CN100574265C - The processing method of packet and system in a kind of radio data network - Google Patents
The processing method of packet and system in a kind of radio data network Download PDFInfo
- Publication number
- CN100574265C CN100574265C CNB2005100003392A CN200510000339A CN100574265C CN 100574265 C CN100574265 C CN 100574265C CN B2005100003392 A CNB2005100003392 A CN B2005100003392A CN 200510000339 A CN200510000339 A CN 200510000339A CN 100574265 C CN100574265 C CN 100574265C
- Authority
- CN
- China
- Prior art keywords
- packet
- support node
- wireless data
- data support
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The present invention relates to data communication, relate in particular to the processing method and the system of packet in a kind of radio data network,, cause waste of network resources to prevent the propagation of spam in network.The treating method comprises: receive by the wireless data support node and send to the user's data bag; According to this packet of safety detection rule detection of setting; Secure data bag after will being detected by the wireless data support node sends to the user.Described treatment system comprises the wireless data support node, is used to receive packet and sends to the user; Detection module is used for the packet according to this wireless data support node reception of the rule detection of setting, and returns to this wireless data support node with testing result with by the packet that detects; Identification module is used to discern the type of the packet that this wireless data support node receives; Processing module is used to preserve not by the packet that detects and carries out respective handling.
Description
Technical field
The present invention relates to data communication, relate in particular to the processing method and the system of packet in a kind of radio data network.
Background technology
Along with the application of wireless data network, increasing people brings into use the service of mobile terminal device enjoy network, and behind the GPRS/CDMA network opening, the portable machine that a lot of data users use handheld terminal or have a wireless data card is surfed the Net or the sending and receiving mail.As shown in Figure 1, in mobile radio system, the external data traffic service that wireless data service is enjoyed is mainly undertaken by the wireless data support node, by wireless data support node and external data network, as: the Internet links to each other, same user's mail enters in the mobile network by external data network, also is to be transmitted by the wireless data support node.
Along with Internet fast development, Email has obtained extensive use.Because the convenience and the economy of Email, the companion's and the spam problem of coming also grows in intensity, flames such as various yellow message, advertisement information, reaction message or user are reluctant the message that receives, send to subscriber mailbox by Email, had a strong impact on the normal use of user mailbox.Simultaneously because the propagation of a large amount of spams also causes a large amount of Internet resources to expend on these useless resources.
Spam wreak havoc the use that has had a strong impact on normal users, this problem is more outstanding in mobile operation network, and owing to technical reason, mobile network's Radio Resource is very limited, various useless flows will greatly influence the normal operation of network, also the user be exerted an influence simultaneously.In Operation Network, the data user is divided into monthly payment charging or charge on traffic, for the user that monthly payment is chargeed, though flow does not charge, but spam too much can cause trouble in the use to this user, for operator, causes especially waste of radio resources of Internet resources, in case Radio Resource is occupied too much, can influence the operation state of regular traffic.For the user who charges by flow, he all must pay the spam of all receptions, so spam will directly have influence on QoS of customer, this point is particularly evident for the higher international roaming user of expense, and the user obviously is unwilling to accept the generation of this situation.
Therefore, for saving mobile network's Radio Resource, be necessary to take certain measure restriction objectionable website to send data to the user, and the conspicuous harmfulness of bringing in view of spam, especially will solve the problem that spam spreads unchecked, and wireless network addresses the above problem without any feasible method at present.
Summary of the invention
The present invention prevents the propagation between wireless network and cable network of the propagation of the packet of objectionable website, particularly spam, and a kind of processing processing method and system of packet is provided, and realizes by following design.
1, the processing method of packet in a kind of radio data network comprises the following steps:
Send to the user's data bag by the reception of wireless data support node;
The wireless data support node sends to external module with described packet;
By external module this packet of safety detection rule detection according to setting;
External module returns the wireless data support node with testing result with by the secure data bag that detects, and preserves not the packet by safety detection, and extract this not the identification information of the packet by safety detection return the wireless data support node;
Secure data bag after will detecting by the wireless data support node and not the identification information of the packet by safety detection send to the user.
Described method also comprises: the user selects the packet of needs and notifies wireless data support node or external module according to described identification information, by external module the data designated bag is sent to the user by the wireless data support node.
The user notifies wireless data support node or external module by short message with the packet of selecting.
Described packet is the mail data bag, when the user initiates the mail reception request, by mail server this mail data bag is issued described wireless data support node.
The described identification information that external module will extract from the mail data bag writes in the mail and sends to the user.
Treatment system based on packet in a kind of radio data network of same design comprises the wireless data support node, is used to receive packet and sends to the user; Detection module, be arranged in the wireless data support node, perhaps connect described wireless data support node by communication interface, be used for packet, and return to this wireless data support node with testing result with by the packet that detects according to this wireless data support node reception of the rule detection of setting;
Processing module is arranged in the described detection module, perhaps connects this detection module by communication interface, is used to preserve not by the packet that detects and the identification information that extracts not by the packet that detects return to this wireless data support node.
Described system also comprises: identification module, be arranged in the wireless data support node, and be used to discern the type of the packet that this wireless data support node receives, and the packet that will set type sends to this detection module and detects.
Described wireless data support node or detection module connect short messaging gateway by communication interface.
The beneficial effect that technical solution of the present invention is brought is:
1, the present invention is primarily aimed at the radio data system that telecommunications can be runed, and a kind of method of carrying out the downlink data packet filtering in radio data network is provided, and has effectively avoided the abuse to mobile network resource;
2, by carry out the filtration treatment of packet at wireless support node external connection apparatus, the cable network resource in the mobile network and the waste of wireless network resource have been avoided;
3, by with user's interaction, remedied the erroneous judgement of the mail data bag that may exist or the situation of failing to judge, reduced the risk of spam erroneous judgement, improved the verification and measurement ratio of spam.
Description of drawings
Fig. 1 wireless data support node connects wireless network and cable network schematic diagram;
Fig. 2 realizes the structural representation of system of the present invention;
Fig. 3 is the flow chart of embodiment of the invention mail data packet processing method.
Embodiment
Below with specific embodiment and be described with reference to the accompanying drawings the present invention.
The invention provides the processing method of packet in a kind of radio data network, be mainly used in the propagation that prevents spam, because the resource asymmetry of present wired network and wireless network, present embodiment mainly provides the spam prevention method that gauze enters wireless network, can do same treatment for enter the packet of wired network, particularly spam packet by wireless network.
As shown in Figure 2, Fig. 2 is the structural representation of use processing data packets of the present invention system, the wireless data support node that comprises mobile communication system, the detection module that is connected by communication interface with this wireless data support node, the processing module that is connected with this detection module, and wireless data support node or detection module connect short messaging gateway by communication interface, the information interaction between certified mail user and the treatment system.The present invention program is primarily aimed at the mobile communication system that can run in the present wireless network, this mobile communication system comprises GPRS (General Packet Radio Service, GPRS), WCDMA (Wide Code Division Multiple Access, code division multiple access) CDMA2000, TD-SCDMA (Time Divisition-Synchronization Code Division Multiple Access) etc., if WLAN (Wireless Local Access Network) or WIMAX (WorldwideInteroperability Microwave Access, micro-wave access to global intercommunication) but or other broadband wireless data systems etc. when also making operation system, such scheme is suitable equally, as long as the network equipment that provides data to support that detection module is relevant with other passes through the interface intercommunication, and packet filtering and analysis ability of being equipped with deep layer for this network equipment that provides data to support get final product.
And, when not considering to detect the Radio Resource that packet takies, can in the wireless data support node, be provided with to finish to detect and handle required module, but with regard to present mobile resources, preferred mode is that detection module is connected wireless data support node as external equipment by communication interface with processing module, to guarantee making full use of of Radio Resource.
In the following description, with the existing system that runs is example, the wireless data support node comprises GGSN (the Gateway GeneralService Network among GPRS, WCDMA, CDMA2000, the TD-SCDMA, the packet gateway support node) and the PDSN in the CDMA series standard system (Packet Data Service Node, packet data serving node).In the treatment system of this packet, the function that each several part is finished at handle packet is:
1, GGSN/PDSN: the packet that receives is forwarded in the detection module;
When needs detected all packets, GGSN/PDSN was forwarded to the packet that receives in the detection module and detects.If for improving the speed of GGSN/PDSN handle packet, can only detect with regard to the bigger mail data bag of harm, this GGSN/PDSN must possess the Packet Filtering and the function of analyzing with the type of recognition data bag of mobile subscriber's up-downgoing data being carried out deep layer so, can finish above-mentioned functions by an identification module is set in GGSN/PDSN, different packet filtering and the analysis rules of configuration in this identification module, according to these rules packet is carried out: the three layer filtration of source/purpose IP address, the 4th layer of filtration of port numbers and the layer 7 of URL (Uniform ResourceLocator) filter, the header packet information that filters principle and be exactly according to the Rule Extraction packet of setting mates, three layer filtration mainly is to consider IP packet header 5 tuple information, the 4th layer of filtration mainly is at tcp port number, and it mainly is at the URL address filtering that layer 7 filters.By packet filtering with analyze to analyze the IP protocol type number and TCP (the Transfer Control Protocol) port numbers of packet, can discern the type of packet about the user.Like this, when mail user by GGSN/PDSN when mail server is initiated the mail reception request, mail server sends to upward forwarding of GGSN/PDSN with all mails of this user, GGSN/PDSN sends the packet of receiving into identification module and carries out type identification, and all mail data bags that will identify then are forwarded to detection module and detect.
Some present commercial GGSN/PDSN have possessed above-mentioned functions, can finish Packet Filtering and the analysis of mobile subscriber's up-downgoing packet being carried out deep layer.
2, detection module: detect packet;
Detection module and GGSN/PDSN have set up effective communication interface, and between interface by protocol configuration relevant mutual signaling, dispose the spam detection rule on the detection module, the relevant information of extracting mail mates whether detect be the secure data bag.
Detection module can be arranged among the GGSN/PDSN, but for guaranteeing the system resource among the GGSN/PDSN, optimal way is an external equipment for this detection module, connects GGSN/PDSN by communication interface.
3, processing module: do not preserve and go forward side by side the line correlation processing in case erroneous judgement by the packet that detects;
For not by the packet of detection, also need processing module to preserve and further handle.Processing module is a functional module, can be arranged on inside the detection module, perhaps is connected on the detection module by communication interface, mainly pass through the packet of detection in order to preservation, and the identification information of extraction packet is notified the user.
In this treatment system, wireless support node or detection module can connect short messaging gateway by communication interface, the user by send SMS message and treatment system between realize interactive.Treatment system will be not identification information by the packet that detects extract and the form by mail sends to the user, when the user finds erroneous judgement is arranged from identification information, can issue by the short message notification post-processing system.
Short message way only is to realize a kind of mode of user and this treatment system interaction, and the user can also realize interactive by methods such as mails, and this mode does not limit protection range.
As shown in Figure 3, in above-mentioned treatment system, realize the processing of mail data bag through the following steps, the handling process of other packets is basic identical:
S1, user are connected to the mail server of the Internet by GGSN/PDSN, and initiate the mail reception application to this mail server;
After S2, mail server are received user's request, this user is sent to GGSN/PDSN by the mail data bag that the Internet comes;
S3, GGSN/PDSN get the mail after server sends to user's mail data bag, and further whether this packet of verification is the mail data bag really;
Concrete grammar is: disposed different packet filterings and analysis rule in the identification module of GGSN/PDSN, and according to these rules user data package has been carried out packet filtering and the type of analyzing the recognition data bag.
If it is the mail data bag that S4, GGSN/PDSN verification go out the type of packet, then GGSN just is forwarded to detection module to this packet;
Whether S5, detection module are spam according to this mail data bag of rule detection that sets in advance;
The detection rule of spam detection has a lot, keyword filtration for example, and addresses of items of mail filtration etc., detection module mates and discerns by extract corresponding information from the mail data bag.If this mail data bag meets the spam detection rule, think that then this packet is a spam, then detection module with spam be transferred in the processing module preserve standby, simultaneously to the GGSN/PDSN information that to send this mail data bag be spam; If this mail data bag is a normal email, then carry out step S6.
If other packets, mainly whether the source IP address according to packet detects it from some objectionable websites or pornographic website.
S6, detection module return this normal email packet to GGSN/PDSN;
S7, GGSN/PDSN send to the user with the normal email packet that detection module returns.
If other packets, detect when objectionable website or pornographic website, can directly abandon, but for the mail data bag, because may there be uncertainty in the differentiation of spam, the erroneous judgement or the spam of failing to judge all can influence user's use, and the loss that brings of wherein failing to judge is the waste of flow, and erroneous judgement then can cause the reception of user's normal email.Therefore for guaranteeing user's business, can not carry out simple discard processing to the mail data bag, for remedying the erroneous judgement that may exist or failing to judge, present embodiment also comprises the following steps:
When S8, detection module are differentiated this packet and be spam, spam is forwarded in the processing module preserves;
S9, processing module extract some identification informations of these spams and are transmitted to the user;
In user's a mail reception application, after all mail treatments of this user are finished, GGSN/PDSN will notify the detection module mail treatment to finish, detection module reinforms processing module, processing module can be extracted the identification information of all spams of this user, and described identification information comprises the sender address and the mail header of mail at least.
Processing module is transmitted to the user with described identification information by GGSN/PDSN, concrete mode is: the identification information of all spams that the processing module utilization is extracted generates a spam list information, at least comprise two list items of sender address and mail header in this tabulation, and this spam list information is sent to this user with the form of mail by GGSN/PDSN.
After S10, user receive the mail that comprises the spam list information,, determine whether to receive part or all of mail wherein according to the differentiation of oneself;
Mail for erroneous judgement, the user can notify GGSN/PDSN to issue, concrete mode can be short message way, the user is by sending a certain short message that comprises feature, this feature tells this short message of system to comprise the identification information of judging mail by accident, at this moment short messaging gateway judges that according to the feature of short message this short message is the short message of user notification erroneous judgement mail, then with context notification and the GGSN/PDSN or the detection module of this short message, when adopting this short message way to notify, connect by interface between short messaging gateway and GGSN/PDSN and the detection module.
If exist and to fail to judge, the user also can be by the information notification post-processing system of short message with the spam of failing to judge, and post-processing system joins the identifying information of these spams in the spam detection rule, thereby improves the verification and measurement ratio of spam.
According to professional ability is provided, and the ability of Operation Network equipment of itself adopts diverse ways to handle to this step, for example can also adopt the mode of mail to handle by operator.
After S11, GGSN/PDSN or detection module were received user's notice, the mail that the user is selected extracted from processing module and sends to the user.
The above only is a preferred implementation of the present invention; should be pointed out that for those skilled in the art, under the prerequisite that does not break away from the principle of the invention; can also make some improvements and modifications, these improvements and modifications also should be considered as protection scope of the present invention.
Claims (8)
1, the processing method of packet in a kind of radio data network is characterized in that, comprises the following steps:
Send to the user's data bag by the reception of wireless data support node;
The wireless data support node sends to external module with described packet;
By external module this packet of safety detection rule detection according to setting;
External module returns the wireless data support node with testing result with by the secure data bag that detects, and preserves not the packet by safety detection, and extract this not the identification information of the packet by safety detection return the wireless data support node;
Secure data bag after will detecting by the wireless data support node and not the identification information of the packet by safety detection send to the user.
2, the method for claim 1, it is characterized in that: the user selects the packet of needs and notifies wireless data support node or external module according to described identification information, by external module the packet that the user selects is sent to the user by the wireless data support node.
3, method as claimed in claim 2 is characterized in that: the user notifies wireless data support node or external module by short message with the packet of selecting.
4, as claim 2 or 3 described methods, it is characterized in that: described packet is the mail data bag, when the user initiates the mail reception request, by mail server this mail data bag is issued described wireless data support node.
5, method as claimed in claim 4 is characterized in that: the described identification information that external module will extract from the mail data bag writes in the mail and sends to the user.
6, the treatment system of packet in a kind of radio data network comprises the wireless data support node, is used to receive packet and sends to the user; It is characterized in that, also comprise: detection module, be arranged in the wireless data support node, perhaps connect described wireless data support node by communication interface, be used for packet, and return to this wireless data support node with testing result with by the packet that detects according to this wireless data support node reception of the rule detection of setting;
Processing module is arranged in the described detection module, perhaps connects this detection module by communication interface, is used to preserve not by the packet that detects and the identification information that extracts not by the packet that detects return to this wireless data support node.
7, system as claimed in claim 6, it is characterized in that this system also comprises: identification module is arranged in the wireless data support node, be used to discern the type of the packet that this wireless data support node receives, and the packet that will set type sends to this detection module and detects.
8, system as claimed in claim 6 is characterized in that: described wireless data support node or detection module connect short messaging gateway by communication interface.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005100003392A CN100574265C (en) | 2005-01-10 | 2005-01-10 | The processing method of packet and system in a kind of radio data network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005100003392A CN100574265C (en) | 2005-01-10 | 2005-01-10 | The processing method of packet and system in a kind of radio data network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1805404A CN1805404A (en) | 2006-07-19 |
| CN100574265C true CN100574265C (en) | 2009-12-23 |
Family
ID=36867246
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2005100003392A Active CN100574265C (en) | 2005-01-10 | 2005-01-10 | The processing method of packet and system in a kind of radio data network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100574265C (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103188136B (en) * | 2011-12-30 | 2016-04-27 | 盈世信息科技(北京)有限公司 | A kind of filtrating mail information saving method, mail server and e-mail system |
| CN105450512B (en) * | 2015-12-30 | 2019-02-15 | 中电长城网际系统应用有限公司 | A kind of mail security analysis method and device based on seven layer protocol of OSI |
-
2005
- 2005-01-10 CN CNB2005100003392A patent/CN100574265C/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN1805404A (en) | 2006-07-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101203052B (en) | Method and apparatus for preventing malice business request | |
| CN101399749A (en) | Method, system and device for packet filtering | |
| EP1593277B1 (en) | Method and device for subdividing charge in network | |
| RU2483358C2 (en) | Service charging method and system, network access server and protocol information analysing device | |
| CN109951459A (en) | A kind of ARP spoofing attack detection method based on local area network | |
| CN104091122A (en) | Detection system of malicious data in mobile internet | |
| WO2012019386A1 (en) | Method and system for monitoring spam short messages | |
| US7478168B2 (en) | Device, method and program for band control | |
| CN103414725A (en) | Method and device used for detecting and filtering data message | |
| CN108011805A (en) | Method, apparatus, intermediate server and the car networking system of message screening | |
| CN107547430A (en) | A kind of file transmitting method and device | |
| CN100574265C (en) | The processing method of packet and system in a kind of radio data network | |
| CN101345922B (en) | System and method for forwarding and filtering between multimedia message networks | |
| CN100366026C (en) | A method for implementing message forwarding control in routing equipment | |
| CN108769016A (en) | A kind of processing method and processing device of service message | |
| CN105337970A (en) | Router, server and router-server-cooperative network access control method | |
| CN103796184B (en) | Refuse messages recognition methods and system | |
| CN101159636A (en) | System and method for detecting illegal access | |
| CN101826991A (en) | Method and system for identifying illegal data packet | |
| CN106341413A (en) | Portal authentication method and device | |
| KR20120108135A (en) | Method for deciding tethering service in communication system and apparatus therefor | |
| CN110771103A (en) | Traffic optimization device, communication system, traffic optimization method, and program | |
| CN101674584B (en) | Method for detecting virus and system | |
| CN100442778C (en) | Method, system for carrying out anti-attack filtration on data stream and its re-positioning device | |
| CN103647776B (en) | Media resource synchronization method and system for multiple terminals |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |