CN104767781A - TCP proxy device and method - Google Patents
TCP proxy device and method Download PDFInfo
- Publication number
- CN104767781A CN104767781A CN201410008131.4A CN201410008131A CN104767781A CN 104767781 A CN104767781 A CN 104767781A CN 201410008131 A CN201410008131 A CN 201410008131A CN 104767781 A CN104767781 A CN 104767781A
- Authority
- CN
- China
- Prior art keywords
- message
- tcp
- data
- data message
- ssl
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
- H04L69/163—In-band adaptation of TCP data exchange; In-band control procedures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
- H04L69/166—IP fragmentation; TCP segmentation
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/50—Reducing energy consumption in communication networks in wire-line communication networks, e.g. low power modes or reduced link rate
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention provides a TCP proxy device and method, and the device and method are applied to network equipment which establishes connection between a sending terminal and a destination. The device comprises a data acquisition module and a message determination module; when a received TCP message sent by the sending terminal is a TCP data message, the data acquisition module acquires plaintext data carried in the TCP data message; the message determination module determines whether the plaintext data in the TCP data message needs modification according to a preset classification rule; if yes, a content processing module modifies the plaintext data in the TCP data message, modifies head information of the TCP data report and forwards the modified information to the destination; and if no, the head information of the TCP data message is modified and then forwarded to the destination. Thus, resource consumption of an operation system is reduced, the proxy efficiency is greatly improved, and the using effect in a relative core position in the network is better.
Description
Technical field
The present invention relates to communication technical field, particularly relate to a kind of device and method of TCP agent.
Background technology
TCP agent processes the common means of content-based Network, its basic model is add agent side between the TCP transmitting terminal and destination of script intercommunication, the two ends of direct interaction are originally carried out with agent side alternately respectively, agent side plays the effect of " passing on a message ", modifies according to the content to two ends are mutual that needs of business simultaneously.Its application is very extensive, as: seven layers of load balancing, SSL acceleration, SSLVPN, content auditing, proxy surfing, connection multiplexing, WEB buffer memory etc.The business of the content-based process of major part can use TCP agent to realize.
Existing TCP agent majority uses socket agency to process content-based Network, in transmitting procedure, socket acts on behalf of the role served as is two terminals, such as socket agency 1 and socket agency 2, wherein socket agency 1 acts on behalf of 2 operate in same Agent with socket.Socket agency 1 is responsible for carrying out TCP with client and being connected, then extracts the message data received and send to application proxy program.Socket agency 2 is connected with server afterwards, and Agent uses socket agency 2 the data retransmission obtained from socket agency 1 before to server.In this transmission system, the system class of socket agency is seemingly two and completely independently links, and all data messages carry out transfer by application proxy program.
But be sent to application program owing to using socket to act on behalf of data socket need being acted on behalf of 1 acquisition, process rear application proxy program and also data will be sent to socket agency 2, because this increasing consumption and the time loss of message in network protocol stack of operating-system resources, this deathblow undoubtedly when number of concurrent is huge.On the other hand, socket agency is used also to need the moment to monitor the read-write of socket, like this for not having the socket of read-write to be just equivalent to flogging a dead horse, the mechanism even if use signal sets out, also the asynchronous process of multi-CPU cannot be realized, although for the such concurrent processing of conventional system enough, this is far from being enough for the high-end network equipment, because the high-end network equipment is positioned at network core position, the Message processing amount on it is very huge.
Summary of the invention
In view of this, the invention provides a kind of TCP agent device, be applied to set up TCP connect transmitting terminal and destination between the network equipment on, wherein this device comprises:
Data acquisition module, for receive transmitting terminal send TCP message be tcp data message time, obtain the clear data carried in described tcp data message;
Message judge module, for judging that according to default classifying rules the clear data of described tcp data message is the need of amendment, if so, turns content processing module and processes, if not, rotary head portion processing module processes;
Content processing module, for modifying to the clear data of described tcp data message, and rotary head portion processing module processes;
Head processing module, is forwarded to destination after modifying to the header information of described tcp data message.
The present invention also provides a kind of TCP agent method, be applied to set up TCP connect transmitting terminal and destination between the network equipment on, wherein the method comprises:
Steps A, receive transmitting terminal send TCP message be tcp data message time, obtain the clear data that described tcp data message carries;
Step B, judge that the clear data of described tcp data message is the need of amendment, if so, goes to step C process according to default classifying rules, if not, go to step D process;
Step C, the content of described tcp data message to be modified, and go to step D process;
Step D, to the header information of described tcp data message modify process after be forwarded to destination.
TCP agent device provided by the invention and method, can directly modify according to its type of service for the tcp data message of revised context that needs received, directly forward after then changing its header information by TCP agent for not needing the tcp data message of revised context, without the need to all messages are sent to application proxy program, then be sent to network layer by application proxy program.As can be seen here, the TCP agent that the embodiment of the present invention provides decreases the consumption of operating-system resources and reduces the time loss of message in network protocol stack, and increased substantially and acted on behalf of efficiency, on opposite core position, result of use is better in a network.
Accompanying drawing explanation
Fig. 1 is the structural representation of TCP agent device in the embodiment of the present invention;
Fig. 2 is the FB(flow block) of TCP agent method in the embodiment of the present invention;
Fig. 3 is the workflow diagram of TCP agent method in the embodiment of the present invention.
Embodiment
The invention provides a kind of TCP agent device and method, this TCP agent is connected by simulant-client and server, and then emulating server and client connect, after TCP connection establishment, TCP agent is then responsible for modifying to the message data of client and server communication and forwarding.Be client below with transmitting terminal, destination is server is that the present invention is further elaborated for example.
Please refer to Fig. 1, the invention provides a kind of TCP agent device, be applied on the network equipment between transmitting terminal and destination, the basic hardware environment of this device comprises CPU, internal memory, nonvolatile memory and other hardware.This TCP agent device can be understood as computer program corresponding in CPU reading non-volatile storage and runs formed in internal memory, and it is a logic device in essence.In the present embodiment, this device comprises on logic level: data acquisition module, message judge module, content processing module and head processing module, please refer to Fig. 2, and this device performs following handling process in running: comprising:
Step 201, data acquisition module, after the tcp data message receiving transmitting terminal transmission, obtains the clear data carried in described tcp data message;
Step 202, according to default classifying rules, message judge module judges that the clear data of described tcp data message is the need of amendment, if so, goes to step 203 and processes, if not, then go to step 204 and process;
Step 203, the content of content processing module to described tcp data message is modified, and goes to step 204 and process;
Step 204, the header information of head processing module to described tcp data message is forwarded to destination after modifying and processing.
Transmission Control Protocol is used to provide reliable Connection Service, client and server set up TCP be connected time, TCP agent simulant-client and server connect, and then emulating server and client connect.After three-way handshake connects, TCP agent is connected with the TCP of both sides and just establishes.Following TCP agent is then responsible for modifying to the message data of client and server communication and forwarding, a similar connection.Please refer to Fig. 3, the data acquisition module of TCP agent is after the TCP message receiving client transmission, if judge, this TCP message is tcp data message, then obtain the clear data carried in described tcp data message further.
After the clear data getting this tcp data message, according to default classifying rules, message judge module judges that the clear data of described tcp data message is the need of amendment, if need amendment, then modify according to the content of type of service to this message, turn again after having revised and modified by the header information of head processing module to this tcp data message, and the message revised is forwarded to the destination of specifying according to its IP address; If judge that the content of this tcp data message does not need amendment according to clear data, then directly to be modified by the header information of head processing module to this tcp data message, and the message revised is forwarded to the destination of specifying according to its IP address.
In embodiments of the present invention, TCP agent directly can be modified according to its type of service for the tcp data message of revised context that needs received, directly forward after then changing its header information by TCP agent for not needing the tcp data message of revised context, without the need to all messages are sent to application proxy program, then be sent to network layer by application program.As can be seen here, the TCP agent that the embodiment of the present invention provides decreases the consumption of operating-system resources and reduces the time loss of message in network protocol stack, effectively improves and acts on behalf of efficiency.
The present invention is preferably in embodiment, and this TCP agent device also comprises Transmission Control Protocol module, for processing the Transmission Control Protocol message from transmitting terminal according to Transmission Control Protocol.After the TCP message receiving transmitting terminal transmission, if judge, this TCP message is Transmission Control Protocol message, is processed, be not forwarded to server by Transmission Control Protocol module according to Transmission Control Protocol to it.
Further, the TCP agent that the embodiment of the present invention provides also can be perfect compatible as upper layer security agreements such as SSL.Wherein, this TCP agent device also comprises SSL deciphering module, for being decrypted to SSL data message the clear data obtaining message; And ssl protocol module, for processing ssl protocol message according to ssl protocol.
Particularly, after TCP connection establishment, the TCP message that data acquisition module receives is likely the SSL message (Secure Sockets Layer secure socket layer protocol layer) be encrypted.If when the message received is SSL message, then will judge that this SSL message is ssl protocol message or SSL data message further, if this SSL message is ssl protocol message, so TCP agent processes ssl protocol message according to ssl protocol; If the SSL message received is SSL data message, so then before the transfer of data of reality starts, TCP agent respectively simulant-client and server carries out to this SSL data message that SSL shakes hands, consulted encryption algorithm and cipher key change etc., to obtain the clear data of this message.Usually carrying out producing some protocol massages in SSL handshake process, still according to agreement, this message directly being processed after receiving this protocol massages, not being transmitted to server.
After clear data is obtained to the SSL message deciphering received, judge that the clear data of described tcp data message is the need of amendment according to default classifying rules, if the session status of clear data and message characteristic meet described default classifying rules, judge that the clear content of described message needs amendment, then the data content of this message is modified, then by head processing module to its header information modify process after be forwarded to the destination of specifying.When revising message content, can learn which kind of type of service this message is according to clear data, and modifying according to the content of this type of service to this message.
Exemplarily, there is of short duration fault in such as user background server when accessing public network, the info web of user is shown as " miscue: 403 " etc. usually, but in order to increase the friendliness of page display, then need to process accordingly for this HTTP403 mistake, specifically can by user access info web is set to " loading ... " etc. friendly information, TCP agent is modified according to the content of this service needed to the tcp data message received; Now HTTP403 mistake is exactly a predetermined classifying rules.Certain developer can define various classifying rules according to the actual needs of user, and all the needing of hit classifying rules carries out corresponding content modification, and classifying rules itself is can be Protean.
On the other hand, if judge that the clear data of this message does not need to revise according to message classification rule according to the session status of this clear data and message characteristic, or after having revised needing the message revising clear data, modified by the header information of head processing module to this tcp data message, the header information of this tcp data message is IP address and TCP sequence number.Because TCP agent is equivalent to a trunking, the tcp data message received all will be forwarded to destination, therefore the IP address of destination all will be revised as in the IP address in its head by TCP agent after receiving all tcp data messages, and forwards after corresponding modify TCP sequence number again.
Further, in order to protect the safety of sensitive data in transport process, escape way can be constructed between clients and servers to carry out transfer of data, to provide safe support to data communication.Therefore according to message interaction agreement, TCP agent can judge whether this message meets encryption rule forwarding the packet before destination, and was forwarded to destination after being encrypted the message meeting encryption rule.
Particularly, TCP agent device provided by the invention also comprises data encryption module, for before the tcp data message repeating that head processing module has been revised to destination, judge whether this tcp data message meets predetermined encryption rule, if met, after the message meeting predetermined encryption rule is encrypted, be forwarded to destination; Otherwise tcp data message repeating head processing module revised is to destination.
This predetermined encryption rule can artificially set as required, such as this predetermined encryption rule can be: when the tcp data message that data acquisition module receives transmitting terminal transmission is the message of encryption, so this tcp data message is then for meeting the message of predetermined encryption rule, if the tcp data message that data acquisition module receives transmitting terminal transmission is clear data message, so this tcp data message is not then for meeting the message of predetermined encryption rule; Such as, or this predetermined encryption rule is: the agreement according to this tcp data message of carrying judges whether this message meets encryption rule, is Https(Hypertext Transfer ProtocolSecure Secure Hypertext Transfer Protocol) message of agreement; Or this predetermined encryption rule can be: though receive the tcp data message of transmitting terminal transmission at data acquisition module for plaintext message, but when judging that this message meets encryption rule according to the agreement of this tcp data message of carrying, still judge that this message is the message meeting encryption rule.After judging that tcp data message is the message meeting predetermined encryption rule, by data encryption module, this tcp data message is encrypted, and by the tcp data message repeating after encryption to destination.
In prior art, because socket agency carries out oneself alternately with client and server respectively as two terminals, the situation of interrupting if therefore occur in TCP transmission, will retransmit and delayed ACK this tcp data message.But use socket agency to carry out retransmitting and delayed ACK etc. all needs that timer is auxiliary to be realized, TCP agent is the equal of then a trunking in embodiments of the present invention, just based on the feature of trunking, TCP agent can carry out trigger re-transmissions according to message real-time, interactive situation by message, do not need timer to safeguard, just control message retransmission and ACK etc. without the need to oneself yet.
Particularly, head processing module header information has been revised after tcp data message when being sent to destination, preserve tcp data message modify before with amended TCP sequence number, set up and preserve its corresponding relation list item, this list item is used for when retransmitting exception message, being convenient to know needs to retransmit which message to destination, therefore send successfully at tcp data message, can delete this tcp data message corresponding relation in the table entry.When destination receives message appearance exception, TCP sequence number before TCP agent then searches the amendment corresponding with it according to the amended TCP sequence number of this exception message in this corresponding relation list item, notice transmitting terminal retransmits the tcp data message that TCP sequence number is the TCP sequence number before this amendment, destination correspondingly sends ACK message when receiving tcp data message, TCP agent just forwards ACK message to transmitting terminal after receiving ACK message, and after having retransmitted, delete the TCP sequence number corresponding relation of this tcp data message.
| TCP sequence number before header information amendment | The amended TCP sequence number of header information |
| AAAA | BBBB |
| XXXX | YYYY |
Table 1
Table 1 revises front and amended TCP sequence number corresponding relation list item for tcp data message carries out header information, and this list item is only to be understood the present invention further and illustrates.Exemplarily, as described in Table 1, if the TCP sequence number that TCP agent receives the tcp data message that transmitting terminal sends is XXXX, this tcp data message is being YYYY through the amended TCP sequence number of header information, if TCP agent occurs abnormal in repeating process, so search the TCP sequence number XXXX before the amendment corresponding with it in Table 1 according to the amended TCP sequence number YYYY of this exception message, notice transmitting terminal retransmits the tcp data message that TCP sequence number is XXXX, TCP agent is modified again, sequence number is revised as YYYY, then sends to destination.Destination correspondingly sends ACK message when successfully receiving tcp data message, TCP agent is receiving ACK message, determining that this message is is the confirmation of YYYY message for TCP sequence number, then just ACK message is sent to transmitting terminal, confirm the message that TCP sequence number is XXXX, so once complete re-transmission just completes.The TCP sequence number corresponding relation of this tcp data message is deleted after this re-transmission completes.As can be seen here, the present invention does not need the re-transmission and the ACK that oneself control exception message, safeguards without the need to timer yet, effectively can improve the efficiency that exception message retransmits.
In sum, TCP agent provided by the invention can directly process for the protocol massages received, for data message then without the need on send application proxy program, part is needed to the message of revised context, destination is forwarded to again after can directly modifying according to its type of service, equally also without the need to being sent to application proxy program, then be sent to network layer by application proxy program.In addition, in preferred mode, the upper-layer protocols such as all right perfect compatible SSL of TCP agent provided by the present invention, and forward the packet to destination by the form directly forwarded, do not need to pass through complicated network protocol stack again, under the running environment of the high concurrent condition of multi-core CPU, of the present inventionly will to get over as obvious the effect that entirety acts on behalf of improved efficiency.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, within the spirit and principles in the present invention all, any amendment made, equivalent replacement, improvement etc., all should be included within the scope of protection of the invention.
Claims (14)
1. a TCP agent device, be applied to set up TCP connect transmitting terminal and destination between the network equipment on, it is characterized in that, described device comprises:
Data acquisition module, for receive transmitting terminal send TCP message be tcp data message time, obtain the clear data carried in described tcp data message;
Message judge module, for judging that according to default classifying rules the clear data of described tcp data message is the need of amendment, if so, turns content processing module and processes, if not, rotary head portion processing module processes;
Content processing module, for modifying to the clear data of described tcp data message, and rotary head portion processing module processes;
Head processing module, is forwarded to destination after modifying to the header information of described tcp data message.
2. device as claimed in claim 1, is characterized in that, also comprise Transmission Control Protocol module, for processing the Transmission Control Protocol message from transmitting terminal according to Transmission Control Protocol;
Described data acquisition module be further used for receive transmitting terminal send TCP message be protocol massages time, this protocol massages is submitted to protocol process module.
3. device as claimed in claim 1, is characterized in that, also comprise:
SSL deciphering module, for being decrypted to SSL data message the clear data obtaining message;
Ssl protocol module, for processing ssl protocol message according to ssl protocol;
When described data acquisition module is further used for the tcp data message receiving transmitting terminal transmission, first judge whether the data that this message carries are SSL message, if not, then determine that the data that this message carries are clear data; If it is judge whether described SSL message is protocol massages, if so, then turns ssl protocol resume module further, otherwise determine that this SSL message is SSL data message, turn the process of SSL deciphering module.
4. device as claimed in claim 1, is characterized in that, also comprise:
Data encryption module, for judging whether the tcp data message that head processing module has been revised meets predetermined encryption rule, if so, is forwarded to destination after being encrypted to the message meeting predetermined encryption rule; Otherwise tcp data message repeating head processing module revised is to destination.
5. device as claimed in claim 1, it is characterized in that, described clear data comprises session status and message characteristic, judges that the clear data of described tcp data message specifically comprises the need of amendment described in message judge module according to default classifying rules:
If the session status of clear data and message characteristic meet described default classifying rules, judge that the clear content of described message needs amendment; Otherwise, judge that the clear content of described message does not need amendment.
6. device as claimed in claim 1, is characterized in that, described head processing module specifically for:
Modified in the IP address of described tcp data message and TCP sequence number.
7. device as claimed in claim 1, it is characterized in that, described head processing module is further used for:
The header information preserving tcp data message revises front and amended TCP sequence number and corresponding relation;
When tcp data message repeating occurs abnormal, in described corresponding relation, search the TCP sequence number before the amendment corresponding with there is the abnormal amended TCP sequence number of tcp data message;
Notice transmitting terminal retransmits the tcp data message that TCP sequence number is the TCP sequence number before described amendment.
8. a TCP agent method, be applied to set up TCP connect transmitting terminal and destination between the network equipment on, it is characterized in that, described method comprises:
Steps A, receive transmitting terminal send TCP message be tcp data message time, obtain the clear data that described tcp data message carries;
Step B, judge that the clear data of described tcp data message is the need of amendment, if so, goes to step C process according to default classifying rules, if not, go to step D process;
Step C, the content of described tcp data message to be modified, and go to step D process;
Step D, to the header information of described tcp data message modify process after be forwarded to destination.
9. method as claimed in claim 8, it is characterized in that, described method comprises further:
According to Transmission Control Protocol, the Transmission Control Protocol message from transmitting terminal is processed;
Described steps A is included in further and receives TCP message that transmitting terminal sends when being protocol massages, and this protocol massages is submitted to protocol process module.
10. method as claimed in claim 8, it is characterized in that, described steps A also comprises:
Steps A 1, the clear data obtaining message is decrypted to SSL data message;
Steps A 2, according to ssl protocol, ssl protocol message to be processed;
When described steps A comprises the tcp data message receiving transmitting terminal transmission further, first judge whether the data that this message carries are SSL message, if not, then determine that the data that this message carries are clear data; If it is judge whether described SSL message is protocol massages, if so, then goes to step A2 process further, otherwise determine that this SSL message is SSL data message, go to step A1 process.
11. methods as claimed in claim 8, is characterized in that, also comprise:
Whether the tcp data message that determining step D has revised meets predetermined encryption rule, if so, is forwarded to destination after being encrypted to the message meeting predetermined encryption rule; Otherwise the tcp data message repeating revised by step D is to destination.
12. methods as claimed in claim 8, it is characterized in that, described clear data comprises session status and message characteristic, judges that the clear data of described tcp data message specifically comprises the need of amendment described in step B according to default classifying rules:
If the session status of clear data and message characteristic meet described default classifying rules, judge that the clear content of described message needs amendment; Otherwise, judge that the clear content of described message does not need amendment.
13. methods as claimed in claim 8, it is characterized in that, described step D specifically comprises:
Modified in the IP address of described tcp data message and TCP sequence number.
14. methods as claimed in claim 8, it is characterized in that, described step D comprises further:
The header information preserving tcp data message revises front and amended TCP sequence number and corresponding relation;
When tcp data message repeating occurs abnormal, in described corresponding relation, search the TCP sequence number before the amendment corresponding with there is the abnormal amended TCP sequence number of tcp data message;
Notice transmitting terminal retransmits the tcp data message that TCP sequence number is the TCP sequence number before described amendment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410008131.4A CN104767781B (en) | 2014-01-08 | 2014-01-08 | A kind of TCP agent device and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410008131.4A CN104767781B (en) | 2014-01-08 | 2014-01-08 | A kind of TCP agent device and method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104767781A true CN104767781A (en) | 2015-07-08 |
| CN104767781B CN104767781B (en) | 2018-09-04 |
Family
ID=53649384
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410008131.4A Active CN104767781B (en) | 2014-01-08 | 2014-01-08 | A kind of TCP agent device and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104767781B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109088892A (en) * | 2018-10-19 | 2018-12-25 | 网宿科技股份有限公司 | Data transmission method, system and proxy server |
| CN114422563A (en) * | 2021-12-29 | 2022-04-29 | 海南同享数字科技有限公司 | Method, device, equipment and storage medium for calling background data by page |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2002102020A1 (en) * | 2001-06-08 | 2002-12-19 | Corrent Corporation | Transparent ssl proxy |
| WO2004004272A1 (en) * | 2002-06-26 | 2004-01-08 | Sandvine Incorporated | A tcp proxy providing application layer modifications |
| JP2005136684A (en) * | 2003-10-30 | 2005-05-26 | Nippon Telegr & Teleph Corp <Ntt> | Data transferring method and tcp proxy device and network using the same |
| US20070283429A1 (en) * | 2006-05-30 | 2007-12-06 | A10 Networks Inc. | Sequence number based TCP session proxy |
| US7328267B1 (en) * | 2002-01-18 | 2008-02-05 | Cisco Technology, Inc. | TCP proxy connection management in a gigabit environment |
| CN101867558A (en) * | 2009-04-17 | 2010-10-20 | 深圳市永达电子股份有限公司 | User mode network protocol stack system and method for processing message |
| CN102130910A (en) * | 2011-02-28 | 2011-07-20 | 华为技术有限公司 | Method for inserting and unloading transmission control protocol (TCP) proxy and service gateway equipment |
-
2014
- 2014-01-08 CN CN201410008131.4A patent/CN104767781B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2002102020A1 (en) * | 2001-06-08 | 2002-12-19 | Corrent Corporation | Transparent ssl proxy |
| US7328267B1 (en) * | 2002-01-18 | 2008-02-05 | Cisco Technology, Inc. | TCP proxy connection management in a gigabit environment |
| WO2004004272A1 (en) * | 2002-06-26 | 2004-01-08 | Sandvine Incorporated | A tcp proxy providing application layer modifications |
| JP2005136684A (en) * | 2003-10-30 | 2005-05-26 | Nippon Telegr & Teleph Corp <Ntt> | Data transferring method and tcp proxy device and network using the same |
| US20070283429A1 (en) * | 2006-05-30 | 2007-12-06 | A10 Networks Inc. | Sequence number based TCP session proxy |
| CN101867558A (en) * | 2009-04-17 | 2010-10-20 | 深圳市永达电子股份有限公司 | User mode network protocol stack system and method for processing message |
| CN102130910A (en) * | 2011-02-28 | 2011-07-20 | 华为技术有限公司 | Method for inserting and unloading transmission control protocol (TCP) proxy and service gateway equipment |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109088892A (en) * | 2018-10-19 | 2018-12-25 | 网宿科技股份有限公司 | Data transmission method, system and proxy server |
| US11290544B2 (en) | 2018-10-19 | 2022-03-29 | Wangsu Science & Technology Co., Ltd. | Data transmission methods applied to a proxy server or a backend server, and data transmission system |
| CN114422563A (en) * | 2021-12-29 | 2022-04-29 | 海南同享数字科技有限公司 | Method, device, equipment and storage medium for calling background data by page |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104767781B (en) | 2018-09-04 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20220407948A1 (en) | Load Balancing and Session Persistence in Packet Networks | |
| US10305904B2 (en) | Facilitating secure network traffic by an application delivery controller | |
| Kumar et al. | Implementation and analysis of QUIC for MQTT | |
| US9794304B2 (en) | Enterprise client-server system and methods of providing web application support through distributed emulation of websocket communications | |
| CN202206418U (en) | Traffic management device, system and processor | |
| US8024788B2 (en) | Method and apparatus for reliable, high speed data transfers in a high assurance multiple level secure environment | |
| US20160014126A1 (en) | Facilitating a Secure 3 Party Network Session by a Network Device | |
| KR101938623B1 (en) | Openflow communication method, system, controller, and service gateway | |
| CN110875799A (en) | Transmission control method and device | |
| CN106101007B (en) | Handle the method and device of message | |
| CN106255155A (en) | A kind of data transmission method based on mobile Internet and system | |
| CN110417632B (en) | Network communication method, system and server | |
| JP2020010326A (en) | DATA TRANSMISSION METHOD, DATA RECEPTION METHOD, AND DATA COMMUNICATION METHOD USING WiFi MANAGEMENT FRAME | |
| Cui | Comparison of IoT application layer protocols | |
| CN104767781A (en) | TCP proxy device and method | |
| KR101971995B1 (en) | Method for decryping secure sockets layer for security | |
| JP2005244895A (en) | Communication processing apparatus and method thereof | |
| WO2016061987A1 (en) | Packet processing method and device | |
| CN115333782A (en) | Data transmission method, data reception method, storage medium, and computer device | |
| CN111314447B (en) | Proxy server and method for processing access request thereof | |
| CN106685701B (en) | IPSec VPN connection disconnection method and device | |
| CN117675886A (en) | Method and device for executing business operation and electronic equipment | |
| KR101594897B1 (en) | Secure Communication System and Method for Building a Secure Communication Session between Lightweight Things | |
| Strihagen | Evaluation of publish–subscribe protocols for vehicle communications | |
| Al-Hakeem et al. | Development of Fast Reliable Secure File Transfer Protocol (FRS-FTP) |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| EXSB | Decision made by sipo to initiate substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information | ||
| CB02 | Change of applicant information |
Address after: Binjiang District and Hangzhou city in Zhejiang Province Road 310051 No. 68 in the 6 storey building Applicant after: Hangzhou Dipu Polytron Technologies Inc Address before: Binjiang District and Hangzhou city in Zhejiang Province Road 310051 No. 68 in the 6 storey building Applicant before: Hangzhou Dipu Technology Co., Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |