CN101610177A - System and method based on the business configuration of DHCP Server mechanism - Google Patents
System and method based on the business configuration of DHCP Server mechanism Download PDFInfo
- Publication number
- CN101610177A CN101610177A CNA2009101591648A CN200910159164A CN101610177A CN 101610177 A CN101610177 A CN 101610177A CN A2009101591648 A CNA2009101591648 A CN A2009101591648A CN 200910159164 A CN200910159164 A CN 200910159164A CN 101610177 A CN101610177 A CN 101610177A
- Authority
- CN
- China
- Prior art keywords
- equipment
- home gateway
- information
- service
- management module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 25
- 230000007246 mechanism Effects 0.000 title claims abstract description 14
- 230000005540 biological transmission Effects 0.000 claims description 4
- 238000010586 diagram Methods 0.000 description 4
- 238000013507 mapping Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000006855 networking Effects 0.000 description 2
- 230000006872 improvement Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
Images
Landscapes
- Small-Scale Networks (AREA)
Abstract
A kind of system of the business configuration based on dynamic host allocation protocol (DHCP) server end mechanism comprises home gateway and inserts the equipment of home gateway; The equipment of described access home gateway is used for inserting described home gateway in the DHCP mode, and the facility information of this equipment of reporting; Described home gateway, comprise Dynamic Host Configuration Protocol server end module and device management module, described Dynamic Host Configuration Protocol server end module is used for obtaining the facility information that described equipment reports after described equipment inserts described home gateway, and reports described facility information to described device management module; Described device management module is used for the described facility information that obtains according to pre-configured business game information and described Dynamic Host Configuration Protocol server end module, automatically business is configured.Correspondingly, the present invention also provides a kind of service configuration method based on Dynamic Host Configuration Protocol server terminal system.Said method and system reach efficient automatic and safe administrative purposes.
Description
Technical Field
The present invention relates to service management in an access network, and in particular, to a system and method for service configuration based on a DHCP Server mechanism.
Background
Dynamic host allocation protocol (DHCP) technology is well established and has a number of extended functional mechanisms-options (options), with Option60 again being the most common of many options.
The Option60 field is introduced in RFC2132 specification of DHCP, carries vendor information, and is information carried when a user terminal initiates a DHCP request, and the network device only needs to transmit transparently. In addition, many manufacturers further expand the information carried by the Option60 field to also include the device type when using the network, and the DHCP Server can allocate an IP address depending on the information carried by the Option60 field.
Many solutions now refer to the DHCP Server using the information carried in the Option60 field to manage IP address allocation for different devices, which are always the basic functions of DHCP.
For a device accessing the home gateway, besides acquiring an IP address through DHCP, other services can be configured, which cannot be automatically configured in the prior art.
Disclosure of Invention
The technical problem to be solved by the invention is to provide a system and a method for service configuration based on a DHCP Server mechanism, which can automatically configure various services of equipment accessed to a home gateway.
In order to solve the above problem, the present invention provides a system for service configuration based on a Dynamic Host Configuration Protocol (DHCP) server mechanism, which is characterized in that: the system comprises a home gateway and a device for accessing the home gateway; wherein,
the equipment accessed to the home gateway is used for accessing the home gateway in a DHCP mode and reporting the equipment information of the equipment;
the home gateway comprises a DHCP server side module and an equipment management module, wherein,
the DHCP server side module is used for acquiring the equipment information reported by the equipment after the equipment is accessed to the home gateway and reporting the equipment information to the equipment management module;
and the equipment management module is used for automatically configuring the service according to the service strategy information configured in advance and the equipment information acquired by the DHCP server side module.
Further, the system also has the following characteristics:
the system further comprises an authentication server;
the authentication server is used for authenticating according to the equipment information reported by the home gateway and returning an authentication result to the home gateway;
and the equipment management module is also used for reporting the equipment information to the authentication server and receiving an authentication result after acquiring the equipment information, and if the equipment is legal or safe, the equipment management module automatically configures the service according to the equipment information and the service strategy information.
Further, the system also has the following characteristics:
if the set top box is legal or safe, the equipment management module automatically binds and connects a local area network side interface accessed by the STB with a wide area network of the network television when the equipment management module is configured according to the service strategy information; or,
the equipment is a network telephone, if the network telephone is legal or safe, the equipment management module automatically completes the configuration of adding the service quality according to the service strategy information and configures the queue of the real-time transmission protocol message entering of the local area network side interface of the network telephone as the highest priority.
Further, the system also has the following characteristics:
the device information includes one or more of vendor information and device type.
Further, the system also has the following characteristics:
and when the equipment is accessed to the home gateway, carrying equipment information in an Option60 field in a DISCOVER message.
In order to solve the above problem, the present invention further provides a method for service configuration based on a Dynamic Host Configuration Protocol (DHCP) server mechanism, including:
the equipment accesses the home gateway in a DHCP mode and reports the equipment information of the equipment;
and the home gateway acquires the equipment information reported by the equipment and automatically configures the service by using the equipment information and the service strategy information configured in advance.
Further, the method also has the following characteristics:
after the home gateway acquires the device information, the method further comprises the following steps:
the home gateway reports the equipment information to an authentication server;
the authentication server authenticates according to the equipment information reported by the home gateway and returns an authentication result to the home gateway;
and after receiving the authentication result, if the equipment is legal or safe, the home gateway automatically configures the service according to the equipment information and the service strategy information.
Further, the method also has the following characteristics:
if the set top box is legal or safe, the home gateway automatically binds and connects a local area network side interface accessed by the set top box with a wide area network of the network television when the home gateway is configured according to the service strategy information; or,
the equipment is a network telephone, if the network telephone is legal or safe, the home gateway automatically completes the configuration of adding the service quality according to the service strategy information, and configures the queue of the real-time transmission protocol message entering of the local area network side interface of the network telephone as the highest priority.
Further, the method also has the following characteristics:
the device information includes one or more of vendor information and device type.
Further, the method also has the following characteristics:
and when the equipment is accessed to the home gateway, carrying equipment information in an Option60 field in a DISCOVER message.
The method and the system are based on the configuration of various services of the equipment accessed to the home gateway, thereby achieving the aim of high-efficiency, automatic and safe management. The information of the Option60 field can also be used for identifying the information of the factory manufacturer, the type of equipment and the like, and automatically completing the configuration of related service development; and the service expansion is more flexible. In one embodiment, the related information is also sent to the authentication server for authentication, so that the safety and reliability of management are increased.
Drawings
FIG. 1 is a networking diagram employed by embodiments of the present invention;
fig. 2 is a functional block diagram of a home gateway in the embodiment of the present invention;
fig. 3 is a flowchart of service configuration based on a DHCP Server mechanism according to an embodiment of the present invention.
Detailed Description
The core of the invention is that: and the equipment information is sent to the home gateway by accessing the equipment of the home gateway in a DHCP mode, and the home gateway automatically configures the service according to the equipment information and the service strategy information.
The service comprises the following steps: binding, QoS, firewall, authentication, IP assignment, and multicast, among others.
The following detailed description of the embodiments of the invention refers to the accompanying drawings.
The first embodiment is as follows:
in this embodiment, a system for service configuration based on a DHCP Server mechanism includes: the home gateway is used for acquiring equipment information when the equipment is accessed to the home gateway, and automatically configuring various services of the equipment accessed to the home gateway according to the equipment information and the service strategy information; the device information comprises manufacturer information and a device type, can be only one of the manufacturer information and the device type, and can be further expanded into other information;
the device accessing the home gateway may send the device information to the home gateway in any manner, such as sending the device information separately, or using other Option fields, where the Option60 field is selected to carry the device information in this embodiment.
Fig. 2 is a functional block diagram of the home gateway, where the home gateway further includes: the DHCPServer module and the equipment management module; wherein,
the DHCP Server module is used for receiving and sending messages when equipment accessed in a DHCP mode interacts with the home gateway, analyzing information carried by an Option60 field in the received messages and reporting the analyzed plaintext information (the information analyzed by the Option60 field) to the equipment management module;
when a down-hanging device (such as a client) on the LAN side accesses the LAN by using a DHCP method, the client and the server interact with each other through some messages, including:
client- > server: a DISCOVER message;
server- > client: OFFER message;
client- > server: REQUEST message;
server- > client: ACK message;
the DISCOVER message initiated by the client carries an Option60 field, and the Option60 field generally includes information such as vendor information and device type. Therefore, after receiving the DISCOVER message, the DHCP Server module may analyze the information of the Option60 field carried by the DISCOVER message.
The equipment management module is used for automatically expanding and configuring the service application according to the service strategy information pre-configured by the equipment information after receiving the equipment information reported by the DHCP Server module;
after the device management module receives the device information reported by the DHCP Server module, the device management module records the online state of the device, maintains the reported device information and the state of the device, and automatically configures the service according to the service policy information.
The service policy information may be recorded in a service policy table, maintained by the device management module, and includes at least one service development policy of the device, such as binding connection, QoS configuration, and mapping configuration of an add port, and the service policy information may be generally configured by an operator.
Example two:
when the system has requirements on the security and the legality of the equipment accessed to the home gateway, the system also comprises an authentication server which is used for judging whether the equipment information reported by the home gateway is legal or safe and returning the judged result to the home gateway.
When the authentication server judges, the judgment can be carried out by taking the security policy information pre-configured by the authentication server as a basis; and when the authentication server receives the on-line of a certain device reported by the home gateway and the device information carried in the report, judging whether the device to be accessed is legal or safe according to the security policy information, and returning the authentication result to the home gateway.
The security policy information may be recorded in a security policy table, maintained by the authentication server, and used as a basis for determining whether various devices are legal or secure, and generally configured by an operator.
At this time, after receiving the device information reported by the DHCP Server module, the home gateway device management module is further configured to report the received device information to the authentication Server, and receive a result returned after authentication by the authentication Server, and if the result authenticated by the authentication Server is that the device is legal or safe, automatically configure the service application according to the service policy table; and if the authentication result of the authentication server is that the equipment is illegal or unsafe, the service application is not configured.
In another embodiment, some firewall application configurations, such as automatic port mapping addition, may also be performed automatically after the device comes online.
The present embodiment is a method for implementing a service configuration based on a DHCP Server mechanism by using the systems described in the first and second embodiments, where a Set Top Box (STB) manufactured by Z manufacturer is taken as an example of a device accessing a home gateway in the present embodiment, and a system networking diagram of the device is shown in fig. 1;
the service to be realized is that after the STB is accessed into the network, the LAN side interface accessed by the STB is automatically bound and connected with the WAN of the IPTV, and the method comprises the following steps:
step one, the STB accesses a LAN side interface of a home gateway in a DHCP mode;
step two, after receiving a DISCOVER message initiated by the STB, the home gateway analyzes and acquires the information carried by the Option60 field, and analyzes the equipment information of the STB, including manufacturer information, equipment type and the like; such as:
manufacturer information: z manufacturer
The device type: STB
Step three, the DHCP Server reports the equipment information of the STB to the authentication Server;
step four, after obtaining the device information reported by the home gateway, the authentication server searches a local security policy table and returns a legal or secure result obtained by authentication to the home gateway; or returning an illegal or unsafe result to the home gateway, wherein the step is optional;
after the home gateway obtains the authentication result returned by the authentication server, if the home gateway belongs to legal or safe equipment, inquiring a local service policy table, configuring according to service policy information, and automatically completing the binding connection between the LAN side interface accessed by the STB and the WAN of the IPTV; if the returned result is an illegal or unsecured device, no binding configuration is performed.
In the above steps, if authentication is not required, after the home gateway obtains the device information in the second step, binding configuration is directly performed according to the device information and the local service policy table, and the binding connection between the LAN side interface accessed by the STB and the WAN of the IPTV is automatically completed.
Through the process, the expansion of the service application of the home gateway equipment based on the DHCP Server mechanism is completed.
In the method, no matter whether the home gateway is in a routing mode or a bridging mode, the DHCPServer analyzes and acquires the information of the Option60 field in the DISCOVER message, and the DHCP Server does not have a simple and single function for allocating an IP any more, and can also analyze and acquire the device information of the LAN-side access home gateway device, and automatically complete the configuration of the service according to the device information and the service policy information.
An application example is described below with reference to the flow chart of the service configuration based on the DHCP Server mechanism of fig. 3, taking an internet protocol Phone (IP Phone) as an example; the service to be provided by the application example is that after the IPPhone is accessed, the forwarding priority is automatically raised for the voice media stream. The method comprises the following steps:
step A, the IP Phone accesses the LAN side interface of the home gateway in a DHCP mode;
step B, a DHCP Server module arranged in the home gateway acquires equipment information of the IP Phone through information of an Option60 field carried in a DISCOVER message initiated by the IP Phone, wherein the information comprises manufacturer information, equipment type and the like;
step C, the DHCP Server module reports the analyzed equipment information to the equipment management module;
d, the equipment management module reports the equipment information to the authentication server;
step E, after receiving the device information, the authentication server searches a local security policy table and returns the result of judging whether the IP Phone is legal or safe to the home gateway;
step F, after the device management module of the home gateway receives the result returned by the authentication server, if the IP Phone belongs to legal equipment, searching a local service policy table, automatically completing the configuration of adding QoS, and configuring a queue of entering real-time transport protocol (RTP) messages of a LAN port accessed to the IP Phone as the highest priority; if the device is illegal, the configuration of the service is not provided.
The invention has the following advantages: manufacturer information, equipment types and the like are identified through the Option60 field information, and the configuration of related business development is automatically completed; by sending the relevant information to the authentication server for authentication, the safety and reliability of management are increased. Meanwhile, the related service expansion is more flexible, for example, the port mapping configuration can be automatically added after the device is on-line, and the like.
The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.
Claims (10)
1. Service configuration based on Dynamic Host Configuration Protocol (DHCP) server mechanism
A system, characterized by: the system comprises a home gateway and a device for accessing the home gateway; wherein,
the equipment accessed to the home gateway is used for accessing the home gateway in a DHCP mode and reporting the equipment information of the equipment;
the home gateway comprises a DHCP server side module and an equipment management module, wherein,
the DHCP server side module is used for acquiring the equipment information reported by the equipment after the equipment is accessed to the home gateway and reporting the equipment information to the equipment management module;
and the equipment management module is used for automatically configuring the service according to the service strategy information configured in advance and the equipment information acquired by the DHCP server side module.
2. The system of claim 1, wherein the system further comprises an authentication server;
the authentication server is used for authenticating according to the equipment information reported by the home gateway and returning an authentication result to the home gateway;
and the equipment management module is also used for reporting the equipment information to the authentication server and receiving an authentication result after acquiring the equipment information, and if the equipment is legal or safe, the equipment management module automatically configures the service according to the equipment information and the service strategy information.
3. The system of claim 2, wherein:
if the set top box is legal or safe, the equipment management module automatically binds and connects a local area network side interface accessed by the STB with a wide area network of the network television when the equipment management module is configured according to the service strategy information; or,
the equipment is a network telephone, if the network telephone is legal or safe, the equipment management module automatically completes the configuration of adding the service quality according to the service strategy information and configures the queue of the real-time transmission protocol message entering of the local area network side interface of the network telephone as the highest priority.
4. A system as claimed in claim 1, 2 or 3, wherein: the device information includes one or more of vendor information and device type.
5. A system as claimed in claim 1, 2 or 3, wherein:
and when the equipment is accessed to the home gateway, carrying equipment information in an Option60 field in a DISCOVER message.
6. A method for service configuration based on a Dynamic Host Configuration Protocol (DHCP) server-side mechanism comprises the following steps:
the equipment accesses the home gateway in a DHCP mode and reports the equipment information of the equipment;
and the home gateway acquires the equipment information reported by the equipment and automatically configures the service by using the equipment information and the service strategy information configured in advance.
7. The method of claim 6, wherein: after the home gateway acquires the device information, the method further comprises the following steps:
the home gateway reports the equipment information to an authentication server;
the authentication server authenticates according to the equipment information reported by the home gateway and returns an authentication result to the home gateway;
and after receiving the authentication result, if the equipment is legal or safe, the home gateway automatically configures the service according to the equipment information and the service strategy information.
8. The method of claim 7, wherein:
if the set top box is legal or safe, the home gateway automatically binds and connects a local area network side interface accessed by the set top box with a wide area network of the network television when the home gateway is configured according to the service strategy information; or,
the equipment is a network telephone, if the network telephone is legal or safe, the home gateway automatically completes the configuration of adding the service quality according to the service strategy information, and configures the queue of the real-time transmission protocol message entering of the local area network side interface of the network telephone as the highest priority.
9. The method of claim 6, 7 or 8, wherein: the device information includes one or more of vendor information and device type.
10. The method of claim 6, 7 or 8, wherein:
and when the equipment is accessed to the home gateway, carrying equipment information in an Option60 field in a DISCOVER message.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2009101591648A CN101610177A (en) | 2009-07-17 | 2009-07-17 | System and method based on the business configuration of DHCP Server mechanism |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2009101591648A CN101610177A (en) | 2009-07-17 | 2009-07-17 | System and method based on the business configuration of DHCP Server mechanism |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101610177A true CN101610177A (en) | 2009-12-23 |
Family
ID=41483775
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2009101591648A Pending CN101610177A (en) | 2009-07-17 | 2009-07-17 | System and method based on the business configuration of DHCP Server mechanism |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101610177A (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102148879A (en) * | 2010-10-22 | 2011-08-10 | 华为技术有限公司 | Port mapping method and device and communication system |
| CN102394950A (en) * | 2011-12-23 | 2012-03-28 | 中国电信股份有限公司 | Method and system for IP address distribution of network security terminal under home gateway |
| CN102480416A (en) * | 2010-11-26 | 2012-05-30 | 中兴通讯股份有限公司 | data service processing method and device |
| CN102957604A (en) * | 2011-08-24 | 2013-03-06 | 中国电信股份有限公司 | Service route configuration method and system, home gateway and terminal |
| CN102984015A (en) * | 2012-12-21 | 2013-03-20 | 太仓市同维电子有限公司 | Method of gateway equipment for automatically identifying access equipment type and optimizing service |
| CN103634171A (en) * | 2012-08-24 | 2014-03-12 | 中兴通讯股份有限公司 | Dynamic configuration method, device and system |
| CN103873603A (en) * | 2014-02-24 | 2014-06-18 | 深圳市共进电子股份有限公司 | Method of obtaining matching network equipment parameter based on DHCP (Dynamic host configuration protocol) |
| CN107809379A (en) * | 2017-11-20 | 2018-03-16 | 上海市共进通信技术有限公司 | The method that gateway automatically configures access device service |
| CN110278238A (en) * | 2018-03-14 | 2019-09-24 | 许昌许继软件技术有限公司 | A deployment method for substation secondary equipment, monitoring background and network address |
| CN110519403A (en) * | 2019-07-30 | 2019-11-29 | 烽火通信科技股份有限公司 | A kind of gateway down-hanging device management method and system |
-
2009
- 2009-07-17 CN CNA2009101591648A patent/CN101610177A/en active Pending
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102148879A (en) * | 2010-10-22 | 2011-08-10 | 华为技术有限公司 | Port mapping method and device and communication system |
| CN102480416A (en) * | 2010-11-26 | 2012-05-30 | 中兴通讯股份有限公司 | data service processing method and device |
| CN102957604A (en) * | 2011-08-24 | 2013-03-06 | 中国电信股份有限公司 | Service route configuration method and system, home gateway and terminal |
| CN102957604B (en) * | 2011-08-24 | 2015-09-16 | 中国电信股份有限公司 | Business method for configuring route, system, home gateway and terminal |
| CN102394950A (en) * | 2011-12-23 | 2012-03-28 | 中国电信股份有限公司 | Method and system for IP address distribution of network security terminal under home gateway |
| CN103634171A (en) * | 2012-08-24 | 2014-03-12 | 中兴通讯股份有限公司 | Dynamic configuration method, device and system |
| CN102984015A (en) * | 2012-12-21 | 2013-03-20 | 太仓市同维电子有限公司 | Method of gateway equipment for automatically identifying access equipment type and optimizing service |
| CN102984015B (en) * | 2012-12-21 | 2015-08-26 | 太仓市同维电子有限公司 | A kind of gateway device identifies the method for access device type and Optimized Service automatically |
| CN103873603A (en) * | 2014-02-24 | 2014-06-18 | 深圳市共进电子股份有限公司 | Method of obtaining matching network equipment parameter based on DHCP (Dynamic host configuration protocol) |
| CN107809379A (en) * | 2017-11-20 | 2018-03-16 | 上海市共进通信技术有限公司 | The method that gateway automatically configures access device service |
| CN110278238A (en) * | 2018-03-14 | 2019-09-24 | 许昌许继软件技术有限公司 | A deployment method for substation secondary equipment, monitoring background and network address |
| CN110519403A (en) * | 2019-07-30 | 2019-11-29 | 烽火通信科技股份有限公司 | A kind of gateway down-hanging device management method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101610177A (en) | System and method based on the business configuration of DHCP Server mechanism | |
| CN101141418B (en) | Strategy based family network service identifying system and method | |
| KR100933365B1 (en) | Resource Management System and Method in Access Network | |
| US9369448B2 (en) | Network security parameter generation and distribution | |
| US20060117174A1 (en) | Method of auto-configuration and auto-prioritizing for wireless security domain | |
| KR100879148B1 (en) | IPTV service certification and service quality control method and system | |
| CN101146047B (en) | A method, system and gateway for controlling quantity of network access terminal under routing mode | |
| US20040106403A1 (en) | Method and system for QoS control using wireless LAN network, its base station, and terminal | |
| CN102136938B (en) | Method and device for providing user information for carried grade network address translation (CGN) equipment | |
| EP1936883B1 (en) | Service provisioning method and system thereof | |
| JP2013534768A (en) | Telecommunication network and method and system for efficient use of connection between telecommunication network and customer premises equipment | |
| CN102571729A (en) | Internet protocol version (IPV)6 network access authentication method, device and system | |
| CN102215155B (en) | The resource acceptance control method of a kind of home network and system | |
| KR101358775B1 (en) | User access method, system, and access server, access device | |
| KR101426721B1 (en) | Method and equipment for authenticating subscriber terminal | |
| CN111194035B (en) | Network connection method, device and storage medium | |
| US8395477B2 (en) | Geographic based remote control | |
| CN104272781A (en) | Method and system for accessing service/data of a first network from a second network for service/data access via the second network | |
| KR20110120651A (en) | Multi-Service Automatic Identification Method and Method of Providing Multi-Service Using the Same | |
| CN102244620A (en) | Method and system for determining association relationship between gateway and equipment | |
| US8305920B2 (en) | Method, system and terminal for determining QoS level | |
| CN101635632A (en) | Method, system and device for authentication and configuration | |
| CN101453396B (en) | Method and system for multiple service provider device management | |
| KR101790192B1 (en) | Method and device for application management | |
| CN101415032B (en) | Three-layer private wire access method, apparatus and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20091223 |