[go: up one dir, main page]

CN113923110A - MAP-E tunnel configuration management method, equipment, server and storage medium - Google Patents

MAP-E tunnel configuration management method, equipment, server and storage medium Download PDF

Info

Publication number
CN113923110A
CN113923110A CN202010574064.8A CN202010574064A CN113923110A CN 113923110 A CN113923110 A CN 113923110A CN 202010574064 A CN202010574064 A CN 202010574064A CN 113923110 A CN113923110 A CN 113923110A
Authority
CN
China
Prior art keywords
map
tunnel
configuration
cpe
http request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202010574064.8A
Other languages
Chinese (zh)
Other versions
CN113923110B (en
Inventor
魏志峰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN202010574064.8A priority Critical patent/CN113923110B/en
Priority to PCT/CN2021/100401 priority patent/WO2021259110A1/en
Publication of CN113923110A publication Critical patent/CN113923110A/en
Application granted granted Critical
Publication of CN113923110B publication Critical patent/CN113923110B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/82Miscellaneous aspects
    • H04L47/825Involving tunnels, e.g. MPLS
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The application discloses a configuration management method, equipment, a server and a storage medium of a MAP-E tunnel. The MAP-E tunnel configuration management method comprises the following steps: sending a first HTTP request message carrying MAP-E tunnel configuration parameter request information to a rule parameter server; receiving a first response message sent by a rule parameter server according to the MAP-E tunnel configuration parameter request information in the first HTTP request message, wherein the first response message comprises MAP-E tunnel configuration parameters; and configuring the MAP-E tunnel based on the MAP-E tunnel configuration parameters in the first response message. In the embodiment of the application, a rule parameter server is arranged in a network, and the MAP-E tunnel configuration parameters are acquired from the rule parameter server in an HTTP message mode, so that the normal starting and operation of the MAP-E tunnel can be ensured under the condition that the upper-layer equipment does not have the function of issuing the MAP-E tunnel configuration parameters in a DHCPv6 mode due to self reasons.

Description

MAP-E tunnel configuration management method, equipment, server and storage medium
Technical Field
The embodiment of the application relates to, but not limited to, the field of communication technologies, and in particular, to a MAP-E tunnel configuration management method, a user front-end device, a rule parameter server, and a computer-readable storage medium.
Background
Since the internet is continuously and rapidly developed, IPv4 addresses are exhausted, and IPv6 needs to be replaced to completely solve the problem, currently, in various countries and regions in the world, transition from IPv4 to IPv6 is steadily advanced, in each transition scheme, a DS-Lite (Dual Stack-Lite) tunnel scheme gradually evolves to a MAP-E (Mapping of Address and Port using Encapsulation, stateless Mapping and Dual Encapsulation technology) scheme, and the MAP-E scheme has advantages, and overcomes some defects of the DS-Lite tunnel: for example, the DS-Lite tunneling scheme only completes tunnel packet encapsulation on a CPE (Customer Premise Equipment), but does not perform NAT (Network Address Translation) and port Translation, and completes NAT and port Translation on an upper-layer office device (such as a Carrier-Grade Network device, e.g., CGN (Carrier-Grade NAT, Carrier-Grade Network Address Translation) device, a dual stack server, etc.), so that it needs to centrally manage and maintain message information of each flow, including an Address and a port, and the upper-layer office device has a large processing pressure and a high device investment and maintenance cost. As an evolution scheme of the DS-Lite tunnel, the MAP-E tunnel scheme realizes the completion of NAT and port conversion on CPE, and then tunnel message encapsulation is carried out, thereby reducing the processing pressure of upper-layer local side equipment.
Usually, a CPE interactively completes acquisition of MAP-E tunnel Configuration parameters through an Ipv6 Dynamic Host Configuration Protocol for Ipv6, DHCPv6, thereby establishing an Ipv4 in Ipv6 tunnel of a MAP-E, and implementing message transceiving processing for a Host connected to the CPE to access an Ipv4 network service, whereas when a network device cannot perform DHCPv6 interactive parameter acquisition, the MAP-E tunnel cannot be normally established, and the MAP-E tunnel cannot normally operate, thereby failing to implement network service access of the Ipv4 to the Ipv4 network through the Ipv6 network via the MAP-E tunnel.
Disclosure of Invention
The following is a summary of the subject matter described in detail herein. This summary is not intended to limit the scope of the claims.
The embodiment of the application provides a configuration management method of a MAP-E tunnel, user front-end equipment, a rule parameter server and a computer readable storage medium, which can ensure the normal starting and operation of the MAP-E tunnel under the condition that upper-layer equipment does not have the function of issuing the configuration parameters of the MAP-E tunnel in a DHCPv6 mode due to self reasons.
In a first aspect, an embodiment of the present application provides a method for managing a configuration of a MAP-E tunnel, which is applied to a customer premise equipment CPE, and includes:
sending a first HTTP request message carrying MAP-E tunnel configuration parameter request information to a rule parameter server;
receiving a first response message sent by a rule parameter server according to the MAP-E tunnel configuration parameter request information in the first HTTP request message, wherein the first response message comprises MAP-E tunnel configuration parameters;
and configuring the MAP-E tunnel based on the MAP-E tunnel configuration parameters in the first response message.
In a second aspect, an embodiment of the present application further provides a method for managing a MAP-E tunnel configuration, which is applied to a rule parameter server, and includes:
receiving a first HTTP request message sent by a CPE, wherein the first HTTP request message carries MAP-E tunnel configuration parameter request information;
and sending a first response message carrying MAP-E tunnel configuration parameters to CPE according to the MAP-E tunnel configuration parameter request information in the first HTTP request message, so that the CPE configures the MAP-E tunnel according to the MAP-E tunnel configuration parameters in the first response message.
In a third aspect, an embodiment of the present application further provides a user front-end device, including a memory, a processor, and a computer program stored on the memory and executable on the processor, where the processor executes the method for configuration management of a MAP-E tunnel according to the first aspect through the computer program.
In a fourth aspect, an embodiment of the present application further provides a rule parameter server, which includes a memory, a processor, and a computer program stored on the memory and executable on the processor, where the processor executes the method for configuration management of a MAP-E tunnel according to the second aspect.
In a fifth aspect, embodiments of the present application further provide a computer-readable storage medium storing computer-executable instructions for performing the above method for managing configuration of a MAP-E tunnel.
The embodiment of the application comprises the following steps: sending a first HTTP request message carrying MAP-E tunnel configuration parameter request information to a rule parameter server; receiving a first response message sent by the rule parameter server according to MAP-E tunnel configuration parameter request information in the first HTTP request message, wherein the first response message comprises MAP-E tunnel configuration parameters; and configuring the MAP-E tunnel based on the MAP-E tunnel configuration parameters in the first response message. According to the scheme provided by the embodiment of the application, a Rule Server (Rule parameter Server) is arranged in a network, when an MAP-E tunnel needs to be established, MAP-E tunnel configuration parameter request information is sent to the Rule parameter Server in an HTTP message mode, and after a response message of the Rule parameter Server is received, the MAP-E tunnel is established according to MAP-E tunnel configuration parameters carried in the response message, so that the normal starting and operation of the MAP-E tunnel can be ensured under the condition that upper-layer equipment does not have the function of issuing the MAP-E tunnel configuration parameters in a DHCPv6 mode due to the self-reason.
Additional features and advantages of the application will be set forth in the description which follows, and in part will be obvious from the description, or may be learned by the practice of the application. The objectives and other advantages of the application may be realized and attained by the structure particularly pointed out in the written description and claims hereof as well as the appended drawings.
Drawings
The accompanying drawings are included to provide a further understanding of the claimed subject matter and are incorporated in and constitute a part of this specification, illustrate embodiments of the subject matter and together with the description serve to explain the principles of the subject matter and not to limit the subject matter.
Fig. 1 is a schematic diagram of a network topology for performing a configuration management method for a MAP-E tunnel according to an embodiment of the present application;
FIG. 2 is a flowchart of a method for managing a configuration of a MAP-E tunnel according to an embodiment of the present application;
fig. 3 is a flowchart of sending an HTTP request message according to an embodiment of the present application;
FIG. 4 is a flow diagram of configuring a MAP-E tunnel according to an embodiment of the present application;
FIG. 5 is a flowchart of a method for managing a configuration of a MAP-E tunnel according to another embodiment of the present application;
FIG. 6 is a flowchart of a method for managing a configuration of a MAP-E tunnel according to another embodiment of the present application;
FIG. 7 is a flowchart of a method for configuration management of a MAP-E tunnel according to another embodiment of the present application;
fig. 8 is a flowchart of receiving an HTTP request message according to an embodiment of the present application;
FIG. 9 is a flow diagram of overall network processing provided by one embodiment of the present application;
FIG. 10 is a flow diagram of starting/stopping a MAP-E tunnel according to an embodiment of the present application;
FIG. 11 is a flowchart for automatically acquiring MAP-E tunnel configuration parameters according to an embodiment of the present application;
fig. 12 is a flowchart for acquiring and maintaining MAP-E tunnel configuration parameters in an HTTP manner according to an embodiment of the present application.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the present application is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.
It should be noted that although functional blocks are partitioned in a schematic diagram of an apparatus and a logical order is shown in a flowchart, in some cases, the steps shown or described may be performed in a different order than the partitioning of blocks in the apparatus or the order in the flowchart. The terms first, second and the like in the description and in the claims, and the drawings described above, are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order.
The embodiment of the application provides a configuration management method of a MAP-E tunnel, a user front-end device, a Rule parameter Server and a computer readable storage medium, by laying out a Rule Server in a network, the rule parameter server stores MAP-E tunnel configuration parameters, when a MAP-E tunnel needs to be established, sending MAP-E tunnel configuration parameter request information to the rule parameter server by adopting an HTTP message mode, and after receiving a response message of the rule parameter server, establishing a MAP-E tunnel according to the MAP-E tunnel configuration parameters carried in the response message, therefore, the normal starting and operation of the MAP-E tunnel can be ensured under the condition that the upper-layer equipment does not have the function of issuing the MAP-E tunnel configuration parameters in the DHCPv6 mode due to self reasons.
The embodiments of the present application will be further explained with reference to the drawings.
As shown in fig. 1, fig. 1 is a schematic diagram of a network topology for performing a configuration management method of a MAP-E tunnel according to an embodiment of the present application. In the example of fig. 1, the network topology includes a customer premises equipment CPE, a customer equipment such as a PC (personal computer) connected to one end of the CPE, an upper layer BRAS (Broadband Remote Access Server) device connected to the other end of the CPE, a BR (edge router, i.e., MAP-E tunnel Server), a DNS resolution Server (DNS Server), and a Rule parameter Server (Rule Server). The BRAS equipment is responsible for distributing an IPv6 address and a gateway to the CPE, the rule parameter server runs parameter issuing server software, and is responsible for authenticating connection requests (authentication) of the CPEs and responding HTTP request messages sent by the CPEs, and the response messages carry MAP-E tunnel configuration parameters. After the CPE receives the reply message and decrypts and parses the parameters, a MAP-E tunnel between the two devices, the "CPE-BR", is created as indicated by the arrow in the figure.
The network topology and the application scenario described in the embodiment of the present application are for more clearly illustrating the technical solution of the embodiment of the present application, and do not form a limitation on the technical solution provided in the embodiment of the present application, and it is known by those skilled in the art that the technical solution provided in the embodiment of the present application is also applicable to similar technical problems along with the evolution of the network topology and the appearance of a new application scenario.
Those skilled in the art will appreciate that the various components and topologies shown in fig. 1 are not meant to limit embodiments of the application and may include more or fewer components than those shown, or some components may be combined, or a different arrangement of components.
Based on the network topology structure, various embodiments of the MAP-E tunnel configuration management method of the present application are provided.
As shown in fig. 2, fig. 2 is a flowchart of a MAP-E tunnel configuration management method according to an embodiment of the present application, where the MAP-E tunnel configuration management method includes, but is not limited to, step S100, step S200, and step S300.
Step S100, a first HTTP request message carrying MAP-E tunnel configuration parameter request information is sent to a rule parameter server.
In one embodiment, referring to fig. 1, a CPE is first started to obtain information of an address, a gateway, a DNS Server, etc. of an IPv6 wide area network connection, a DHCPv6 (stateful address auto-configuration) or SLAAC (stateless address auto-configuration) request is initiated to a BRAS device to obtain parameters of the wide area network connection, the BRAS device receives the request, responds to the request and issues the parameters, and the CPE starts the wide area network connection according to the parameters, so that a network access channel of IPv6 is established. After establishing the network access channel of the IPv6, sending a notification to a MAP-E module in the CPE so that the MAP-E module sends an HTTP request message carrying MAP-E tunnel configuration parameter request information to a rule parameter server.
In one embodiment, the data in the HTTP request message uses a custom data format, which can be flexibly adjusted and redefined according to actual needs.
Step S200, receiving a first response message sent by the rule parameter server according to the MAP-E tunnel configuration parameter request information in the first HTTP request message, wherein the first response message comprises the MAP-E tunnel configuration parameters.
In one embodiment, referring to fig. 1, the present embodiment configures a rule parameter server in a network, where MAP-E tunnel configuration parameters are stored, and includes: (1) BR Address: IPv6 address of MAP-E tunnel opposite end; (2) IPv6 prefix: an IPv6 prefix; (3) IPv6 prefix length: IPv6 prefix length; (4) IPv4 prefix: an IPv4 prefix; (5) IPv4 prefix length: IPv4 prefix length; (6) EA-bits-length: the length of the Embedded-Address (EA) bit; (7) PSID: PORT-SET; (8) PSID Offset: PSID offset; (9) PSID length: the PSID length. In one embodiment, the parameters (2) to (9) may be in multiple sets according to actual needs.
In one embodiment, the data in the response message uses a custom data format, which can be flexibly adjusted and redefined according to actual needs.
And step S300, configuring the MAP-E tunnel based on the MAP-E tunnel configuration parameters in the first response message.
At present, a CPE generally completes the acquisition of MAP-E tunnel configuration parameters through interaction of a dynamic HOST configuration protocol DHCPv6, so that an IPv4 in IPv6 tunnel of the MAP-E is established, the message receiving and sending processing of accessing IPv4 network services by a HOST HOST connected with the CPE in a hanging mode is realized, when network equipment cannot complete the acquisition of the parameters through interaction of the DHCPv6, the MAP-E tunnel cannot be normally established, the MAP-E tunnel also normally operates, and therefore the access of the IPv4 to the IPv4 network services through an IPv6 network of the MAP-E tunnel cannot be realized. To solve this problem, in the embodiment of the present application, the above steps S100, S200, and S300 are adopted, a Rule Server (Rule parameter Server) is deployed in the network, MAP-E tunnel configuration parameters are stored in the Rule parameter Server, an HTTP message is used to send MAP-E tunnel configuration parameter request information to the Rule parameter Server, and after a response message of the Rule parameter Server is received, a MAP-E tunnel is established according to the MAP-E tunnel configuration parameters carried in the response message, so that the MAP-E tunnel can be ensured to be normally started and operated when the upper layer device does not have a function of issuing MAP-E tunnel configuration parameters in a DHCPv6 manner due to its own reason.
In one embodiment, before sending the first HTTP request message to the rule parameter server, the method further comprises: sending a second HTTP request message to the rule parameter server, wherein the second HTTP request message carries authentication request information; and receiving a second response message sent by the rule parameter server according to the authentication request information in the second HTTP request message, wherein the second response message carries information about whether the authentication is successful or not.
In the embodiment of the application, under the condition of acquiring the MAP-E tunnel configuration parameters by adopting an HTTP message interaction mode, firstly, the subsequent steps can be carried out only when the authentication is successful by carrying out authentication interaction messages to the rule parameter server, so that other equipment in the network is prevented from illegally acquiring the rule parameter server.
In one embodiment, referring to fig. 3, step S100 includes the steps of:
step S101, encrypting MAP-E tunnel configuration parameter request information, and establishing a first HTTP request message according to the encrypted MAP-E tunnel configuration parameter request information;
step S102, a first HTTP request message is sent to a rule parameter server.
Different from the prior method of using plaintext to perform some parameter data interaction, the message in the embodiment of the application is sent after being encrypted, so that the possibility of being falsified or stolen in the message sending process is reduced, and the safety and reliability of data transmission are improved.
In one embodiment, the data in the HTTP request message is encrypted using public-private key encryption. Specifically, at the CPE end, data in the HTTP request message is encrypted by a private key allocated to the CPE, and the HTTP request message after the internal data is encrypted is sent to the rule parameter server, and the rule parameter server decrypts the data in the HTTP request message by using a public key matched with the private key.
It should be understood that the above encryption manner is only one embodiment for implementing the method of the present application, and the embodiments of the present application may also include other encryption manners, including but not limited to symmetric encryption, asymmetric encryption, hash algorithm, etc.
In one embodiment, referring to fig. 4, step S300 includes the steps of:
s301, decrypting the internal data of the first response message to obtain a MAP-E tunnel configuration parameter;
and step S302, configuring the MAP-E tunnel according to the MAP-E tunnel configuration parameters.
Different from the prior method of using plaintext to perform some parameter data interaction, the message in the embodiment of the application is sent after being encrypted, so that the possibility of being falsified or stolen in the message sending process is reduced, and the safety and reliability of data transmission are improved.
In one embodiment, the data in the HTTP response message is encrypted using public-private key encryption. Specifically, at the rule parameter server side, data in the HTTP response message is encrypted by a private key allocated to the rule parameter server, and the HTTP response message after internal data encryption is sent to the CPE, and the CPE decrypts the data in the HTTP response message by using a public key matched with the private key, thereby obtaining the MAP-E tunnel configuration parameters.
It should be understood that the above encryption manner is only one embodiment for implementing the method of the present application, and the embodiments of the present application may also include other encryption manners, including but not limited to symmetric encryption, asymmetric encryption, hash algorithm, etc.
In one embodiment, step S302 may include:
configuring the MAP-E tunnel with the MAP-E tunnel configuration parameters when the MAP-E tunnel configuration parameters are determined to be valid and are determined to match current network connection parameters.
The embodiment of the application establishes the MAP-E tunnel by checking whether the MAP-E tunnel configuration parameters are effective and successfully matched with the current network connection parameters (for example, information such as prefixes corresponding to the currently running wide area network IPv6 connection) and when the MAP-E tunnel configuration parameters are determined to be effective and matched with the current network connection parameters, thereby greatly increasing the robustness of the method.
In another embodiment, step S302 may include:
and when the MAP-E tunnel configuration parameters are determined to be invalid and/or determined not to be matched with the current network connection parameters, the first HTTP request message is sent to the rule parameter server again after the first preset time length is reached.
In the embodiment of the present application, when the MAP-E tunnel configuration parameter is determined to be invalid and/or determined to be not matched with the current network connection parameter, the obtained MAP-E tunnel configuration parameter is considered to be unavailable and cannot be used for creating a MAP-E tunnel, at this time, a first preset time duration (for example, 10 minutes) is set, and a process of obtaining the MAP-E tunnel configuration parameter from the rule parameter server is restarted after the first preset time duration is reached, so that when the MAP-E tunnel configuration parameter in the rule parameter server is adjusted and changed, the CPE may also adjust and update in time.
It should be understood that the first preset time period may be modified according to specific situations, so as to enable the MAP-E tunnel to operate better and the parameters to be updated more timely.
In one embodiment, referring to fig. 5, in addition to the above step S100, step S200, and step S300, the MAP-E tunnel configuration management method of the embodiment of the present application may further include the following steps:
and step S400, updating the MAP-E tunnel configuration parameters to a database of the CPE.
In one embodiment, after the MAP-E tunnel configuration parameters are successfully acquired from the rule parameter server, the MAP-E tunnel configuration parameters are compared with current MAP-E tunnel configuration parameters in a database of the CPE, whether there is an update change is determined, if there is an update change, the current MAP-E tunnel configuration parameters in the database of the CPE are replaced with the acquired MAP-E tunnel configuration parameters, otherwise, the current MAP-E tunnel configuration parameters in the database of the CPE remain unchanged. In another embodiment, if the MAP-E tunnel is configured for the first time, the acquired MAP-E tunnel configuration parameters are directly saved in the data of the CPE.
In the embodiment of the present application, through the step S400, when the MAP-E tunnel configuration parameter in the rule parameter server is adjusted and changed, the CPE may also adjust and update in time.
In one embodiment, referring to fig. 6, alternatively, the MAP-E tunnel configuration management method of the embodiment of the present application may further include the following steps:
step S500, when the first response message sent by the rule parameter server is not received in the second preset time, obtaining the MAP-E tunnel configuration parameters from the database of the CPE;
in step S600, when the MAP-E tunnel configuration parameters obtained from the database of the CPE are determined to be valid and are determined to match the current network connection parameters, the MAP-E tunnel is configured by the MAP-E tunnel configuration parameters.
When the response message of the rule parameter server cannot be received within a specified time (for example, 10 minutes) due to external factors such as network conditions, the MAP-E tunnel configuration parameters stored last time are acquired from the CPE database, so that the MAP-E tunnel can be established in time.
It should be understood that the second preset time period may be modified according to specific situations, so as to enable the MAP-E tunnel to operate better and the parameters to be updated more timely.
In an embodiment, with continuing reference to fig. 6, the MAP-E tunnel configuration management method of the embodiment of the present application may further include the following steps:
step S601, when the MAP-E tunnel configuration parameter obtained from the database of the CPE is determined to be invalid and/or determined to be not matched with the current network connection parameter, the first HTTP request message is sent to the rule parameter server again after the third preset time length is reached.
In this embodiment of the present application, when the MAP-E tunnel configuration parameter is determined to be invalid and/or determined to be not matched with the current network connection parameter, the obtained MAP-E tunnel configuration parameter is considered to be unavailable and cannot be used for creating a MAP-E tunnel, at this time, a third preset time duration (for example, 10 minutes) is set, and a process of obtaining the MAP-E tunnel configuration parameter from the rule parameter server is restarted after the third preset time duration is reached, so that when the MAP-E tunnel configuration parameter in the rule parameter server is adjusted and changed, the CPE may also adjust and update in time.
It should be understood that the third preset time period may be modified according to specific situations, so as to enable the MAP-E tunnel to operate better and the parameters to be updated more timely.
In one embodiment, in step S100, after the network access channel of the IPv6 is established, a notification is sent to the MAP-E module in the CPE, so that the MAP-E module first sends a DHCPv6 request packet carrying MAP-E tunnel configuration parameter request information to the broadband remote access server BRAS, and when the DHCPv6 response packet sent by the BRAS is not received within a fourth preset time (for example, 10 minutes), the first HTTP request packet carrying the MAP-E tunnel configuration parameter request information is sent to the rule parameter server. By the method, the normal starting and operation of the MAP-E tunnel can be ensured under the condition that the upper-layer equipment does not have the function of issuing the MAP-E tunnel configuration parameters in the DHCPv6 mode due to self reasons.
It should be understood that the fourth preset time period may be modified according to specific situations, so as to enable the MAP-E tunnel to operate better and the parameters to be updated more timely.
In one embodiment, after the configuration of the MAP-E tunnel is completed and a fifth preset time period (e.g., 360 minutes) is reached, the first HTTP request message is re-sent to the rule parameter server.
It should be understood that the fifth preset time period may be modified according to specific situations, so as to enable the MAP-E tunnel to operate better and the parameters to be updated more timely.
In the embodiment of the application, the CPE firstly stores the MAP-E tunnel configuration parameters, and also provides a set of mechanism to ensure that the parameters trigger a re-request at regular time and judge the parameters, and if the parameters in the rule parameter server are adjusted and changed, the CPE can also adjust and update in time.
In addition, an embodiment of the present application further provides a method for managing a configuration of a MAP-E tunnel, as shown in fig. 7, fig. 7 is a flowchart of a method for managing a configuration of a MAP-E tunnel according to another embodiment of the present application, where the method for managing a configuration of a MAP-E tunnel includes, but is not limited to, step S700 and step S800.
Step S700, receiving a first HTTP request message sent by a CPE, wherein the first HTTP request message carries MAP-E tunnel configuration parameter request information;
in one embodiment, the data in the HTTP request message uses a custom data format, which can be flexibly adjusted and redefined according to actual needs.
Step S800, sending a first response message carrying the MAP-E tunnel configuration parameters to the CPE according to the MAP-E tunnel configuration parameter request information in the first HTTP request message, so that the CPE configures the MAP-E tunnel according to the MAP-E tunnel configuration parameters in the first response message.
In one embodiment, referring to fig. 1, the present embodiment configures a rule parameter server in a network, where MAP-E tunnel configuration parameters are stored, and includes: (1) BR Address: IPv6 address of MAP-E tunnel opposite end; (2) IPv6 prefix: IPv6 prefix); (3) IPv6 prefix length: IPv6 prefix length; (4) IPv4 prefix: an IPv4 prefix; (5) IPv4 prefix length: IPv4 prefix length; (6) EA-bits-length: the length of the Embedded-Address (EA) bit; (7) PSID: PORT-SET; (8) PSID Offset: PSID offset; (9) PSID length: the PSID length. In one embodiment, the parameters (2) - (9) can be in multiple sets according to actual needs.
In one embodiment, the data in the response message uses a custom data format, which can be flexibly adjusted and redefined according to actual needs.
At present, a CPE generally completes the acquisition of MAP-E tunnel configuration parameters through interaction of a dynamic HOST configuration protocol DHCPv6, so that an IPv4 in IPv6 tunnel of the MAP-E is established, the message receiving and sending processing of accessing IPv4 network services by a HOST HOST connected with the CPE in a hanging mode is realized, and under the condition that network equipment cannot complete the acquisition of the parameters through interaction of the DHCPv6, the MAP-E tunnel cannot be normally established, the MAP-E tunnel also normally operates, and therefore the access of IPv4 to the IPv4 network services through the IPv6 network crossed by the MAP-E tunnel cannot be realized. To solve this problem, in the embodiment of the present application, the above steps S700 and S800 are adopted, a Rule Server (Rule parameter Server) is arranged in the network, MAP-E tunnel configuration parameters are stored in the Rule parameter Server, MAP-E tunnel configuration parameter request information is sent to the Rule parameter Server in an HTTP message manner, and after a response message of the Rule parameter Server is received, a MAP-E tunnel is established according to the MAP-E tunnel configuration parameters carried in the response message, so that the MAP-E tunnel can be ensured to be normally started and operated under the condition that an upper layer device does not have a function of issuing MAP-E tunnel configuration parameters in a DHCPv6 manner due to its own reason.
In one embodiment, prior to receiving the first HTTP request message sent by the CPE, the method further comprises:
receiving a second HTTP request message sent by the CPE, wherein the second HTTP request message carries authentication request information; and sending a second response message to the CPE according to the authentication request information in the second HTTP request message, wherein the second response message carries information about whether the authentication is successful or not.
In the embodiment of the application, under the condition of acquiring the MAP-E tunnel configuration parameters by adopting an HTTP message interaction mode, firstly, the subsequent steps can be carried out only when the authentication is successful by carrying out authentication interaction messages to the rule parameter server, so that other equipment in the network is prevented from illegally acquiring the rule parameter server.
In one embodiment, referring to fig. 8, step S800 includes the steps of:
step S801, decrypting the internal data of the first HTTP request message to obtain MAP-E tunnel configuration parameter request information;
step S802, distributing MAP-E tunnel configuration parameters for CPE according to the MAP-E tunnel configuration parameter request information;
step S803, the MAP-E tunnel configuration parameters are encrypted, and a first response message is established according to the encrypted MAP-E tunnel configuration parameters;
step S804, sends the first response packet to the CPE.
Different from the prior method of using plaintext to perform some parameter data interaction, the message in the embodiment of the application is sent after being encrypted, so that the possibility of being falsified or stolen in the message sending process is reduced, and the safety and reliability of data transmission are improved.
In one embodiment, the data in the HTTP request message is encrypted using public-private key encryption. Specifically, at a CPE end, data in an HTTP request message is encrypted through a private key distributed to the CPE, the HTTP request message with encrypted internal data is sent to a rule parameter server, the rule parameter server decrypts the data in the HTTP request message by using a public key matched with the private key, MAP-E tunnel configuration parameters are distributed to the CPE according to the decrypted data, the data in a response message to be sent is encrypted by using the private key distributed to the rule parameter server and then sent to the CPE, and the CPE decrypts the data in the response message according to the public key matched with the private key, so that the MAP-E tunnel configuration parameters are obtained.
It should be understood that the above encryption manner is only one embodiment for implementing the method of the present application, and the embodiments of the present application may also include other encryption manners, including but not limited to symmetric encryption, asymmetric encryption, hash algorithm, etc.
With respect to the configuration management method of the MAP-E tunnel provided in the foregoing embodiment, the following detailed description is made with reference to fig. 9 to 12 by way of specific examples.
Example one:
with reference to fig. 9 and with continuing reference to fig. 1, fig. 9 is a flowchart of the overall network processing provided by an embodiment of the present application, including the overall flow of CPE tunneling and LAN-side PC-initiated Internet access, specifically:
in step S901, when the CPE is started, it first needs to obtain information such as an address, a gateway, a DNS Server, etc. of the IPv6 wan connection, and obtains wan connection parameters by initiating a DHCPv6 (stateful address autoconfiguration) or SLAAC (stateless address autoconfiguration) request to the BRAS device.
Step S902, BRAS equipment responds and issues parameters, CPE starts IPv6 wide area network connection, and CPE establishes IPv6 network access channel.
Step S903, after the IPv6 WAN of the CPE is started normally, a notification is sent to the MAP-E module, and then the MAP-E module sends a DHCPv6 message to acquire various parameters for configuring the MAP-E tunnel.
Step S904, receiving the DHCPv6 response message of the BRAS equipment, analyzing the DHCPv6 response message to obtain the MAP-E tunnel configuration parameters, creating and starting the MAP-E tunnel, and then directly entering the step S907.
Step S905, if the DHCPv6 response message of the BRAS device is not acquired in step S904, the HTTP mode is automatically re-enabled to acquire, and the HTTP request message is sent to the Rule Server.
Step S906, the Rule Server receives the request, responds, and sends a response message to the CPE.
Step S907, the CPE analyzes the received response message and creates a MAP-E tunnel, one end of the tunnel is the CPE, and the far end is the BR edge router, so that the MAP-E tunnel is created.
Step S908, the PC equipment initiates internet access, firstly carries out DNS domain name resolution, the DNS domain name resolution request is sent out an A recording request message of IPv4 by the PC, after reaching the CPE, the CPE carries out DNS proxy, and sends an IPv6 message to a DNS Server in the network through an IPv6 channel.
Step S909, DNS Server analyzes and replies, then the message returns 'A' record reply to PC in IPv4 message form through CPE.
Step S910, the PC device initiates access connection in TCP or UDP mode according to the analyzed IP address, and the sent IPv4 message is encapsulated in MAP-E tunnel after reaching the CPE, the encapsulation mode is: and after NAT (network address translation) is carried out on the IPv4 message, an IPv6 message header is added to form an IPv6 message, the encapsulated message is sent to a BR edge router from the tunnel, and the BR edge router decapsulates the message into an IPv4 message and sends the IPv4 message to a target server in the Internet network.
And step S911, the target server in the Internet responds, the message is encapsulated into an IPv6 message through the BR edge router and returns to the CPE through the tunnel, the CPE is then unpacked, and the IPv4 message is taken out and sent to the LAN side PC.
Step S910 and step S911 are repeated, that is, the bidirectional interaction of the messages is completed, and the Internet network access is successfully performed.
Example two:
referring to fig. 10 with continued reference to fig. 1, fig. 10 is a flowchart illustrating the start/stop of a MAP-E tunnel according to an embodiment of the present application.
The MAP-E tunnel starting mode comprises the following steps: when the power is powered on and started, after the CPE successfully establishes the IPv6 wide area network connection, the MAP-E module is informed to trigger the establishment of a MAP-E tunnel configuration flow, or a new MAP-E tunnel is configured through a configuration medium (WEB page or remote management), firstly, the acquisition of MAP-E tunnel parameters is triggered, and the CPE can automatically acquire the parameters by adopting a DHCPv6 mode or an HTTP script mode according to the network condition.
And after the MAP-E tunnel configuration parameters are obtained, the parameters are verified, if the parameters are normal, the MAP-E tunnel is established and configured to the kernel, so that the MAP-E tunnel operates normally.
The MAP-E tunnel offline mode comprises the following steps: the configuration medium (WEB page or remote management) deletes the established MAP-E tunnel, or goes off-line due to network abnormality, mainly the state abnormality of IPv6 wan connection, such as wan connection going off-line or being deleted, and the MAP-E tunnel going off-line flow is triggered when the CPE no longer has IPv6 wan access capability.
And (3) the MAP-E tunnel offline process: when the MAP-E tunnel is triggered to be off-line in any one of the two modes, the MAP-E is stopped, the MAP-E tunnel configuration parameters configured to the kernel are cleared, and the tunnel is destroyed and stops running.
Example three:
referring to fig. 11, with continuing reference to fig. 1, where fig. 11 is a flowchart illustrating automatic acquisition of MAP-E tunnel configuration parameters according to an embodiment of the present application, specifically including the following steps:
step S1101, starting a MAP-E module, and waiting for the notification that the IPv6 wide area network is normally connected;
and step S1102, receiving a notice that the IPv6 wide area network is normally connected to the online, selecting a parameter acquisition mode, if the operation is performed for the first time, acquiring by using a DHCPv6 mode, and preferentially selecting the acquisition mode according to the stored acquisition mode.
Step S1103, the MAP-E module of the CPE sends a DHCPv6 request message to acquire various parameters of the MAP-E.
Step S1104, the DHCPv6 message responded by the upper layer device is received, and notified to the MAP-E module by the DHCPv6 module in the CPE.
And step S1105, analyzing the DHCPv6 message and acquiring the MAP-E tunnel configuration parameters.
And step S1106, if the MAP-E tunnel configuration parameters are verified to be normal and effective, the MAP-E tunnel is established and operated.
Step S1107, the DHCPv6 mode, which is the mode for successfully acquiring the parameter this time, is saved, and the acquisition mode is first selected for parameter acquisition next time.
Step S1109, in step S1104, when the upper layer device does not support the DHCPv6 mode to issue parameters, no response message is returned, the basis for determining the DHCPv6 failure may be, for example, whether the set DHCPv6 response waiting timer is overtime, when the CPE sends out the DHCPv6 request message, the waiting timer is set, when the timer time is exceeded, it is considered that the DHCPv6 response fails, at this time, the automatic selection is obtained through a script mode, and the HTTP request message is sent to the rule parameter server to perform parameter acquisition.
In step S1110, the CPE receives the HTTP response message from the rule parameter server.
Step S1111, analyzing the HTTP response message, taking out each parameter, and entering step S1106 to create a MAP-E tunnel.
Similarly, in step S1107, the HTTP message interaction manner, which is the manner in which the parameter is successfully acquired this time, is saved, and the acquisition manner is first selected for parameter acquisition next time.
Example four:
referring to fig. 12, with continuing reference to fig. 1, fig. 12 is a flowchart illustrating obtaining and maintaining MAP-E tunnel configuration parameters in an HTTP manner according to an embodiment of the present application. The MAP-E tunnel configuration parameters are acquired before the MAP-E tunnel is created and operated, the MAP-E tunnel configuration parameters are acquired by using a script HTTP message interaction mode, and for the mode, a set of mechanism is established, namely, a state machine mechanism is used for maintaining the acquired parameters and updating the parameters in time, and the method specifically comprises the following steps:
step S1201, the maintenance management module is started, and maintenance management is normally operated.
Step S1202, under the condition that a script HTTP message interaction mode is selected to obtain MAP-E tunnel configuration parameters, firstly, an authentication interaction message is made to the rule parameter server once, and the subsequent steps can be carried out only if the authentication is successful, so that other equipment in the network is prevented from illegally obtaining the MAP-E tunnel configuration parameters from the rule parameter server.
In step S1203, to ensure data security, the internal data of the HTTP request message and the response message is encrypted, and the data is decrypted by using the secret key after reaching the opposite end.
Step S1204, the maintenance management module initiates the MAP-E tunnel configuration parameter acquisition, and sends HTTP request message.
Step S1205, waiting for the rule parameter server to send a response message, setting timing, and when the response message is received within the timing time, considering that the response message is obtained, and entering step S1206; if the response message is not received after the timeout, it is determined that the response message acquisition has failed, and the process proceeds to step S1211.
And step S1206, successfully receiving the response message sent back by the rule parameter server, analyzing the response message, and taking out all the MAP-E tunnel configuration parameters according to the parameter structure definitions at the two ends.
Step S1207, checking whether the parameters are normal and effective, whether the parameters are successfully matched with information such as prefixes connected with the currently running wide area network IPv6, and if so, entering step S1208; if the parameter check fails or the parameter does not successfully match the wide area network IPv6 connection parameter, the flow proceeds to step S1214.
And step S1208, checking the parameters and successfully matching, if the original MAP-E tunnel is not created, newly creating a MAP-E tunnel, if the original MAP-E tunnel exists, comparing whether the parameters are updated and changed, if the parameters are changed, updating the parameters and applying the parameters to the MAP-E tunnel, and if not, keeping the configuration parameters of the existing MAP-E tunnel to operate.
Step S1209, saving the new MAP-E tunnel configuration parameters of step S1206 to the database.
Step S1210, setting a timing 1 (e.g. 360 minutes), and after the timing 1 is reached, re-acquiring the MAP-E tunnel configuration parameters, i.e. re-returning to step S1204, so as to acquire updated parameters in time and apply the updated parameters to the running MAP-E tunnel when the parameters in the network are updated.
Step S1211, when the rule parameter server response is not received in step S1205, reads out the MAP-E tunnel configuration parameters from the database stored by the CPE itself.
Step S1212, reading the MAP-E tunnel configuration parameters, checking that the parameters are normal and valid, and matching the parameters with the prefix and other information corresponding to the currently operating wide area network IPv6, then performing a MAP-E tunnel creation process, and directly entering step S1208.
In step S1213, in step S1212, if no stored MAP-E tunnel configuration parameter or read MAP-E tunnel configuration parameter is determined to be invalid and/or determined not to match the current network connection parameter, a timing 2 (e.g., 5 minutes) is set, and after the timing 2 is reached, the acquisition of the MAP-E tunnel configuration parameter is resumed, i.e., the process returns to step S1204.
Step S1214, in step S1207, if the MAP-E tunnel configuration parameters obtained from the rule parameter server are determined to be invalid and/or determined not to match the current network connection parameters, the parameters are considered to be unavailable, and the MAP-E tunnel cannot be created, at this time, timing 3 is set (for example, 10 minutes), and after timing 3 is reached, the obtaining of the MAP-E tunnel configuration parameters is performed again, i.e., the process returns to step S1204 again.
The time length of each timing time of the setting timings 1, 2 and 3 can be reasonably modified according to specific conditions, so that the MAP-E tunnel can operate better, and the MAP-E tunnel configuration parameters can be updated better and more timely.
In addition, an embodiment of the present application provides a customer premises equipment, including: a memory, a processor and a computer program stored on the memory and executable on the processor, the processor executing the configuration management method of the MAP-E tunnel of the above-described embodiment by the computer program, for example, executing the above-described method steps S100 to S300 in fig. 2, the method steps S101 to S102 in fig. 3, the method steps S301 to S302 in fig. 4, the method steps S100 to S400 in fig. 5, and the method steps S500, S600 and S601 in fig. 6.
In addition, an embodiment of the present application provides a rule parameter server including: a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor executes the method for managing the configuration of the MAP-E tunnel according to the above-mentioned embodiment, for example, executes the above-mentioned method steps S700 to S800 in fig. 7 and S801 to S804 in fig. 8.
The above-described embodiments of the apparatus are merely illustrative, wherein the units illustrated as separate components may or may not be physically separate, i.e. may be located in one place, or may also be distributed over a plurality of network elements. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of the present embodiment.
Furthermore, an embodiment of the present application further provides a computer-readable storage medium storing computer-executable instructions, which are executed by a processor or a controller, for example, by a processor in the above-mentioned customer premises equipment embodiment or the rule parameter server embodiment, and can cause the above-mentioned processor to execute the MAP-E tunnel configuration management method in the above-mentioned embodiment, for example, execute the above-mentioned method steps S100 to S300 in fig. 2, method steps S101 to S102 in fig. 3, method steps S301 to S302 in fig. 4, method steps S100 to S400 in fig. 5, method steps S500, S600 and S601 in fig. 6, or execute the above-mentioned method steps S700 to S800 in fig. 7, and method steps S801 to S804 in fig. 8.
One of ordinary skill in the art will appreciate that all or some of the steps, systems, and methods disclosed above may be implemented as software, firmware, hardware, and suitable combinations thereof. Some or all of the physical components may be implemented as software executed by a processor, such as a central processing unit, digital signal processor, or microprocessor, or as hardware, or as an integrated circuit, such as an application specific integrated circuit. Such software may be distributed on computer readable media, which may include computer storage media (or non-transitory media) and communication media (or transitory media). The term computer storage media includes volatile and nonvolatile, removable and non-removable media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data, as is well known to those of ordinary skill in the art. Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, Digital Versatile Disks (DVD) or other optical disk storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices, or any other medium which can be used to store the desired information and which can accessed by a computer. In addition, communication media typically embodies computer readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism and includes any information delivery media as known to those skilled in the art.
While the preferred embodiments of the present invention have been described, the present invention is not limited to the above embodiments, and those skilled in the art can make various equivalent modifications or substitutions without departing from the spirit of the present invention, and such equivalent modifications or substitutions are included in the scope of the present invention defined by the claims.

Claims (17)

1.一种MAP-E隧道的配置管理方法,应用于用户前端设备CPE,包括:1. A configuration management method for a MAP-E tunnel, applied to a user front-end equipment CPE, comprising: 向规则参数服务器发送携带有MAP-E隧道配置参数请求信息的第一HTTP请求报文;sending a first HTTP request message carrying the MAP-E tunnel configuration parameter request information to the rule parameter server; 接收由规则参数服务器根据所述第一HTTP请求报文中的所述MAP-E隧道配置参数请求信息发送的第一应答报文,所述第一应答报文包括MAP-E隧道配置参数;receiving a first response message sent by the rule parameter server according to the MAP-E tunnel configuration parameter request information in the first HTTP request message, where the first response message includes MAP-E tunnel configuration parameters; 基于所述第一应答报文中的所述MAP-E隧道配置参数配置MAP-E隧道。The MAP-E tunnel is configured based on the MAP-E tunnel configuration parameter in the first response message. 2.根据权利要求1所述的一种MAP-E隧道的配置管理方法,其特征在于,在向规则参数服务器发送第一HTTP请求报文之前,还包括:2. The configuration management method of a MAP-E tunnel according to claim 1, characterized in that, before sending the first HTTP request message to the rule parameter server, further comprising: 向规则参数服务器发送第二HTTP请求报文,所述第二HTTP请求报文携带有鉴权请求信息;sending a second HTTP request message to the rule parameter server, where the second HTTP request message carries authentication request information; 接收由规则参数服务器根据所述第二HTTP请求报文中的所述鉴权请求信息发送的第二应答报文,所述第二应答报文携带鉴权是否成功的信息。Receive a second response packet sent by the rule parameter server according to the authentication request information in the second HTTP request packet, where the second response packet carries information on whether the authentication is successful. 3.根据权利要求1所述的一种MAP-E隧道的配置管理方法,其特征在于,所述向规则参数服务器发送携带有MAP-E隧道配置参数请求信息的第一HTTP请求报文,包括:3. The method for configuration management of a MAP-E tunnel according to claim 1, wherein the sending the first HTTP request message carrying the MAP-E tunnel configuration parameter request information to the rule parameter server comprises: : 对MAP-E隧道配置参数请求信息进行加密,并根据经过加密的MAP-E隧道配置参数请求信息建立第一HTTP请求报文;Encrypting the MAP-E tunnel configuration parameter request information, and establishing a first HTTP request message according to the encrypted MAP-E tunnel configuration parameter request information; 向规则参数服务器发送所述第一HTTP请求报文。Send the first HTTP request message to the rule parameter server. 4.根据权利要求3所述的一种MAP-E隧道的配置管理方法,其特征在于,所述基于所述第一应答报文中的所述MAP-E隧道配置参数配置MAP-E隧道,包括:4. The method for configuration and management of a MAP-E tunnel according to claim 3, wherein the MAP-E tunnel is configured based on the MAP-E tunnel configuration parameter in the first response packet, include: 对所述第一应答报文的内部数据进行解密,得到所述MAP-E隧道配置参数;Decrypting the internal data of the first response message to obtain the MAP-E tunnel configuration parameters; 根据所述MAP-E隧道配置参数配置MAP-E隧道。The MAP-E tunnel is configured according to the MAP-E tunnel configuration parameter. 5.根据权利要求4所述的一种MAP-E隧道的配置管理方法,其特征在于,所述根据所述MAP-E隧道配置参数配置MAP-E隧道,包括:5. The method for configuring and managing a MAP-E tunnel according to claim 4, wherein the configuring the MAP-E tunnel according to the MAP-E tunnel configuration parameter comprises: 当所述MAP-E隧道配置参数被确定为有效并且被确定为与当前网络连接参数匹配,利用所述MAP-E隧道配置参数配置MAP-E隧道。When the MAP-E tunnel configuration parameters are determined to be valid and determined to match the current network connection parameters, the MAP-E tunnel is configured using the MAP-E tunnel configuration parameters. 6.根据权利要求4所述的一种MAP-E隧道的配置管理方法,其特征在于,所述根据所述MAP-E隧道配置参数配置MAP-E隧道,还包括:6. The method for configuration and management of a MAP-E tunnel according to claim 4, wherein the configuring the MAP-E tunnel according to the MAP-E tunnel configuration parameter further comprises: 当所述MAP-E隧道配置参数被确定为无效和/或被确定为与当前网络连接参数不匹配,在到达第一预设时长后重新向规则参数服务器发送所述第一HTTP请求报文。When the MAP-E tunnel configuration parameters are determined to be invalid and/or do not match the current network connection parameters, the first HTTP request message is re-sent to the rule parameter server after reaching the first preset time period. 7.根据权利要求1所述的一种MAP-E隧道的配置管理方法,其特征在于,还包括:7. The method for configuration management of a MAP-E tunnel according to claim 1, further comprising: 将所述MAP-E隧道配置参数更新到CPE的数据库中。The MAP-E tunnel configuration parameters are updated to the database of the CPE. 8.根据权利要求7所述的一种MAP-E隧道的配置管理方法,其特征在于,还包括:8. The method for configuration management of a MAP-E tunnel according to claim 7, further comprising: 当未在第二预设时长内接收到由规则参数服务器发送的所述第一应答报文,从CPE的数据库中获取所述MAP-E隧道配置参数;When the first response message sent by the rule parameter server is not received within the second preset time period, obtain the MAP-E tunnel configuration parameter from the database of the CPE; 当从CPE的数据库中获取的所述MAP-E隧道配置参数被确定为有效并且被确定为与当前网络连接参数匹配,利用所述MAP-E隧道配置参数配置MAP-E隧道。When the MAP-E tunnel configuration parameters obtained from the database of the CPE are determined to be valid and are determined to match the current network connection parameters, the MAP-E tunnel is configured using the MAP-E tunnel configuration parameters. 9.根据权利要求8所述的一种MAP-E隧道的配置管理方法,其特征在于,还包括:9. The method for configuration management of a MAP-E tunnel according to claim 8, further comprising: 当从CPE的数据库中获取的所述MAP-E隧道配置参数被确定为无效和/或被确定为与当前网络连接参数不匹配,在到达第三预设时长后重新向规则参数服务器发送所述第一HTTP请求报文。When the MAP-E tunnel configuration parameters obtained from the database of the CPE are determined to be invalid and/or are determined to be incompatible with the current network connection parameters, re-send the configuration parameters to the rule parameter server after reaching the third preset time period The first HTTP request message. 10.根据权利要求1所述的一种MAP-E隧道的配置管理方法,其特征在于,所述向规则参数服务器发送携带有MAP-E隧道配置参数请求信息的第一HTTP请求报文,包括:10 . The method for configuration management of a MAP-E tunnel according to claim 1 , wherein the sending the first HTTP request message carrying the MAP-E tunnel configuration parameter request information to the rule parameter server, comprising: 10 . : 向宽带远程接入服务器BRAS发送携带有MAP-E隧道配置参数请求信息的DHCPv6请求报文;sending a DHCPv6 request message carrying the MAP-E tunnel configuration parameter request information to the broadband remote access server BRAS; 当未在第四预设时长内接收到由BRAS发送的DHCPv6应答报文,向规则参数服务器发送携带有MAP-E隧道配置参数请求信息的第一HTTP请求报文。When the DHCPv6 response message sent by the BRAS is not received within the fourth preset time period, a first HTTP request message carrying the MAP-E tunnel configuration parameter request information is sent to the rule parameter server. 11.根据权利要求1至10任一项所述的一种MAP-E隧道的配置管理方法,其特征在于,还包括:11. The method for configuration management of a MAP-E tunnel according to any one of claims 1 to 10, further comprising: 在完成MAP-E隧道的配置并且在到达第五预设时长后,重新向规则参数服务器发送所述第一HTTP请求报文。After the configuration of the MAP-E tunnel is completed and the fifth preset duration is reached, the first HTTP request message is re-sent to the rule parameter server. 12.一种MAP-E隧道的配置管理方法,应用于规则参数服务器,包括:12. A configuration management method for a MAP-E tunnel, applied to a rule parameter server, comprising: 接收由CPE发送的第一HTTP请求报文,所述第一HTTP请求报文携带有MAP-E隧道配置参数请求信息;receiving a first HTTP request message sent by the CPE, where the first HTTP request message carries MAP-E tunnel configuration parameter request information; 根据所述第一HTTP请求报文中的所述MAP-E隧道配置参数请求信息向CPE发送携带有MAP-E隧道配置参数的第一应答报文,以使CPE根据所述第一应答报文中的所述MAP-E隧道配置参数配置MAP-E隧道。Send a first response packet carrying the MAP-E tunnel configuration parameters to the CPE according to the MAP-E tunnel configuration parameter request information in the first HTTP request packet, so that the CPE can make the The MAP-E tunnel configuration parameters in configure the MAP-E tunnel. 13.根据权利要求12所述的一种MAP-E隧道的配置管理方法,其特征在于,在接收由CPE发送的第一HTTP请求报文之前,还包括:13. The configuration management method of a MAP-E tunnel according to claim 12, wherein before receiving the first HTTP request message sent by the CPE, the method further comprises: 接收由CPE发送的第二HTTP请求报文,所述第二HTTP请求报文携带有鉴权请求信息;receiving a second HTTP request message sent by the CPE, where the second HTTP request message carries authentication request information; 根据所述第二HTTP请求报文中的所述鉴权请求信息向CPE发送第二应答报文,所述第二应答报文携带鉴权是否成功的信息。Send a second response packet to the CPE according to the authentication request information in the second HTTP request packet, where the second response packet carries information on whether the authentication is successful. 14.根据权利要求12所述的一种MAP-E隧道的配置管理方法,其特征在于,所述根据所述第一HTTP请求报文中的所述MAP-E隧道配置参数请求信息向CPE发送携带有MAP-E隧道配置参数的第一应答报文,包括:14. The method for configuration management of a MAP-E tunnel according to claim 12, wherein the sending to the CPE according to the MAP-E tunnel configuration parameter request information in the first HTTP request message The first response packet carrying the MAP-E tunnel configuration parameters, including: 对所述第一HTTP请求报文的内部数据进行解密,得到所述MAP-E隧道配置参数请求信息;Decrypting the internal data of the first HTTP request message to obtain the MAP-E tunnel configuration parameter request information; 根据所述MAP-E隧道配置参数请求信息为CPE分配MAP-E隧道配置参数;Allocate MAP-E tunnel configuration parameters to the CPE according to the MAP-E tunnel configuration parameter request information; 对MAP-E隧道配置参数进行加密,并根据经过加密的MAP-E隧道配置参数建立第一应答报文;Encrypting the MAP-E tunnel configuration parameters, and establishing a first response message according to the encrypted MAP-E tunnel configuration parameters; 向CPE发送所述第一应答报文。Send the first response message to the CPE. 15.一种用户前端设备,包括存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,其特征在于,所述处理器通过所述计算机程序执行上述权利要求1至11中任一项所述的MAP-E隧道的配置管理方法。15. A user front-end device, comprising a memory, a processor and a computer program stored on the memory and running on the processor, wherein the processor executes the above claims through the computer program The configuration management method of the MAP-E tunnel described in any one of 1 to 11. 16.一种规则参数服务器,包括存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,其特征在于,所述处理器通过所述计算机程序执行上述权利要求12至14中任一项所述的MAP-E隧道的配置管理方法。16. A rule parameter server, comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor executes the above claims through the computer program The configuration management method of the MAP-E tunnel described in any one of 12 to 14. 17.一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令用于执行权利要求1至11中任一项所述的MAP-E隧道的配置管理方法或执行权利要求12至14中任一项所述的MAP-E隧道的配置管理方法。17. A computer-readable storage medium storing computer-executable instructions for executing the configuration management method of the MAP-E tunnel according to any one of claims 1 to 11 or executing the claims The configuration management method of the MAP-E tunnel described in any one of 12 to 14.
CN202010574064.8A 2020-06-22 2020-06-22 MAP-E tunnel configuration management method, device, server and storage medium Active CN113923110B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN202010574064.8A CN113923110B (en) 2020-06-22 2020-06-22 MAP-E tunnel configuration management method, device, server and storage medium
PCT/CN2021/100401 WO2021259110A1 (en) 2020-06-22 2021-06-16 Method for configuration and management of map-e tunnel, apparatus, server and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010574064.8A CN113923110B (en) 2020-06-22 2020-06-22 MAP-E tunnel configuration management method, device, server and storage medium

Publications (2)

Publication Number Publication Date
CN113923110A true CN113923110A (en) 2022-01-11
CN113923110B CN113923110B (en) 2025-04-01

Family

ID=79231214

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010574064.8A Active CN113923110B (en) 2020-06-22 2020-06-22 MAP-E tunnel configuration management method, device, server and storage medium

Country Status (2)

Country Link
CN (1) CN113923110B (en)
WO (1) WO2021259110A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115914143B (en) * 2022-12-08 2025-05-30 东软集团股份有限公司 A message forwarding method and gateway device
CN118689891B (en) * 2024-08-23 2024-12-13 深圳通康创智技术有限公司 Method, device, storage medium and computer equipment for updating data feature set of CPE

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004222181A (en) * 2003-01-17 2004-08-05 Toshiba Corp Communicating method and communication equipment using http (hypertext transfer protocol) tunneling server, and program
WO2009018658A1 (en) * 2007-08-03 2009-02-12 Hexago Device, system and method for automatic ipv4 provisioning in a local area network connected to an ipv6 network
JP2015002482A (en) * 2013-06-17 2015-01-05 日本電信電話株式会社 Network system and control method

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102158563B (en) * 2010-02-12 2013-10-30 华为技术有限公司 Method, system and device for acquiring IPv6 (Internet Protocol Version 6) configuration information from IPv6 transition network
CN103731394B (en) * 2012-10-10 2017-01-25 中国移动通信集团公司 Method and equipment for configuring IPv6 transitional technologies on CPE
CN103856581B (en) * 2014-03-26 2017-03-01 清华大学 A kind of translation encapsulation adaptive approach of user side equipment
US9967852B2 (en) * 2015-03-23 2018-05-08 Verizon Digital Media Services Inc. CPE network configuration systems and methods
CN106713100B (en) * 2015-11-17 2019-11-29 华为数字技术(苏州)有限公司 A kind of method, CPE and convergence device for establishing tunnel automatically

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004222181A (en) * 2003-01-17 2004-08-05 Toshiba Corp Communicating method and communication equipment using http (hypertext transfer protocol) tunneling server, and program
WO2009018658A1 (en) * 2007-08-03 2009-02-12 Hexago Device, system and method for automatic ipv4 provisioning in a local area network connected to an ipv6 network
JP2015002482A (en) * 2013-06-17 2015-01-05 日本電信電話株式会社 Network system and control method

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
PENG WU等: "Transition from IPv4 to IPv6: A State-of-the-Art Survey", IEEE COMMUNICATIONS SURVEYS & TUTORIALS, vol. 15, no. 03, 12 December 2012 (2012-12-12) *
王玉瑛等: "IPv6隧道代理设计实现中的关键问题研究", 电信科学, no. 03, 15 March 2005 (2005-03-15), pages 1 - 3 *

Also Published As

Publication number Publication date
CN113923110B (en) 2025-04-01
WO2021259110A1 (en) 2021-12-30

Similar Documents

Publication Publication Date Title
US9847967B2 (en) DHCP proxy in a subscriber environment
US7991913B2 (en) Method for domain name configuration in IPv6 access network and the network device hereof
US8125993B2 (en) Network element having a DHCP lease timer
CN104468625B (en) Dialing tunnel agent device, the method for utilizing the tunnel pass through NAT that dials
CN101471936B (en) Method, device and system for establishing IP conversation
CN102136938B (en) Method and device for providing user information for carried grade network address translation (CGN) equipment
US20050105508A1 (en) System for management of Internet telephony equipment deployed behind firewalls
EP1486050A2 (en) A ddns server, a ddns client terminal and a ddns system, and a web server terminal, its network system and an access control method
JP5514825B2 (en) Wireless data card and method of operating wireless data card
US10341286B2 (en) Methods and systems for updating domain name service (DNS) resource records
US8601271B2 (en) Method and system for power management using ICMPV6 options
CN105553712B (en) It is a kind of realize binary channels connection server, terminal, method and system
CN113923110A (en) MAP-E tunnel configuration management method, equipment, server and storage medium
WO2016192407A1 (en) Domain name system address configuration method and apparatus, and computer storage medium
CN107342972B (en) Method and device for realizing remote access
US20060198390A1 (en) Information processing apparatus, information processing method, and program
JP2005341084A (en) Vpn system, remote terminal, and remote access communication method used for vpn system and remote terminal
WO2005083959A1 (en) Network access router, network access method, program, and recording medium
CN108123943B (en) Information verification method and device
JP2004007151A (en) Router, DDNS client terminal connected thereto, and DDNS system
CN102761625A (en) Method and system for registering domain name for video monitoring terminal
CN116170214A (en) ITMS platform and sub-gateway communication method, device, equipment and storage medium
US20060193330A1 (en) Communication apparatus, router apparatus, communication method and computer program product
CN100512170C (en) Control method of broad band cut-in equipment to trunk user of dynamic host machine configuration protocol
KR100608911B1 (en) How to automatically set up and change the router environment on your network

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant