CN101119274A - Method for improving treatment efficiency of SSL gateway and SSL gateway - Google Patents
Method for improving treatment efficiency of SSL gateway and SSL gateway Download PDFInfo
- Publication number
- CN101119274A CN101119274A CNA2007101216889A CN200710121688A CN101119274A CN 101119274 A CN101119274 A CN 101119274A CN A2007101216889 A CNA2007101216889 A CN A2007101216889A CN 200710121688 A CN200710121688 A CN 200710121688A CN 101119274 A CN101119274 A CN 101119274A
- Authority
- CN
- China
- Prior art keywords
- server
- ssl gateway
- address
- ssl
- gateway
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
The present invention provides a method for improving the SSL gateway disposal efficiency, which comprises the contents as follows: a virtual IP address is arranged on a SSL gateway; the virtual IP address is the same as the server IP address in the protective network of the SSL gateway; or the IP address of the SSL gateway is arranged as the IP address corresponding to the server domain name; after the SSL gateway receives a web request which is originated by a client for visiting the server, the URL in the web request is not replaced while the received web request is disposed according to the self arranging rule. Moreover, the URL information that the server transmits to the client has no URL substitution by the SSL gateway and the original URL information is directly transmitted to the client. Besides, the present invention also provides a SSL gateway. By adopting the technical proposal of the present invention, the disposal burden of the SSL gateway is reduced, and the disposal efficiency of the SSL gateway is improved.
Description
Technical field
The present invention relates to the network communications technology, relate in particular to the method and the SSL gateway of a kind of raising SSL (SSL, SecureSockets Layer) gateway processes efficient.
Background technology
Ssl protocol is a kind of agreement that escape way is provided between two equipment; protect the Information Security of transmission on the internet by cipher mode; the birth of SSL is that the Network Transmission based on HTML (Hypertext Markup Language) (HTTP, Hypertext Transfer Protocol) provides safety guarantee.VPN (virtual private network) (VPN, Virtual Private Network) then is mainly used in virtual connection network, and it can be guaranteed the confidentiality of data and have certain access control function.VPN with HTTPS (based on the HTTP of SSL) is called SSL VPN, the safety remote access control ability that the uniqueness of SSL and VPN can provide makes SSL VPN become the simplest safest technical solution that solves the responsive business data of remote user access.
Support the equipment of SSL VPN function to be called the SSL gateway, Fig. 1 shows typical SSL gateway networking diagram, and shielded local area network (LAN) is connected with wide area network by the SSL gateway.The operation principle of SSL gateway as shown in Figure 2, for user (client) side, the behavior of a server of SSL gateway simulation (server) is for client provides service; For the server side, the behavior of a client of SSL gateway simulation is obtained information and is passed to real client from server.When the client in the outer net wanted to visit web on the shielded server and uses, at first client needed set up with the SSL gateway that SSL is connected and carry out authentication, and then the web that will be correlated with asks to issue the SSL gateway; After the SSL gateway is received the web request of client initiation,, the web request of client is handled according to the filtration and the transformation rule that self dispose.If user right is not enough, the SSL gateway is the directly web of refusing user's request then; If the user has enough authorities, the SSL gateway is then initiated request according to the web request of receiving to real server, obtains corresponding data, and then by the SSL connection of having set up the data of obtaining is sent to client.In order to guarantee safety of data transmission, the communication between SSL gateway and the client uses ssl protocol to encrypt, and adopts the ciphertext transmission.
Wherein, when the SSL gateway sends to client in the data that server is provided, server need be developed to all the URL(uniform resource locator) (URL on the web page of client, Uniform ResoureLocator) all search is come out, and these URL are changed, when using these URL visits server to guarantee that client is next, access request can be passed through the SSL gateway, rather than directly is sent on the server.Such as, does the SSL gateway connect http: // 101.3.205.1/defect/defectList.do with the URL that server offers client? does fileID=930 replace with https: // 1.1.3.202/http/p/101.3.205.1/defect/defectList.do? fileID=930; Perhaps, with http://www.myspace.com/defect/defectList.do? fileID=930 replaces with https: //svpn.myspace.com/http/0/www.myspace.com/defect/defectLis t.do? feleID=930.Wherein, the 1.1.3.202 of SSL gateway interpolation in the URL replacement or IP address or the domain name that svpn.myspace.com is the SSL gateway.A URL is made up of prefix, domain name/IP address, suffix three parts usually, and in the transfer process of SSL gateway, suffix generally remains unchanged.If it is relative URL that server offers the URL of client, promptly have only suffix and do not comprise the URL of prefix and domain name/IP address, then the SSL gateway need not to change, because prefix and domain name/IP address that client uses when meeting is added last visit automatically when visit.
This paper is for ease of describing, and the URL that server is provided is called original URL, will be called gateway URL through the URL after the conversion of SSL gateway.When client used gateway URL to visit resource on the server, the SSL gateway need replace to the original URL that server can be familiar with the gateway URL that client initiates; The web page that the server that obtains for the visit back releases to client, the SSL gateway need come out the whole search of all URL on the web page, and these original URL are replaced to gateway URL, and then the gateway URL after will replacing sends to client.
As seen, in existing SSL gateway processes process, the SSL gateway need carry out a large amount of replacement work, not only need the gateway URL that client is sent to replace to original URL, also need with server issue in the web page of client all original URL all search come out to replace to gateway URL, these replacement work will expend a large amount of processing resources.Because the SSL gateway itself is done the SSL encrypting and authenticating and the user policy coupling is very heavy with regard to having born, and therefore, increases these URL replacement operations again, can cause the reduction of SSL gateway processes efficient.
Summary of the invention
In view of this, main purpose of the present invention is to provide a kind of method and SSL gateway of the SSL of raising gateway processes efficient, to improve the treatment effeciency of SSL gateway.
For achieving the above object, technical scheme provided by the invention is as follows:
A kind of method that improves SSL gateway processes efficient comprises:
On the SSL gateway virtual ip address is set, this virtual ip address is identical with the server IP address in the SSL gateway institute protecting network; Perhaps, the IP address setting with the SSL gateway is the IP address corresponding with described server domain name;
After the SSL gateway is received the web request of the visit server that client initiates, the URL in this web request is not replaced, directly the web request of receiving is handled according to the rule that self disposes; And, sending to the URL information of client for server, the SSL gateway does not carry out URL yet to be replaced, and directly original URL information is sent to client.
When the bypass of SSL gateway was on self institute's protecting network and path that outer net is connected, this method further comprised:
After forwarding unit on the described path is received the web request of the visit server that client initiates, this web request is redirected to the SSL gateway.
Described IP address setting with the SSL gateway comprises for the IP address corresponding with described server domain name:
To the IP address of the described server domain name of name server application correspondence the time, directly the IP application IP addresses with the SSL gateway are the IP address corresponding with described server domain name.
Described IP address setting with the SSL gateway comprises for the IP address corresponding with described server domain name:
When having the Intranet name server in the SSL gateway institute protecting network; the DNS message that SSL gateway intercepting Intranet name server sends to the outer net name server; the corresponding relation of the server domain name of wherein carrying and serverIP address is revised as the corresponding relation of server domain name and SSL gateway ip address, and amended DNS message is sent to the outer net name server.
When the bypass of SSL gateway is on Intranet name server and path that the outer net name server is connected,
Described SSL gateway intercepting Intranet name server comprises to the DNS message that the outer net name server sends: after the forwarding unit on the described path receives that the Intranet name server mails to the DNS message of outer net name server, give the SSL gateway with this DNS message redirecting.
Described IP address setting with the SSL gateway comprises for the IP address corresponding with described server domain name:
When having the Intranet name server in the SSL gateway institute protecting network; the DNS message that must the name server intercept proxy Intranet name server on the path sends that the Intranet name server links to each other with the outer net name server to the outer net name server; the corresponding relation of the server domain name of wherein carrying and server IP address is revised as the corresponding relation of server domain name and SSL gateway ip address, and amended DNS message is sent to the outer net name server.
All URL connections on the described server all use https as prefix.
When the URL in the web of the visit server that described client the initiates request was prefix with http, this method further comprised:
The SSL gateway receive described with http as the web of URL prefix request after, send the http redirection message to described cilent, guide this client to initiate the web request as the prefix of URL with https.
A kind of SSL gateway, the virtual ip address of this SSL gateway is identical with the serverIP address in the SSL gateway institute protecting network, and perhaps, the IP address of this SSL gateway is corresponding with the domain name of described server, and this SSL gateway comprises:
HTTP message forward processing unit is used to receive the web request of the described server of visit that outer net client initiates, and according to the rule of self configuration the web request of receiving is handled, and the URL in this web request is not replaced;
HTTP message reverse process unit is used to receive the URL information that server sends to described client, and directly should original URL information be transmitted to described client, does not carry out URL and replaces.
This SSL gateway further comprises: the DNS message is revised the unit; when being used in described SSL gateway institute protecting network, having the Intranet name server; intercept the DNS message that described Intranet name server sends to the outer net name server; the IP address that the SSL gateway is revised as in the IP address corresponding with described server domain name of wherein carrying, and amended DNS message sent to the outer net name server.
This shows, the present invention is by being provided with and the identical virtual ip address in server IP address on the SSL gateway, IP address setting that perhaps will be corresponding with the server domain name is the mode of SSL gateway ip address, make the SSL gateway need not to carry out the replacement operation of original URL and gateway URL, just can tackle the web request of the visit server of wan user's initiation, thereby the SSL gateway processes of having avoided causing owing to a large amount of URL replacement operations is born the problem of increase, has improved the treatment effeciency of SSL gateway.
Description of drawings
Fig. 1 is a typical SSL gateway networking diagram in the prior art.
Fig. 2 is the application schematic diagram of SSL gateway in the prior art.
Fig. 3 is the networking schematic diagram of SSL gateway in the embodiment of the invention.
Fig. 4 is the networking schematic diagram of SSL gateway under the bypass mode in the embodiment of the invention.
The network internal that Fig. 5 guards for SSL gateway in the embodiment of the invention has the networking schematic diagram of dns server.
Embodiment
For making purpose of the present invention, technical scheme and advantage clearer, the embodiment that develops simultaneously with reference to the accompanying drawings is described in further detail the present invention.
Describe as seen by background technology, in the prior art, the SSL gateway not only needs the original URL that server is offered client to replace to gateway URL, also need the gateway URL that client is sent to replace to original URL, replacement between this original URL and the gateway URL can expend a large amount of processing resource of SSL gateway, causes the reduction of SSL gateway processes efficient.
In order to overcome the problems referred to above, the invention provides two kinds of different solutions.
One, a virtual IP address is set on the SSL gateway, make its IP address that equals server, all be routed to SSL gateway processes as URL or with the server domain name as the web request of the visit server of URL with server IP address with what guarantee that client in the outer net initiates.Such as, among Fig. 3, the domain name of server is www.myspace.com, the IP address is 202.31.99.6; The domain name of SSL gateway is svpn.myspace.com, and the IP address is 202.31.75.2.Here, a virtual ip address 202.31.99.6 can be set on the SSL gateway.
If the SSL gateway is connected on unique path that Intranet is communicated with outer net, so, all messages from the outer net side at first obviously can be guaranteed by SSL gateway intercepting this point.In Fig. 3, the such web request of the http that client sends: // 202.31.99.6/ will inevitably be by the SSL gateway processes.
If the SSL gateway is not to be connected on unique path that Intranet is connected with outer net, and be that bypass is on this paths, as shown in Figure 4, so, then need forwarding units such as router (router) on the corresponding critical path or switch to do tactful route, to give the SSL gateway from the message redirecting to server of outer net, rather than directly send to server.Like this, the data of client visit server can be intercepted by the SSL gateway earlier equally.Wherein, the forwarding unit on the described critical path be meant when Intranet is communicated by letter with outer net must through forwarding unit.
Two, by domain name on the modification name server (DNS) and the corresponding relation between the IP address, feasible network to external world, the pairing IP of server domain name address is exactly the IP address of SSL gateway, rather than real server address.What like this, client initiated asks to be sent to the SSL gateway processes with the web of server domain name as the visit server of URL.
Such as, in Fig. 3,202.31.75.2 is revised as in the IP address of www.myspace.com correspondence, rather than real server address 202.31.99.6, the message that can make client be sent to www.myspace.com is sent to the SSL gateway like this.Reach this purpose, can when apply for the IP address of server domain name correspondence, directly just use the IP address of SSL gateway to apply for, rather than use the IP address of server to DNS, that is to say, be and the corresponding IP of server domain name address the IP application IP addresses of SSL gateway.
In addition, when the network internal of guarding when the SSL gateway had dns server, DNS deception to external world can also be passed through the DNS message of SSL gateway by interception, and realize the pairing IP of the server domain name address of revising wherein.Such as, referring to shown in Figure 5, an outer net name server Foreign Name Server is arranged in outer net, the network internal of guarding at the SSL gateway has an Intranet name server Name Server, and the SSL gateway is connected on intranet and extranet name server Name Server and the unique path that ForeignName Server links to each other.Wherein, the IP address corresponding with server domain name www.myspace.com of preserving on the Name Server is the IP address 202.31.99.6 of server.In Fig. 5, the SSL gateway is tackled the DNS message that inner Name Server sends to outside Foreign Name Server, as maintenance request (maintenance queries) message, and revise the domain name wherein carry and the corresponding relation of IP address, the IP address of will the IP address corresponding being revised as the SSL gateway with server domain name www.myspace.com, and then amended DNS message sent to Foreign NameServer.Like this, the domain name that is write down on the outer net name server Foreign Name Server and the corresponding relation of IP address were revised by the SSL gateway, and all external references all can point to the SSL gateway.
If the SSL gateway is not to be connected on the continuous unique path of intranet and extranet name server, and be that bypass is on this paths, so, then need on forwarding units such as the router of corresponding critical path or switch, do tactful route, Name Server be mail to the DNS message redirecting of Foreign NameServer to the SSL gateway by this forwarding unit.After the SSL gateway was received, the IP address of SSL gateway was revised as in IP address that will be corresponding with the server domain name, and then amended DNS message is sent to Foreign Name Server.
In addition, the function of above-mentioned modification domain name and IP address corresponding relation, can also independently be positioned at must the name server agency (DNS Proxy) on the path realizing that Name Server links to each other with Foreign Name Server by one, rather than realize by the SSL gateway.That is to say, described DNSProxy intercepting Name Server mails to the DNS message of Foreign Name Server, and the IP address of being revised as the SSL gateway, the IP address corresponding that will wherein carry, and then amended DNS message sent to Foreign Name Server with the server domain name.
As seen, no matter be to adopt the above-mentioned first kind of mode or the second way can allow the web request of visit server be routed to the SSL gateway processes.
In technical scheme provided by the present invention, the SSL gateway is after the web request of receiving the visit server that outer net client initiates, need not the URL in this web request is changed, can directly handle the web request that client initiates according to the rule that self disposes, such as, judge the web request of whether refusing or transmitting client according to user right.Offer the web page of client for server, the SSL gateway also need not the whole URL in this web page are searched for out to change, and the original URL information that the SSL gateway directly offers server client is transmitted to client and gets final product.Wherein, the detailed process that the web request that described SSL gateway is initiated client according to the rule that self disposes is handled is consistent with prior art, repeats no more here.
In addition, in order to guarantee safety of data transmission, generally require all visits all to encrypt, promptly prefix should be https, rather than http.This can solve by following dual mode:
1, require all URL connections on the server all to use https as prefix, rather than http.So not only use SSL to encrypt between client and the SSL gateway, and also use SSL to encrypt between SSL gateway and the server.But because not all server supports SSL to encrypt, therefore, the general less employing of this mode can be adopted the 2nd kind of mode usually.
2, on the SSL gateway, open the http service simultaneously, the SSL gateway receive that client initiates with after the web request of http as the visit server of URL prefix, send the http redirection message to client, guiding client initiates the web request with https as the URL prefix.Such as, among Fig. 3, the SSL gateway need send the http redirection message to client after being the web request of http://www.myspace.com/ at the URL that receives the client initiation; After client received redirection message, initiating URL with https as the URL prefix was https: //the web request of www.myspace.com/, will in encrypted tunnel, transmit like this.
In addition; the present invention also provides a kind of SSL gateway; the virtual ip address of this SSL gateway is identical with the server IP address in the SSL gateway institute protecting network; perhaps; the IP address of this SSL gateway is corresponding with the domain name of described server; and this SSL gateway also comprises: HTTP message forward processing unit and HTTP message reverse process unit.Wherein,
HTTP message forward processing unit is used to receive the web request of the described server of visit that outer net client initiates, and according to the rule of self configuration the web request of receiving is handled, and the URL in this web request is not replaced;
HTTP message reverse process unit is used to receive the URL information that server sends to described client, and directly should original URL information be transmitted to described client, does not carry out URL and replaces.
This SSL gateway also can further comprise: the DNS message is revised the unit; when being used in described SSL gateway institute protecting network, having the Intranet name server; intercept the DNS message that described Intranet name server sends to the outer net name server; the IP address that the SSL gateway is revised as in the IP address corresponding with described server domain name of wherein carrying, and amended DNS message sent to the outer net name server.
Generally speaking, adopt technical scheme provided by the present invention after, the SSL gateway need not to carry out the replacement of original URL and gateway URL, thereby has alleviated the processing burden of SSL gateway, has improved the treatment effeciency of SSL gateway.
The above has carried out further detailed description to purpose of the present invention, technical scheme and beneficial effect; institute is understood that; the above is not in order to restriction the present invention; within the spirit and principles in the present invention all; any modification of being made, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (10)
1. a method that improves SSL gateway processes efficient is characterized in that, comprising:
On the SSL gateway virtual ip address is set, this virtual ip address is identical with the server IP address in the SSL gateway institute protecting network; Perhaps, the IP address setting with the SSL gateway is the IP address corresponding with described server domain name;
After the SSL gateway is received the web request of the visit server that client initiates, the URL in this web request is not replaced, directly the web request of receiving is handled according to the rule that self disposes; And, sending to the URL information of client for server, the SSL gateway does not carry out URL yet to be replaced, and directly original URL information is sent to client.
2. method according to claim 1; it is characterized in that; when the bypass of SSL gateway is on self institute's protecting network and path that outer net is connected; this method further comprises: after the forwarding unit on the described path is received the web request of the visit server that client initiates, this web request is redirected to the SSL gateway.
3. method according to claim 1 is characterized in that, described IP address setting with the SSL gateway comprises for the IP address corresponding with described server domain name:
To the IP address of the described server domain name of name server application correspondence the time, directly the IP application IP addresses with the SSL gateway are the IP address corresponding with described server domain name.
4. method according to claim 1 is characterized in that, described IP address setting with the SSL gateway comprises for the IP address corresponding with described server domain name:
When having the Intranet name server in the SSL gateway institute protecting network; the DNS message that SSL gateway intercepting Intranet name server sends to the outer net name server; the corresponding relation of the server domain name of wherein carrying and serverIP address is revised as the corresponding relation of server domain name and SSL gateway ip address, and amended DNS message is sent to the outer net name server.
5. method according to claim 4 is characterized in that, when the bypass of SSL gateway is on Intranet name server and path that the outer net name server is connected,
Described SSL gateway intercepting Intranet name server comprises to the DNS message that the outer net name server sends: after the forwarding unit on the described path receives that the Intranet name server mails to the DNS message of outer net name server, give the SSL gateway with this DNS message redirecting.
6. method according to claim 1 is characterized in that, described IP address setting with the SSL gateway comprises for the IP address corresponding with described server domain name:
When having the Intranet name server in the SSL gateway institute protecting network; the DNS message that must the name server intercept proxy Intranet name server on the path sends that the Intranet name server links to each other with the outer net name server to the outer net name server; the corresponding relation of the server domain name of wherein carrying and server IP address is revised as the corresponding relation of server domain name and SSL gateway ip address, and amended DNS message is sent to the outer net name server.
7. according to each described method of claim 1 to 6, it is characterized in that all URL connections on the described server all use https as prefix.
8. according to each described method of claim 1 to 6, it is characterized in that when the URL in the web of the visit server that described client the initiates request was prefix with http, this method further comprised:
The SSL gateway receive described with http as the web of URL prefix request after, send the http redirection message to described cilent, guide this client to initiate the web request as the prefix of URL with https.
9. a SSL gateway is characterized in that, the virtual ip address of this SSL gateway is identical with the server IP address in the SSL gateway institute protecting network, and perhaps, the IP address of this SSL gateway is corresponding with the domain name of described server, and this SSL gateway comprises:
HTTP message forward processing unit is used to receive the web request of the described server of visit that outer net client initiates, and according to the rule of self configuration the web request of receiving is handled, and the URL in this web request is not replaced;
HTTP message reverse process unit is used to receive the URL information that server sends to described client, and directly should original URL information be transmitted to described client, does not carry out URL and replaces.
10. SSL gateway according to claim 9; it is characterized in that; this SSL gateway further comprises: the DNS message is revised the unit; when being used in described SSL gateway institute protecting network, having the Intranet name server; intercept the DNS message that described Intranet name server sends to the outer net name server; the IP address that the SSL gateway is revised as in the IP address corresponding with described server domain name of wherein carrying, and amended DNS message sent to the outer net name server.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2007101216889A CN100571188C (en) | 2007-09-12 | 2007-09-12 | A kind of method and SSL gateway that improves SSL gateway processes efficient |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2007101216889A CN100571188C (en) | 2007-09-12 | 2007-09-12 | A kind of method and SSL gateway that improves SSL gateway processes efficient |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101119274A true CN101119274A (en) | 2008-02-06 |
| CN100571188C CN100571188C (en) | 2009-12-16 |
Family
ID=39055219
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2007101216889A Active CN100571188C (en) | 2007-09-12 | 2007-09-12 | A kind of method and SSL gateway that improves SSL gateway processes efficient |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100571188C (en) |
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102638346A (en) * | 2012-05-12 | 2012-08-15 | 杭州迪普科技有限公司 | Method and device for authorizing subscriber digital certificate |
| WO2012163005A1 (en) * | 2011-10-14 | 2012-12-06 | 华为技术有限公司 | Method, apparatus and gateway device for accessing virtual private network |
| CN102932359A (en) * | 2012-11-08 | 2013-02-13 | 华为软件技术有限公司 | Method, device and system for streaming media service request |
| CN103167006A (en) * | 2011-12-19 | 2013-06-19 | 中国电信股份有限公司 | Method of providing web service of virtual machines and virtual machine monitor and system |
| CN103220289A (en) * | 2013-04-15 | 2013-07-24 | 北京京东尚科信息技术有限公司 | Resource verification system and resource verification method based on web application |
| CN103685284A (en) * | 2013-12-18 | 2014-03-26 | 上海普华诚信软件技术有限公司 | Data interception and conversion method and system |
| CN103701928A (en) * | 2014-01-02 | 2014-04-02 | 山东大学 | Method applied to load balancer for improving operating efficiency of servers and SSL (Secure Sockets Layer) gateway |
| WO2015085490A1 (en) * | 2013-12-10 | 2015-06-18 | 华为技术有限公司 | Method and apparatus for optimizing web access |
| CN105959197A (en) * | 2015-07-30 | 2016-09-21 | 杭州迪普科技有限公司 | SSL VPN user interface customization method and device |
| CN106453610A (en) * | 2016-11-09 | 2017-02-22 | 深圳市任子行科技开发有限公司 | HTTPS data flow auditing method and system oriented on operator backbone network |
| CN106790593A (en) * | 2016-12-28 | 2017-05-31 | 北京奇虎科技有限公司 | A kind of page processing method and device |
| CN106878434A (en) * | 2017-02-28 | 2017-06-20 | 杭州迪普科技股份有限公司 | A kind of method and device of redirection |
| CN106961439A (en) * | 2017-03-31 | 2017-07-18 | 杭州迪普科技股份有限公司 | A kind of HTTPS encrypted transmission methods and device |
| CN107634969A (en) * | 2017-10-26 | 2018-01-26 | 迈普通信技术股份有限公司 | Data interactive method and device |
| CN108111516A (en) * | 2017-12-26 | 2018-06-01 | 珠海市君天电子科技有限公司 | Based on WLAN safety communicating method, device and electronic equipment |
| CN111200633A (en) * | 2019-11-28 | 2020-05-26 | 云深互联(北京)科技有限公司 | Indirect access method and system for business system |
| CN111224918A (en) * | 2018-11-23 | 2020-06-02 | 中国移动通信集团广东有限公司 | Real-time networking security control platform and access authentication method |
| CN116155549A (en) * | 2022-12-23 | 2023-05-23 | 武汉雨滴科技有限公司 | Terminal external connection detection method and device, electronic equipment and storage medium |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102546594B (en) * | 2011-12-07 | 2014-07-02 | 北京星网锐捷网络技术有限公司 | Network resource access control method, device and related equipment |
-
2007
- 2007-09-12 CN CNB2007101216889A patent/CN100571188C/en active Active
Cited By (27)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103168450B (en) * | 2011-10-14 | 2015-11-25 | 华为技术有限公司 | The method of accesses virtual dedicated network, device and gateway device |
| WO2012163005A1 (en) * | 2011-10-14 | 2012-12-06 | 华为技术有限公司 | Method, apparatus and gateway device for accessing virtual private network |
| CN103168450A (en) * | 2011-10-14 | 2013-06-19 | 华为技术有限公司 | Method, apparatus and gateway device for accessing virtual private network |
| CN103167006A (en) * | 2011-12-19 | 2013-06-19 | 中国电信股份有限公司 | Method of providing web service of virtual machines and virtual machine monitor and system |
| CN103167006B (en) * | 2011-12-19 | 2016-08-03 | 中国电信股份有限公司 | Virtual machine provides the method for Web service, monitor of virtual machine and system |
| CN102638346A (en) * | 2012-05-12 | 2012-08-15 | 杭州迪普科技有限公司 | Method and device for authorizing subscriber digital certificate |
| CN102638346B (en) * | 2012-05-12 | 2014-09-10 | 杭州迪普科技有限公司 | Method and device for authorizing subscriber digital certificate |
| CN102932359A (en) * | 2012-11-08 | 2013-02-13 | 华为软件技术有限公司 | Method, device and system for streaming media service request |
| CN103220289A (en) * | 2013-04-15 | 2013-07-24 | 北京京东尚科信息技术有限公司 | Resource verification system and resource verification method based on web application |
| WO2015085490A1 (en) * | 2013-12-10 | 2015-06-18 | 华为技术有限公司 | Method and apparatus for optimizing web access |
| CN103685284A (en) * | 2013-12-18 | 2014-03-26 | 上海普华诚信软件技术有限公司 | Data interception and conversion method and system |
| CN103701928B (en) * | 2014-01-02 | 2017-03-01 | 山东大学 | It is applied to the method that load equalizer improves server and SSL gateway operational efficiency |
| CN103701928A (en) * | 2014-01-02 | 2014-04-02 | 山东大学 | Method applied to load balancer for improving operating efficiency of servers and SSL (Secure Sockets Layer) gateway |
| CN105959197A (en) * | 2015-07-30 | 2016-09-21 | 杭州迪普科技有限公司 | SSL VPN user interface customization method and device |
| CN106453610B (en) * | 2016-11-09 | 2019-08-09 | 深圳市任子行科技开发有限公司 | The HTTPS data flow auditing method and system of operatable object quotient's backbone network |
| CN106453610A (en) * | 2016-11-09 | 2017-02-22 | 深圳市任子行科技开发有限公司 | HTTPS data flow auditing method and system oriented on operator backbone network |
| CN106790593A (en) * | 2016-12-28 | 2017-05-31 | 北京奇虎科技有限公司 | A kind of page processing method and device |
| CN106878434A (en) * | 2017-02-28 | 2017-06-20 | 杭州迪普科技股份有限公司 | A kind of method and device of redirection |
| CN106961439A (en) * | 2017-03-31 | 2017-07-18 | 杭州迪普科技股份有限公司 | A kind of HTTPS encrypted transmission methods and device |
| CN106961439B (en) * | 2017-03-31 | 2019-09-17 | 杭州迪普科技股份有限公司 | A kind of HTTPS encrypted transmission method and device |
| CN107634969A (en) * | 2017-10-26 | 2018-01-26 | 迈普通信技术股份有限公司 | Data interactive method and device |
| CN107634969B (en) * | 2017-10-26 | 2020-07-10 | 迈普通信技术股份有限公司 | Data interaction method and device |
| CN108111516A (en) * | 2017-12-26 | 2018-06-01 | 珠海市君天电子科技有限公司 | Based on WLAN safety communicating method, device and electronic equipment |
| CN111224918A (en) * | 2018-11-23 | 2020-06-02 | 中国移动通信集团广东有限公司 | Real-time networking security control platform and access authentication method |
| CN111200633A (en) * | 2019-11-28 | 2020-05-26 | 云深互联(北京)科技有限公司 | Indirect access method and system for business system |
| CN116155549A (en) * | 2022-12-23 | 2023-05-23 | 武汉雨滴科技有限公司 | Terminal external connection detection method and device, electronic equipment and storage medium |
| CN116155549B (en) * | 2022-12-23 | 2023-12-29 | 武汉雨滴科技有限公司 | Terminal external connection detection method and device, electronic equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100571188C (en) | 2009-12-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100571188C (en) | A kind of method and SSL gateway that improves SSL gateway processes efficient | |
| US11316787B2 (en) | Method and apparatus for traffic optimization in virtual private networks (VPNs) | |
| US6829654B1 (en) | Apparatus and method for virtual edge placement of web sites | |
| US9942204B2 (en) | Secure personal server system and method | |
| EP1255395B1 (en) | External access to protected device on private network | |
| US8694610B2 (en) | Apparatus and method for domain name resolution | |
| US7570663B2 (en) | System and method for processing packets according to concurrently reconfigurable rules | |
| EP3125502A1 (en) | Method for providing access to a web server | |
| EP3080973B1 (en) | Proxy interception | |
| EP3503505B1 (en) | Sandbox environment for testing integration between a content provider origin and a content delivery network | |
| US20030009559A1 (en) | Network system and method of distributing accesses to a plurality of server apparatus in the network system | |
| US11882199B2 (en) | Virtual private network (VPN) whose traffic is intelligently routed | |
| CN100463452C (en) | VPN data forwarding method and VPN device for data forwarding | |
| WO2001076187A1 (en) | Methods and apparatus usable with or applicable to the use of the internet | |
| JP2017118545A (en) | Communication system using HTTP | |
| EP3472991A1 (en) | Secure personal server system and method | |
| CN104756462A (en) | Method and system for tcp turn operation behind a restrictive firewall | |
| JP2005184110A (en) | Device and method for transmitting packet | |
| JP5083983B2 (en) | Server explicit selection type reverse proxy device, data relay method thereof, and program thereof | |
| CN104618242B (en) | A kind of message forwarding method and device | |
| US20150215289A1 (en) | Method for hiding server address | |
| JP5137200B2 (en) | Hypertext transfer protocol network and data transfer method | |
| US20230336793A1 (en) | Streaming proxy service | |
| JP2010056666A (en) | User identification type reverse proxy device, data relaying method thereof, and program thereof | |
| KR20150089900A (en) | Method for hiding server address |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CP03 | Change of name, title or address | ||
| CP03 | Change of name, title or address |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Patentee after: Xinhua three Technology Co., Ltd. Address before: 310053 Hangzhou hi tech Industrial Development Zone, Zhejiang province science and Technology Industrial Park, No. 310 and No. six road, HUAWEI, Hangzhou production base Patentee before: Huasan Communication Technology Co., Ltd. |