in distributed system, be provided with timeout mechanism, exceed when default in limited time when the time that the attendant carries out attended operation, submit delayed filing to this distributed system.
The present invention also provides a kind of remote maintenance device based on distributed system, and this device comprises:
Authentication module is used for when the attendant logins distributed system this attendant being carried out authentication;
The purview certification module is used for receiving need carry out attended operation to the long-distance intelligent equipment of distributed system from the attendant time, and this attendant's attended operation is carried out purview certification;
Search module is used for after attendant's identity and purview certification are passed through, and finding needs the long-distance intelligent equipment safeguarded;
Tunnel is set up module, is used for setting up a tunnel between client and long-distance intelligent equipment, and the attendant safeguards long-distance intelligent equipment by this tunnel.
As further improvement, further comprise following submodule in the authentication module: the submodule that the burning that the attendant is provided has the usbkey of digital certificate to carry out authentication.
As further improvement, further comprise following submodule in the search module: carry out positioning service by resource locator server, find the submodule of the long-distance intelligent equipment that needs maintenance.
As further improvement, tunnel is set up and is further comprised following submodule in the module: select the access way of long-distance intelligent equipment, carry out the submodule of corresponding IP address and/or port arrangement.
As further improvement, the access way of long-distance intelligent equipment can comprise: network interface, serial ports and agency.
As further improvement, tunnel is set up module can also comprise following submodule: be provided with timeout mechanism in distributed system, exceed when default in limited time when the time that the attendant carries out attended operation, submit the submodule of delayed filing to this distributed system to.
Embodiment of the present invention compared with prior art, the main distinction and effect thereof are: when the attendant logins distributed system, this attendant is carried out authentication; When the attendant need carry out attended operation to the long-distance intelligent equipment in the distributed system, this attendant's attended operation is carried out purview certification; After attendant's identity and purview certification were passed through, finding needed the long-distance intelligent equipment safeguarded; Set up a tunnel between client and long-distance intelligent equipment, the attendant safeguards long-distance intelligent equipment by this tunnel.Not only make each attendant only can safeguard the long-distance intelligent equipment in its authority, and can use third party's maintenance software that long-distance intelligent equipment is safeguarded by tunnel again, thereby have further improved the fail safe between distributed system and the long-distance intelligent equipment.
Description of drawings
Fig. 1 is the long-distance maintenance method flow chart based on distributed system of first embodiment of the invention;
Fig. 2 is the remote maintenance structure drawing of device based on distributed system of second embodiment of the invention.
Embodiment
For making the purpose, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing embodiments of the present invention are described in further detail.
First embodiment of the invention relates to a kind of long-distance maintenance method based on distributed system, and in the present embodiment, concrete method as shown in Figure 1.
In step 101, the attendant who logins distributed system is carried out authentication.
Specifically, distributed system burning that the attendant is provided has the usbkey of digital certificate to carry out authentication.
In step 102, receiving need carry out attended operation to the long-distance intelligent equipment in the distributed system from the attendant time, this attendant's attended operation is carried out purview certification.
In step 103, judge whether attendant's attended operation passes through purview certification.If this attendant's attended operation has passed through purview certification, then enter step 104; If this attendant's attended operation by purview certification, does not then finish this flow process.When receiving again need carry out attended operation to the long-distance intelligent equipment in the distributed system from the attendant time, other attended operation to this attendant carries out purview certification again.
In step 104, find the long-distance intelligent equipment that needs maintenance.
Need to prove, be after carrying out positioning service by the resource locator server in the distributed system, finds the long-distance intelligent equipment that needs maintenance.
In step 105, between client and long-distance intelligent equipment, set up a tunnel.
Wherein, when setting up tunnel, need to select the access way of long-distance intelligent equipment, and carry out corresponding IP address and/or port arrangement.And the access way of long-distance intelligent equipment can comprise: network interface, serial ports and agency.
In step 106, the attendant safeguards long-distance intelligent equipment by this tunnel.
Need to prove, in distributed system, be provided with timeout mechanism, exceed when default in limited time when the time that the attendant carries out attended operation, need submit delayed filing to this distributed system.
This shows, by above-mentioned flow process, make each attendant only can safeguard the long-distance intelligent equipment in its authority, and can use third party's maintenance software that long-distance intelligent equipment is safeguarded by tunnel again, thereby have further improved the fail safe between distributed system and the long-distance intelligent equipment.
Second embodiment of the invention relates to a kind of remote maintenance device based on distributed system, and as shown in Figure 2, this device comprises:
Authentication module is used for when the attendant logins distributed system this attendant being carried out authentication;
The purview certification module is used for receiving need carry out attended operation to the long-distance intelligent equipment of distributed system from the attendant time, and this attendant's attended operation is carried out purview certification;
Search module is used for after attendant's identity and purview certification are passed through, and finding needs the long-distance intelligent equipment safeguarded;
Tunnel is set up module, is used for setting up a tunnel between client and long-distance intelligent equipment, and the attendant safeguards long-distance intelligent equipment by this tunnel.
As further improvement, further comprise following submodule in the authentication module: the submodule that the burning that the attendant is provided has the usbkey of digital certificate to carry out authentication.
As further improvement, further comprise following submodule in the search module: carry out positioning service by resource locator server, find the submodule of the long-distance intelligent equipment that needs maintenance.
As further improvement, tunnel is set up and is further comprised following submodule in the module: select the access way of long-distance intelligent equipment, carry out the submodule of corresponding IP address and/or port arrangement.
As further improvement, the access way of long-distance intelligent equipment can comprise: network interface, serial ports and agency.
As further improvement, tunnel is set up module can also comprise following submodule: be provided with timeout mechanism in distributed system, exceed when default in limited time when the time that the attendant carries out attended operation, submit the submodule of delayed filing to this distributed system to.
In sum, when the attendant logins distributed system, this attendant is carried out authentication; When the attendant need carry out attended operation to the long-distance intelligent equipment in the distributed system, this attendant's attended operation is carried out purview certification; After attendant's identity and purview certification were passed through, finding needed the long-distance intelligent equipment safeguarded; Set up a tunnel between client and long-distance intelligent equipment, the attendant safeguards long-distance intelligent equipment by this tunnel.Not only make each attendant only can safeguard the long-distance intelligent equipment in its authority, and can use third party's maintenance software that long-distance intelligent equipment is safeguarded by tunnel again, thereby have further improved the fail safe between distributed system and the long-distance intelligent equipment.
Though pass through with reference to some of the preferred embodiment of the invention, the present invention is illustrated and describes, but those of ordinary skill in the art should be understood that and can do various changes to it in the form and details, and without departing from the spirit and scope of the present invention.
Claims (12)
1. long-distance maintenance method based on distributed system is characterized in that the method includes the steps of:
When the attendant logins distributed system, this attendant is carried out authentication;
Receiving to carry out attended operation to the long-distance intelligent equipment in the distributed system from described attendant the time, this attendant's attended operation is being carried out purview certification;
After described attendant's identity and purview certification were passed through, finding needed the described long-distance intelligent equipment safeguarded;
Set up a tunnel between client and described long-distance intelligent equipment, described attendant safeguards described long-distance intelligent equipment by this tunnel.
2. the long-distance maintenance method based on distributed system according to claim 1 is characterized in that, when the attendant logins distributed system, this attendant is carried out in the step of authentication,
The burning that described attendant is provided has the usbkey of digital certificate to carry out authentication.
3. the long-distance maintenance method based on distributed system according to claim 1 is characterized in that, after described attendant's identity and purview certification are passed through, find in the step that needs the described long-distance intelligent equipment safeguarded,
Carry out positioning service by the resource locator server in the described distributed system, find the described long-distance intelligent equipment that needs maintenance.
4. the long-distance maintenance method based on distributed system according to claim 1 is characterized in that, between client and described long-distance intelligent equipment, set up in the step of a tunnel,
Select the access way of described long-distance intelligent equipment, carry out corresponding IP address and/or port arrangement.
5. the long-distance maintenance method based on distributed system according to claim 4 is characterized in that, the access way of described long-distance intelligent equipment comprises one of following or its arbitrary combination at least:
Network interface and/or serial ports and/or agency.
6. the long-distance maintenance method based on distributed system according to claim 1 is characterized in that, by this tunnel described long-distance intelligent equipment is safeguarded in the step,
In described distributed system, be provided with timeout mechanism, exceed when default in limited time when the time that described attendant carries out described attended operation, submit delayed filing to this distributed system.
7. remote maintenance device based on distributed system is characterized in that this device comprises:
Authentication module is used for when described attendant logins distributed system this attendant being carried out authentication;
The purview certification module is used for receiving need carry out attended operation to the long-distance intelligent equipment of distributed system from described attendant the time, and this attendant's attended operation is carried out purview certification;
Search module is used for after described attendant's identity and purview certification are passed through, and finding needs the described long-distance intelligent equipment safeguarded;
Tunnel is set up module, is used for setting up a tunnel between client and described long-distance intelligent equipment, and described attendant safeguards described long-distance intelligent equipment by this tunnel.
8. the remote maintenance device based on distributed system according to claim 7 is characterized in that, further comprises following submodule in the described authentication module:
The submodule that the burning that described attendant is provided has the usbkey of digital certificate to carry out authentication.
9. the remote maintenance device based on distributed system according to claim 7 is characterized in that, further comprises following submodule in the described search module:
Carry out positioning service by resource locator server, find the submodule of the described long-distance intelligent equipment that needs maintenance.
10. the remote maintenance device based on distributed system according to claim 7 is characterized in that, described tunnel is set up and further comprised following submodule in the module:
Select the access way of described long-distance intelligent equipment, carry out the submodule of corresponding IP address and/or port arrangement.
11. the remote maintenance device based on distributed system according to claim 10 is characterized in that, the access way of described long-distance intelligent equipment comprises one of following or its arbitrary combination at least:
Network interface and/or serial ports and/or agency.
12. the remote maintenance device based on distributed system according to claim 7 is characterized in that, described tunnel is set up module can also comprise following submodule:
In described distributed system, be provided with timeout mechanism, exceed when default in limited time when the time that described attendant carries out described attended operation, submit the submodule of delayed filing to this distributed system to.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011104558329A CN103188234A (en) | 2011-12-30 | 2011-12-30 | Remote maintenance method based on distributed system and device thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011104558329A CN103188234A (en) | 2011-12-30 | 2011-12-30 | Remote maintenance method based on distributed system and device thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103188234A true CN103188234A (en) | 2013-07-03 |
Family
ID=48679203
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011104558329A Pending CN103188234A (en) | 2011-12-30 | 2011-12-30 | Remote maintenance method based on distributed system and device thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103188234A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109510725A (en) * | 2018-11-28 | 2019-03-22 | 迈普通信技术股份有限公司 | Fault testing system of communication equipment and method |
| WO2021017660A1 (en) * | 2019-07-31 | 2021-02-04 | 中兴通讯股份有限公司 | Execution method and apparatus for maintenance operation |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101101485A (en) * | 2007-08-02 | 2008-01-09 | 上海可鲁***软件有限公司 | Solution method for remote monitoring and maintenance of automatization system |
| CN101150429A (en) * | 2007-10-10 | 2008-03-26 | 上海可鲁***软件有限公司 | A remote monitoring or maintenance method and device |
| CN102053584A (en) * | 2009-11-06 | 2011-05-11 | 中石油北京天然气管道有限公司 | Remote maintenance authorization management method for automatic control intelligent equipment of oil gas pipeline |
-
2011
- 2011-12-30 CN CN2011104558329A patent/CN103188234A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101101485A (en) * | 2007-08-02 | 2008-01-09 | 上海可鲁***软件有限公司 | Solution method for remote monitoring and maintenance of automatization system |
| CN101150429A (en) * | 2007-10-10 | 2008-03-26 | 上海可鲁***软件有限公司 | A remote monitoring or maintenance method and device |
| CN102053584A (en) * | 2009-11-06 | 2011-05-11 | 中石油北京天然气管道有限公司 | Remote maintenance authorization management method for automatic control intelligent equipment of oil gas pipeline |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109510725A (en) * | 2018-11-28 | 2019-03-22 | 迈普通信技术股份有限公司 | Fault testing system of communication equipment and method |
| CN109510725B (en) * | 2018-11-28 | 2022-05-17 | 迈普通信技术股份有限公司 | Communication equipment fault detection system and method |
| WO2021017660A1 (en) * | 2019-07-31 | 2021-02-04 | 中兴通讯股份有限公司 | Execution method and apparatus for maintenance operation |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106713409B (en) | Cloud disaster recovery system and method based on SaaS | |
| CN102377814B (en) | Remote assistance service method aiming at embedded operation system | |
| US10230813B2 (en) | Network system, coupling unit, and method for operating a network system | |
| CN104811433A (en) | Distributed IoT (Internet of Things) solution scheme of C/S configuration | |
| CN102075339B (en) | VPN management platform, and implementation method and system for VPN service | |
| CN101420455A (en) | Systems and/or methods for streaming reverse http gateway, and network including the same | |
| US9521187B2 (en) | Managed filed transfer utilizing dynamic horizontal and vertical scaling | |
| CN101355557B (en) | Method and system for implementing network access control in MPLS/VPN network | |
| CN103873332A (en) | Method for providing enterprise service bus of unified service environment by tax system | |
| CN104093080A (en) | Intelligent television remote debugging system and method | |
| CN102882828A (en) | Information safe transmission control method between inside network and outside network and gateway thereof | |
| CN103312744A (en) | Business management method, platform and system based on cloud desktop | |
| CN100401706C (en) | Access method and system for client end of virtual private network | |
| CN105991642B (en) | Utilize the method for publicly-owned cloud network, privately owned cloud routing server and intelligent apparatus client | |
| CN103368809A (en) | Internet reverse penetration tunnel implementation method | |
| CN105119787B (en) | A kind of public internet access system and method based on software definition | |
| CN103020861A (en) | Intermediate business platform system used for financial securities industry | |
| CN102377740A (en) | Industrial access control method and device | |
| CN104811371A (en) | Brand-new instant messaging system | |
| CN101087236B (en) | VPN access method and device | |
| CN102820999B (en) | Method for managing and controlling network service level and function of cloud virtual desktop application | |
| CN108965297A (en) | A kind of access control equipment management system | |
| CN102801644B (en) | Method and device for blocking mail behavior and gateway | |
| CN106533894B (en) | A kind of instant messaging system of completely new safety | |
| CN102195988B (en) | Realize method that enterprise network aaa server and public network aaa server unify and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20130703 |