WO2016197993A1 - Router, mobile terminal, and alarm information sending method, and alarm information receiving method - Google Patents
Router, mobile terminal, and alarm information sending method, and alarm information receiving method Download PDFInfo
- Publication number
- WO2016197993A1 WO2016197993A1 PCT/CN2016/085870 CN2016085870W WO2016197993A1 WO 2016197993 A1 WO2016197993 A1 WO 2016197993A1 CN 2016085870 W CN2016085870 W CN 2016085870W WO 2016197993 A1 WO2016197993 A1 WO 2016197993A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- router
- mobile terminal
- information
- alarm information
- account
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Ceased
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0631—Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4633—Interconnection of networks using encapsulation techniques, e.g. tunneling
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/40—Network security protocols
Definitions
- the present application relates to, but is not limited to, the field of network communications, and in particular, to a router, a mobile terminal, and a method for transmitting and receiving alarm information.
- the related traditional routers have been configured to send the alarm information generated by the device or the alarm information generated by the device to the network management server or the desktop computer PC in real time, and display the alarm information displayed by the network management system according to the content of the alarm information displayed by the network management system. Perform service detection or adjustment on the router or device.
- the network management server or PC is fixed in the equipment room.
- special personnel supervision is arranged. For such an arrangement, if it encounters the computer room administrator, it is temporarily called. If you want to leave or need to leave for a while, it is not next to the server.
- the device has an alarm. The administrator cannot receive the alarm information sent by the device, and fails to process it in time to miss the best time to process the alarm. If the alarm information will cause service interruption. If the equipment is out of control and fails to be processed in time, it will bring unimaginable losses to the customer.
- the embodiment of the present invention provides a method for sending and receiving alarms, a router, a mobile terminal, and an alarm information, which solves the problem that the server cannot send the alarm information to the device when the computer room administrator temporarily leaves the equipment room and is not at the server.
- the specific content tells the computer room administrator to do the technical problems caused by the timely processing.
- a method for sending alarm information includes:
- the alarm information is sent to the mobile terminal through the tunnel connection.
- the alarm information includes: alarm information of the router itself and/or alarm information sent by other devices in the intranet of the router to the router.
- the method further includes:
- the router Before determining the tunnel connection established between the intranet router and the extranet mobile terminal, the router acquires the first account and password information of the mobile terminal.
- the obtained first account and password information is compared with the registration information added by the router in advance.
- the correspondence between the first account and password information and the address information of the mobile terminal is established, and according to the correspondence, the user datagram protocol or transmission control is used.
- the protocol establishes the tunnel connection between the intranet router and the extranet mobile terminal.
- the sending, by the tunnel connection, the alarm information to the mobile terminal includes: determining information about the first account that the alarm information needs to be sent remotely; and according to the information and location of the first account Determining a correspondence relationship, determining address information of the mobile terminal corresponding to the information of the first account, and transmitting the alarm information to the mobile terminal by using the tunnel connection according to the address information.
- the method further includes: after determining a tunnel connection established between the intranet router and the extranet mobile terminal, the router receives the control instruction sent by the mobile terminal by using a remote terminal protocol or a secure shell protocol.
- the method further includes:
- the router Before the router receives the control command sent by the mobile terminal by using a remote terminal protocol or a secure shell protocol, the router acquires the second account and password information of the mobile terminal by using a remote terminal protocol or a secure shell protocol.
- a method for receiving alarm information includes: determining a tunnel connection established between an external network mobile terminal and an intranet router; and receiving, by the tunnel connection, the alarm information sent by the router.
- the method further includes: before determining the tunnel connection established between the external network mobile terminal and the intranet router, the mobile terminal sends the first account and password information of the mobile terminal to the router.
- the method further includes: after determining the tunnel connection established between the external network mobile terminal and the intranet router, the mobile terminal sends a control instruction to the router by using a remote terminal protocol or a secure shell protocol.
- the method further includes: before the mobile terminal sends a control instruction to the router by using a remote terminal protocol or a secure shell protocol, the mobile terminal passes the second account and password information of the mobile terminal through a remote A terminal protocol or secure shell protocol is sent to the router.
- a router includes a first connection determining module, an alarm determining module, and an alarm sending module.
- the first connection determining module is configured to determine a tunnel connection established between the intranet and the extranet mobile terminal.
- the alarm judging module is configured to determine whether an alarm information is generated on the intranet router.
- the alarm sending module is configured to send the generated alarm information to the mobile terminal through the tunnel connection if it is determined that the alarm information is generated on the internal network router.
- the alarm information includes: alarm information of the router itself and/or alarm information sent by other devices in the intranet of the router to the router.
- the router further includes: a connection establishing module.
- a connection establishing module configured to acquire a first account and password information of the mobile terminal before the first connection determining module determines a tunnel connection established between the intranet router and the external network mobile terminal; An account and password information is compared with the registration information added by the router in advance; after the first account and the password are verified, the first account and the password information are established with the address information of the mobile terminal.
- establishing the tunnel connection between the intranet router and the extranet mobile terminal by using a user datagram protocol or a transmission control protocol.
- the alarm sending module sends the to the mobile terminal by using the tunnel connection.
- the alarm information includes: determining information about the first account that the alarm information needs to be sent remotely; determining, according to the information of the first account and the corresponding relationship, the mobile terminal corresponding to the information of the first account Address information; sending the alarm information to the mobile terminal through the tunnel connection according to the address information.
- the router further includes: an instruction processing module.
- the instruction processing module is configured to receive, after the first connection determining module determines the tunnel connection established between the intranet router and the extranet mobile terminal, the control instruction of the mobile terminal by using a remote terminal protocol or a secure shell protocol.
- the instruction processing module is further configured to: acquire the second account of the mobile terminal by using a remote terminal protocol or a secure shell protocol before receiving the control instruction sent by the mobile terminal by using a remote terminal protocol or a secure shell protocol And password information.
- a mobile terminal includes a second connection determining module and an alarm receiving module.
- the second connection determining module is configured to determine a tunnel connection established between the external network and the intranet router.
- the alarm receiving module is configured to receive the alarm information sent by the router by using the tunnel connection.
- the mobile terminal further includes: an account information processing module.
- the account information processing module is configured to send the first account and password information of the mobile terminal to the router before the second connection determining module determines a tunnel connection established between the external network mobile terminal and the intranet router.
- the mobile terminal further includes: an instruction sending module.
- an instruction sending module configured to send a control command to the router by using a remote terminal protocol or a secure shell protocol after the second connection determining module determines a tunnel connection established between the external network mobile terminal and the intranet router.
- the instruction sending module is further configured to: before sending the control instruction to the router by using a remote terminal protocol or a secure shell protocol, using the second account and the password of the mobile terminal The information is sent to the router via a remote terminal protocol or a secure shell protocol.
- a computer readable storage medium storing computer executable instructions, the method of transmitting the alarm information when the computer executable instructions are executed by the processor, and the method of receiving the alarm information.
- the embodiment of the invention provides a method for sending alarm information, which realizes cross-network communication between an intranet router and an external network mobile terminal by establishing a tunnel connection across the network; when the intranet router generates an important alarm, the router can pass the The alarm information generated by the tunnel connection is sent out, and the alarm information is transmitted remotely across the network, so that the on-duty personnel and administrators who are not in the duty room can also know the alarm information of the equipment room.
- the embodiment of the present invention further provides a method for a mobile terminal to receive alarm information, where the user uses the established tunnel connection across the network to receive the alarm information sent by the router, thereby avoiding the alarm information generated by the router, due to the on-duty personnel and management.
- the temporary departure of the member cannot receive the alarm information in time and bring about unpredictable losses.
- FIG. 1 is a flowchart of sending a router alarm information according to an embodiment of the present invention
- FIG. 2 is a flowchart of a mobile terminal receiving alarm information according to Embodiment 2 of the present invention.
- Embodiment 3 is a flowchart of managing alarm information according to Embodiment 3 of the present invention.
- FIG. 4 is a schematic block diagram of a fourth router according to an embodiment of the present invention.
- FIG. 5 is a schematic diagram of a module of a mobile terminal according to Embodiment 5 of the present invention.
- the main idea of the embodiment of the present invention is to establish a tunnel connection between the router and the mobile terminal to implement intra-network to external network communication, and realize remote communication between the router and the mobile terminal; the intranet router connects the tunnel through the tunnel.
- the alarm information is sent to the external network device, and the mobile terminal receives the alarm information through the tunnel connection established with the intranet router, so that the user can be in any place.
- the alarm information generated by the router is received at the same time, thereby increasing the flexible performance of the router alarm sending, and sending the account and the password to improve the security performance of the router alarm information transmission.
- Embodiment 1 is a diagrammatic representation of Embodiment 1:
- This embodiment provides a method for transmitting alarm information by using a router as a transmitting end, as shown in FIG. 1 , and the steps thereof include 101-103:
- Step 101 Determine a tunnel connection established between the internal network and the external network mobile terminal.
- Step 102 Determine whether an alarm information is generated on the intranet router.
- Step 103 If it is determined that the alarm information is generated on the intranet router, the alarm information is sent to the mobile terminal through the tunnel connection.
- the tunnel connection is determined to indicate that a tunnel connection has been established between the internal network and the external network mobile terminal.
- the tunnel connection is established once.
- the tunnel connection is no longer used.
- the tunnel connection needs to be established again, and only the established tunnel connection needs to be determined, which reduces the time required for establishing the tunnel connection, and effectively improves the work efficiency.
- the above step 101 determines a tunnel connection across the network, which is established based on any communication protocol capable of implementing communication across the network.
- the tunnel connection is based on UDP (User Datagram Protocol) or TCP (Transmission Control). Agreement) established.
- the internal network has an external network interface, and only needs to connect the interface to the internal network, and then through the tunnel technology, the connection between the internal network and the external network can be established and communication can be realized.
- the intranet refers to a network that uses a private network address, such as a router and PC management, such as an IP address of 192.168.xx or 10.xxx;
- the external network refers to a public network, that is, an internet interconnection network, such as a carrier home broadband. Access and mobile terminals access the Internet using a network with a public network address, such as an IP address of 172.xxx or 202.xxx.
- the alarm information in the foregoing step 102 may be the alarm information of the router itself, or the alarm information generated by other devices in the intranet where the router is located, or the alarm information of the router itself and the alarm information of other devices connected to the router.
- the alarm information of other devices is sent to the router and then sent out by the router.
- the present embodiment determines the tunnel connection established between the internal network and the external network.
- the method further includes: establishing a registration information of the added user on the router, where the registration information includes at least a first account and a password, and the registration information may be user-defined or generated by the router itself; The user logs in the application software on the mobile terminal with the first account and password; after the user logs in, the router obtains the first account and password that the mobile terminal user logs in; optionally, the router adds the obtained user account and password with the pre-configuration. The registration information is compared and verified.
- the authentication is passed; optionally, the router establishes the address information of the mobile terminal used by the user according to the first account and password. Corresponding relationship, and then establishing a tunnel connection between the intranet router and the extranet mobile terminal based on the correspondence and through a user datagram protocol or a transmission control protocol.
- the address information of the mobile terminal may be selected as IP address information.
- the address information of the mobile terminal that needs to send the alarm information may be determined by the correspondence. And sending the alarm information to the transfer terminal corresponding to the address information.
- a plurality of registration information may be added to the router, and the multiple registration information may be used by multiple mobile terminals to establish a tunnel connection, so as to meet multiple users to receive alarms. The need for information.
- the router after determining the tunnel connection established between the intranet router and the external network mobile terminal, the router further includes receiving, by the telnet (remote terminal protocol) or ssh (secure shell protocol), a control command sent by the mobile terminal.
- the router performs alarm processing and/or service configuration according to the control instruction.
- the embodiment includes the router obtaining the second account and password information of the mobile terminal through telnet or ssh before receiving the control command sent by the mobile terminal by using the remote terminal protocol or the secure shell protocol. And performing the comparison verification on the obtained second account and password information and the login information added by the router in advance.
- the second account and password information is used to verify that the mobile terminal sends a control command, and the second account and password and the first account and password may be the same account and password, or different.
- the login information is login information based on an AAA (Authentication, Authorization, Accounting) standard.
- Embodiment 2 is a diagrammatic representation of Embodiment 1:
- This embodiment provides a method for receiving alarm information by using a mobile terminal as a receiving end, as shown in FIG. 2, and the steps thereof include 201-202:
- Step 201 Determine a tunnel connection established between the external network and the internal network router.
- Step 202 The mobile terminal receives the alarm information sent by the router through the tunnel connection.
- the tunnel connection is determined, and a tunnel connection is established between the external network and the internal network router.
- the tunnel connection is established once.
- the tunnel connection is no longer needed.
- the tunnel connection is established again, and only the established tunnel connection needs to be determined, which reduces the time required to establish the tunnel connection and effectively improves the working efficiency.
- the established tunnel connection in the above step 201 is established based on any communication protocol capable of implementing communication across the network.
- the tunnel connection is established based on UDP or TCP.
- the present embodiment further includes a step of establishing a tunnel connection before determining the tunnel connection established between the external network and the internal network, and the establishing step and the embodiment are The establishment steps in one are the same, and will not be described here.
- the telnet or ssh may also send a control command to the router to the router. Perform corresponding alarm service information management.
- the control command may be an instruction for managing the router for the received alarm information, or may be a control command issued by the mobile terminal to avoid the risk.
- the mobile terminal Since the management of the router requires higher authority, the mobile terminal sends the second account and password information to the router through telnet or ssh before the mobile terminal sends the control command to the router by using telnet or ssh; optionally, the mobile terminal sends the second account and password information to the router through telnet or ssh; The router performs rights verification on the second account and password information, which greatly improves the security of remote monitoring and management of the router through the mobile terminal.
- Embodiment 3 is a diagrammatic representation of Embodiment 3
- This embodiment provides a method for managing alarm information. As shown in FIG. 3, the steps include: 301-307:
- Step 301 The user logs in the application software on the mobile terminal by using the first account and the password information.
- the account and password information is sent to the router.
- Step 302 The router obtains the first account and password information, and performs comparison verification with the registration information added by the router in advance. After the verification is passed, the correspondence between the account information and the address information of the mobile terminal is established, and the correspondence is based on the UDP. Or TCP establishes a tunnel connection between the router and the mobile terminal.
- Step 303 When the router has the alarm information generated and needs to be sent, the router determines the address information of the corresponding mobile terminal according to the account information and the corresponding relationship in step 302.
- Step 304 The router sends the generated alarm information to the mobile terminal corresponding to the address information determined according to step 303 through a tunnel connection.
- Step 305 The mobile terminal uses the second account and password information and logs in to the router through ssh or telnet.
- the login process is: the mobile terminal connected to the Internet sends the second account and password information to the verification server established with the tunnel connection through ssh or telnet, and the verification server may be a router or a verification device different from the router.
- the verification server is preferably a router.
- Step 306 The router performs authorization authentication of the second account and password information of the mobile terminal.
- Step 307 After the authorization is passed, the mobile terminal sends a control command to the router through telnet or ssh, and the router performs alarm information management and/or service configuration according to the control instruction.
- Embodiment 4 is a diagrammatic representation of Embodiment 4:
- This embodiment provides a router, as shown in FIG. 4, including: a first connection determining module 41, an alarm determining module 42, and an alarm sending module 43.
- the first connection determining module 41 is configured to determine a tunnel connection established between the intranet and the extranet mobile terminal, the tunnel connection being established based on UDP or TCP.
- the alarm judging module 42 is configured to determine whether an alarm information is generated on the intranet router.
- the alarm information includes: alarm information of the router itself and/or alarm information sent by other devices in the intranet of the router to the router.
- the alarm sending module 43 is configured to send the generated alarm information to the mobile terminal through a tunnel connection if it is determined that the alarm information is generated on the intranet router.
- the router further includes a connection establishing module 44, configured to acquire the first account and password information of the mobile terminal before the first connection determining module 41 determines the tunnel connection established between the intranet router and the external network mobile terminal. And verifying the obtained first account and password information with the registration information added by the router in advance; after the first account and the password are verified, establishing the first account and the password information and the address information of the mobile terminal Corresponding relationship; according to the correspondence, establishing a tunnel connection between the intranet router and the external network mobile terminal by using a user datagram protocol or a transmission control protocol.
- a connection establishing module 44 configured to acquire the first account and password information of the mobile terminal before the first connection determining module 41 determines the tunnel connection established between the intranet router and the external network mobile terminal. And verifying the obtained first account and password information with the registration information added by the router in advance; after the first account and the password are verified, establishing the first account and the password information and the address information of the mobile terminal Corresponding relationship; according to the correspondence, establishing a tunnel connection between
- the alarm sending module 43 determines information of the first account that needs to be sent remotely by the alarm information, and determines address information of the mobile terminal corresponding to the information of the first account according to the information of the first account and the corresponding relationship, according to the address information.
- the router's alarm information is sent to the mobile terminal through a tunnel connection.
- the router further includes an instruction processing module 45 configured to receive, after the first connection determining module determines a tunnel connection established between the intranet router and the extranet mobile terminal, receive a control instruction from the mobile terminal by using telnet or ssh .
- the router can also perform alarm information processing and/or service configuration according to the control instruction.
- the instruction processing module 46 is further configured to receive the second account and password information from the mobile terminal, and verify the second account and the password information.
- the second account and password information may be received and verified before the router receives the control instruction from the mobile terminal, and the control command from the mobile terminal is received after the verification is passed, or the second account and the password information are simultaneously received. And controlling the instruction, and then verifying the second account and the password information, and executing the control instruction after the verification is passed.
- Embodiment 5 is a diagrammatic representation of Embodiment 5:
- the embodiment provides a mobile terminal.
- the mobile terminal includes a second connection determining module 51 and an alarm receiving module 52.
- the second connection determining module 51 is configured to determine a tunnel connection established between the external network and the intranet router.
- the alarm receiving module 52 is configured to receive the alarm information sent by the router through the tunnel connection.
- the mobile terminal further includes an account information processing module 53 configured to set the mobile terminal before the second connection determining module determines the tunnel connection established between the external network mobile terminal and the intranet router.
- An account and password information is sent to the router.
- the mobile terminal further includes an instruction sending module 54 configured to pass the remote terminal protocol or the secure shell protocol after the second connection determining module determines the tunnel connection established between the external network mobile terminal and the intranet router. Sending a control command to the router, that is, sending the control command to the router through telnet or ssh.
- the second account and password information may also be sent to the router through telnet or ssh.
- the instruction sending module is further configured to: pass the second account and password information of the mobile terminal to a remote terminal protocol or a secure shell before sending the control instruction to the router by using a remote terminal protocol or a secure shell protocol.
- the protocol is sent to the router.
- a computer readable storage medium storing computer executable instructions, the method of transmitting the alarm information when the computer executable instructions are executed by the processor, and the method of receiving the alarm information.
- all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve.
- the devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
- the device/function module/functional unit in the above embodiment When the device/function module/functional unit in the above embodiment is implemented in the form of a software function module and sold or used as a stand-alone product, it can be stored in a computer readable storage medium.
- the above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
- the method for transmitting the alarm information in the embodiment of the present invention establishes a tunnel connection across the network, and realizes cross-network communication between the intranet router and the external network mobile terminal; when the intranet router generates an important alarm, The router can send out the generated alarm information through the tunnel connection, and realize the remote transmission of the alarm information across the network, so that the on-duty personnel and administrators who are not in the duty room can also know the alarm information of the equipment room.
- the method for receiving the alarm information by the mobile terminal in the embodiment of the present invention the user uses the established tunnel connection across the network to receive the alarm information sent by the router, and avoids the temporary departure of the on-duty personnel and the administrator when the router generates the alarm information. The problem that the alarm information cannot be received in time and the unpredictable loss is caused.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Description
本申请涉及但不限于网络通信领域,尤其涉及是一种路由器、移动终端及告警信息发送和接收的方法。The present application relates to, but is not limited to, the field of network communications, and in particular, to a router, a mobile terminal, and a method for transmitting and receiving alarm information.
随着现代通信网络数据传输量越来越大,数据通信设备及路由器运行压力也越来越大,伴随着路由器设备长时间运行使用,大量的设备告警也不断在产生,快速有效处理设备告警,从而不对运营业务产生影响也显得越来越重要。With the increasing volume of data transmission in modern communication networks, data communication equipment and routers are also under increasing pressure. With the long-term operation of router equipment, a large number of equipment alarms are constantly being generated, and equipment alarms are processed quickly and efficiently. It is increasingly important to have an impact on the operations.
相关的传统路由器已经支持将其本身产生的告警信息或者与其连接的设备所产生的告警信息,实时发送给网管服务器或者桌面电脑PC,并显示出来,机房管理员根据网管显示的告警信息的内容,对路由器或者设备进行业务检测或者调整,但是,该网管服务器或者PC都是固定的设置在机房内,同时,对于机房的管理,安排专人监管,对于这样的安排如果碰到机房管理员临时被叫走或者需要离开一会,不在服务器的旁边,而这时候设备出现告警,管理员接收不到设备发出的告警信息,未能及时处理而错过处理告警的最佳时机;如果告警信息会产生业务中断,或者设备失控的情况,而没能及时处理的话,将会给客户带来无法想象的损失。The related traditional routers have been configured to send the alarm information generated by the device or the alarm information generated by the device to the network management server or the desktop computer PC in real time, and display the alarm information displayed by the network management system according to the content of the alarm information displayed by the network management system. Perform service detection or adjustment on the router or device. However, the network management server or PC is fixed in the equipment room. At the same time, for the management of the equipment room, special personnel supervision is arranged. For such an arrangement, if it encounters the computer room administrator, it is temporarily called. If you want to leave or need to leave for a while, it is not next to the server. At this time, the device has an alarm. The administrator cannot receive the alarm information sent by the device, and fails to process it in time to miss the best time to process the alarm. If the alarm information will cause service interruption. If the equipment is out of control and fails to be processed in time, it will bring unimaginable losses to the customer.
发明内容Summary of the invention
以下是对本文详细描述的主题的概述。本概述并非是为了限制权利要求的保护范围。The following is an overview of the topics detailed in this document. This Summary is not intended to limit the scope of the claims.
本发明实施例提供了一种路由器、移动终端及告警信息发送和接收的方法,解决了上述相关技术中对于机房管理员临时离开机房,不在服务器旁边的时候,服务器无法将设备发送的告警信息的具体内容告知机房管理员做及时处理而造成损失的技术问题。The embodiment of the present invention provides a method for sending and receiving alarms, a router, a mobile terminal, and an alarm information, which solves the problem that the server cannot send the alarm information to the device when the computer room administrator temporarily leaves the equipment room and is not at the server. The specific content tells the computer room administrator to do the technical problems caused by the timely processing.
一种告警信息发送的方法,包括:A method for sending alarm information includes:
确定内网路由器和外网移动终端之间建立的隧道连接。 Determine the tunnel connection established between the intranet router and the extranet mobile terminal.
判断所述内网路由器上是否有告警信息产生。It is determined whether alarm information is generated on the intranet router.
如果判定所述内网路由器上有告警信息产生,则通过所述隧道连接向所述移动终端发送所述告警信息。If it is determined that the alarm information is generated on the intranet router, the alarm information is sent to the mobile terminal through the tunnel connection.
可选地,所述告警信息包括:所述路由器本身的告警信息和/或所述路由器所在的内网中的其他设备发送到所述路由器的告警信息。Optionally, the alarm information includes: alarm information of the router itself and/or alarm information sent by other devices in the intranet of the router to the router.
可选地,所述方法还包括:Optionally, the method further includes:
在确定内网路由器和外网移动终端之间建立的隧道连接之前,所述路由器获取所述移动终端的第一账号和密码信息。Before determining the tunnel connection established between the intranet router and the extranet mobile terminal, the router acquires the first account and password information of the mobile terminal.
将获取的所述第一账号和密码信息与路由器预先配置添加的注册信息进行验证比对。The obtained first account and password information is compared with the registration information added by the router in advance.
在所述第一账号和密码信息验证通过后,建立所述第一账号和密码信息与所述移动终端的地址信息之间的对应关系,根据所述对应关系,通过用户数据报协议或传输控制协议建立所述内网路由器和所述外网移动终端之间的所述隧道连接。After the first account and the password information are verified, the correspondence between the first account and password information and the address information of the mobile terminal is established, and according to the correspondence, the user datagram protocol or transmission control is used. The protocol establishes the tunnel connection between the intranet router and the extranet mobile terminal.
可选地,所述通过所述隧道连接向所述移动终端发送所述告警信息包括:确定所述告警信息需远程发送的所述第一账号的信息;根据所述第一账号的信息以及所述对应关系,确定所述第一账号的信息对应的所述移动终端的地址信息;根据所述地址信息通过所述隧道连接向所述移动终端发送所述告警信息。Optionally, the sending, by the tunnel connection, the alarm information to the mobile terminal includes: determining information about the first account that the alarm information needs to be sent remotely; and according to the information and location of the first account Determining a correspondence relationship, determining address information of the mobile terminal corresponding to the information of the first account, and transmitting the alarm information to the mobile terminal by using the tunnel connection according to the address information.
可选地,所述方法还包括:在确定内网路由器和外网移动终端之间建立的隧道连接之后,所述路由器通过远程终端协议或安全外壳协议接收所述移动终端发送的控制指令。Optionally, the method further includes: after determining a tunnel connection established between the intranet router and the extranet mobile terminal, the router receives the control instruction sent by the mobile terminal by using a remote terminal protocol or a secure shell protocol.
可选地,所述方法还包括:Optionally, the method further includes:
在所述路由器通过远程终端协议或安全外壳协议接收所述移动终端发送的控制指令之前,所述路由器通过远程终端协议或安全外壳协议获取所述移动终端的第二账号和密码信息。Before the router receives the control command sent by the mobile terminal by using a remote terminal protocol or a secure shell protocol, the router acquires the second account and password information of the mobile terminal by using a remote terminal protocol or a secure shell protocol.
将获取的所述第二账号和密码信息和所述路由器预先配置添加的登录信息进行比对验证。 And comparing the obtained second account and password information with the login information added by the router in advance.
一种告警信息接收的方法,包括:确定外网移动终端和内网路由器之间建立的隧道连接;通过所述隧道连接接收所述路由器发送的告警信息。A method for receiving alarm information includes: determining a tunnel connection established between an external network mobile terminal and an intranet router; and receiving, by the tunnel connection, the alarm information sent by the router.
可选地,所述方法还包括:在确定外网移动终端和内网路由器之间建立的隧道连接之前,所述移动终端将所述移动终端的第一账号和密码信息发送到所述路由器。Optionally, the method further includes: before determining the tunnel connection established between the external network mobile terminal and the intranet router, the mobile terminal sends the first account and password information of the mobile terminal to the router.
可选地,所述方法还包括:在确定外网移动终端和内网路由器之间建立的隧道连接之后,所述移动终端通过远程终端协议或安全外壳协议向所述路由器发送控制指令。Optionally, the method further includes: after determining the tunnel connection established between the external network mobile terminal and the intranet router, the mobile terminal sends a control instruction to the router by using a remote terminal protocol or a secure shell protocol.
可选地,所述方法还包括:在所述移动终端通过远程终端协议或安全外壳协议向所述路由器发送控制指令之前,所述移动终端将所述移动终端的第二账号和密码信息通过远程终端协议或安全外壳协议发送至所述路由器。Optionally, the method further includes: before the mobile terminal sends a control instruction to the router by using a remote terminal protocol or a secure shell protocol, the mobile terminal passes the second account and password information of the mobile terminal through a remote A terminal protocol or secure shell protocol is sent to the router.
一种路由器,包括第一连接确定模块、告警判断模块和告警发送模块。A router includes a first connection determining module, an alarm determining module, and an alarm sending module.
所述第一连接确定模块,设置为确定内网和外网移动终端之间建立的隧道连接。The first connection determining module is configured to determine a tunnel connection established between the intranet and the extranet mobile terminal.
所述告警判断模块,设置为判断内网路由器上是否有告警信息产生。The alarm judging module is configured to determine whether an alarm information is generated on the intranet router.
所述告警发送模块,设置为如果判定所述内网路由器上有告警信息产生,将产生的所述告警信息通过所述隧道连接发送至所述移动终端。The alarm sending module is configured to send the generated alarm information to the mobile terminal through the tunnel connection if it is determined that the alarm information is generated on the internal network router.
可选地,所述告警信息包括:所述路由器本身的告警信息和/或所述路由器所在的内网中的其他设备发送到所述路由器的告警信息。Optionally, the alarm information includes: alarm information of the router itself and/or alarm information sent by other devices in the intranet of the router to the router.
可选地,所述路由器还包括:连接建立模块。Optionally, the router further includes: a connection establishing module.
连接建立模块,设置为在所述第一连接确定模块确定内网路由器和外网移动终端之间建立的隧道连接之前,获取所述移动终端的第一账号和密码信息;将获取的所述第一账号和密码信息与路由器预先配置添加的注册信息进行验证比对;在所述第一账号和密码验证通过后,建立所述第一账号和密码信息与所述移动终端的地址信息之间的对应关系,根据所述对应关系,通过用户数据报协议或传输控制协议建立所述内网路由器和所述外网移动终端之间的所述隧道连接。a connection establishing module, configured to acquire a first account and password information of the mobile terminal before the first connection determining module determines a tunnel connection established between the intranet router and the external network mobile terminal; An account and password information is compared with the registration information added by the router in advance; after the first account and the password are verified, the first account and the password information are established with the address information of the mobile terminal. Corresponding relationship, according to the correspondence, establishing the tunnel connection between the intranet router and the extranet mobile terminal by using a user datagram protocol or a transmission control protocol.
可选地,所述告警发送模块通过所述隧道连接向所述移动终端发送所述 告警信息包括:确定所述告警信息需远程发送的所述第一账号的信息;根据所述第一账号的信息以及所述对应关系,确定所述第一账号的信息对应的所述移动终端的地址信息;根据所述地址信息通过所述隧道连接向所述移动终端发送所述告警信息。Optionally, the alarm sending module sends the to the mobile terminal by using the tunnel connection. The alarm information includes: determining information about the first account that the alarm information needs to be sent remotely; determining, according to the information of the first account and the corresponding relationship, the mobile terminal corresponding to the information of the first account Address information; sending the alarm information to the mobile terminal through the tunnel connection according to the address information.
可选地,所述路由器还包括:指令处理模块。Optionally, the router further includes: an instruction processing module.
指令处理模块,设置为在所述第一连接确定模块确定内网路由器和外网移动终端之间建立的隧道连接之后,通过远程终端协议或安全外壳协议接收所述移动终端的控制指令。The instruction processing module is configured to receive, after the first connection determining module determines the tunnel connection established between the intranet router and the extranet mobile terminal, the control instruction of the mobile terminal by using a remote terminal protocol or a secure shell protocol.
可选地,所述指令处理模块还设置为:在通过远程终端协议或安全外壳协议接收所述移动终端发送的控制指令之前,通过远程终端协议或安全外壳协议获取所述移动终端的第二账号和密码信息。Optionally, the instruction processing module is further configured to: acquire the second account of the mobile terminal by using a remote terminal protocol or a secure shell protocol before receiving the control instruction sent by the mobile terminal by using a remote terminal protocol or a secure shell protocol And password information.
将获取的所述第二账号和密码信息和所述路由器预先配置添加的登录信息进行比对验证。And comparing the obtained second account and password information with the login information added by the router in advance.
一种移动终端,包括第二连接确定模块和告警接收模块。A mobile terminal includes a second connection determining module and an alarm receiving module.
所述第二连接确定模块,设置为确定外网和内网路由器之间建立的隧道连接。The second connection determining module is configured to determine a tunnel connection established between the external network and the intranet router.
所述告警接收模块,设置为通过所述隧道连接接收所述路由器发送的告警信息。The alarm receiving module is configured to receive the alarm information sent by the router by using the tunnel connection.
可选地,所述移动终端还包括:账号信息处理模块。Optionally, the mobile terminal further includes: an account information processing module.
账号信息处理模块,设置为在所述第二连接确定模块确定外网移动终端和内网路由器之间建立的隧道连接之前,将所述移动终端的第一账号和密码信息发送到所述路由器。The account information processing module is configured to send the first account and password information of the mobile terminal to the router before the second connection determining module determines a tunnel connection established between the external network mobile terminal and the intranet router.
可选地,所述移动终端还包括:指令发送模块。Optionally, the mobile terminal further includes: an instruction sending module.
指令发送模块,设置为在所述第二连接确定模块确定外网移动终端和内网路由器之间建立的隧道连接之后,通过远程终端协议或安全外壳协议发送控制指令至所述路由器。And an instruction sending module, configured to send a control command to the router by using a remote terminal protocol or a secure shell protocol after the second connection determining module determines a tunnel connection established between the external network mobile terminal and the intranet router.
可选地,所述指令发送模块还设置为:在通过远程终端协议或安全外壳协议向所述路由器发送控制指令之前,将所述移动终端的第二账号和密码信 息通过远程终端协议或安全外壳协议发送至所述路由器。Optionally, the instruction sending module is further configured to: before sending the control instruction to the router by using a remote terminal protocol or a secure shell protocol, using the second account and the password of the mobile terminal The information is sent to the router via a remote terminal protocol or a secure shell protocol.
一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现所述的告警信息发送的方法以及所述的告警信息接收的方法。A computer readable storage medium storing computer executable instructions, the method of transmitting the alarm information when the computer executable instructions are executed by the processor, and the method of receiving the alarm information.
本发明实施例的有益效果是:The beneficial effects of the embodiments of the present invention are:
本发明实施例提供了一种告警信息发送的方法,通过建立跨网络的隧道连接,实现了内网路由器与外网移动终端的跨网络通信;当内网路由器产生重要告警时,路由器可以通过该隧道连接将产生的告警信息发送出去,实现了告警信息的跨网络远程发送,使得不在值班室的值班人员和管理员也能得知机房的告警信息。The embodiment of the invention provides a method for sending alarm information, which realizes cross-network communication between an intranet router and an external network mobile terminal by establishing a tunnel connection across the network; when the intranet router generates an important alarm, the router can pass the The alarm information generated by the tunnel connection is sent out, and the alarm information is transmitted remotely across the network, so that the on-duty personnel and administrators who are not in the duty room can also know the alarm information of the equipment room.
另外,本发明实施例还提供了一种移动终端接收告警信息的方法,用户利用建立好的跨网络的隧道连接接收来自路由器发送的告警信息,避免了路由器产生告警信息时,由于值班人员和管理员的临时离开,不能及时接收告警信息而带来不可预估的损失的问题。In addition, the embodiment of the present invention further provides a method for a mobile terminal to receive alarm information, where the user uses the established tunnel connection across the network to receive the alarm information sent by the router, thereby avoiding the alarm information generated by the router, due to the on-duty personnel and management. The temporary departure of the member cannot receive the alarm information in time and bring about unpredictable losses.
附图概述BRIEF abstract
图1为本发明实施例一路由器告警信息发送的流程图;1 is a flowchart of sending a router alarm information according to an embodiment of the present invention;
图2为本发明实施例二移动终端接收告警信息的流程图;2 is a flowchart of a mobile terminal receiving alarm information according to Embodiment 2 of the present invention;
图3为本发明实施例三管理告警信息的流程图;3 is a flowchart of managing alarm information according to Embodiment 3 of the present invention;
图4为本发明实施例四路由器的模块示意图;4 is a schematic block diagram of a fourth router according to an embodiment of the present invention;
图5为本发明实施例五移动终端的模块示意图。FIG. 5 is a schematic diagram of a module of a mobile terminal according to Embodiment 5 of the present invention.
下文中将结合附图对本发明的实施例进行详细说明。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互任意组合。Embodiments of the present invention will be described in detail below with reference to the accompanying drawings. It should be noted that, in the case of no conflict, the features in the embodiments and the embodiments in the present application may be arbitrarily combined with each other.
本发明实施例的主要构思在于,在路由器与移动终端之间建立一条能实现内网到外网通信的隧道连接,实现路由器与移动终端之间的远程通信;内网路由器通过该隧道连接将其告警信息发送至外网设备,移动终端通过与内网路由器建立的隧道连接接收告警信息,实现了用户在任何一个地方,都可 以及时接收到路由器产生的告警信息,从而增加了路由器告警发送的灵活性能,通过建立账号和密码来发送,提高了路由器告警信息发送的安全性能。下面通过实施方式结合附图对本发明实施例方案作详细说明。The main idea of the embodiment of the present invention is to establish a tunnel connection between the router and the mobile terminal to implement intra-network to external network communication, and realize remote communication between the router and the mobile terminal; the intranet router connects the tunnel through the tunnel. The alarm information is sent to the external network device, and the mobile terminal receives the alarm information through the tunnel connection established with the intranet router, so that the user can be in any place. The alarm information generated by the router is received at the same time, thereby increasing the flexible performance of the router alarm sending, and sending the account and the password to improve the security performance of the router alarm information transmission. The embodiments of the present invention are described in detail below with reference to the accompanying drawings.
实施例一:Embodiment 1:
本实施例提供的是以路由器作为发送端,其告警信息发送的方法,如图1所示,其步骤包括101-103:This embodiment provides a method for transmitting alarm information by using a router as a transmitting end, as shown in FIG. 1 , and the steps thereof include 101-103:
步骤101,确定内网和外网移动终端之间建立的隧道连接。Step 101: Determine a tunnel connection established between the internal network and the external network mobile terminal.
步骤102,判断内网路由器上是否有告警信息产生。Step 102: Determine whether an alarm information is generated on the intranet router.
步骤103,如果判定所述内网路由器上有告警信息产生,则通过隧道连接向移动终端发送告警信息。Step 103: If it is determined that the alarm information is generated on the intranet router, the alarm information is sent to the mobile terminal through the tunnel connection.
上述步骤101中确定该隧道连接表示,内网和外网移动终端之间已建立隧道连接,而在本实施例中,建立该隧道连接是一次性的,当隧道连接建立完成后,就不再需要再次建立隧道连接,而仅仅需要确定已建立的隧道连接,减少了建立隧道连接所需的时间,有效提升了工作效率。In the
上述步骤101确定一个跨网络的隧道连接,该隧道连接是基于任意一个能实现跨网络通信的通信协议建立的,可选地,该隧道连接是基于UDP(用户数据报协议)或TCP(传输控制协议)建立的。一般的,内网都会有一个外网接口,只需要将该接口接入内网,再通过隧道技术,就可以将内网和外网之间建立连接并能实现通信。此外,内网指的是路由器以及PC机管理等使用私有网络地址的网络,如IP地址为192.168.x.x或10.x.x.x;外网指的是公网,即internet互联网络,像运营商家用宽带接入及移动终端上网接入使用公有网络地址的网络,如IP地址为172.x.x.x或202.x.x.x。The
上述步骤102中的告警信息,可以是路由器本身的告警信息,也可以是路由器所在的内网中其他设备产生的告警信息,还可以是路由器本身的告警信息和与路由器连接的其他设备的告警信息,其中,其他设备的告警信息会发送至路由器上,再由路由器发送出去。The alarm information in the foregoing
由于路由器发送的告警信息可能是保密的,因此,为了增加在告警信息发送过程中的安全性,本实施例在确定内网和外网之间建立的隧道连接之前, 还包括隧道连接的建立步骤:首先,在路由器上配置添加用户的注册信息,该注册信息至少包括第一账号和密码,该注册信息可以是用户自定义的,也可以是路由器本身生成的;然后,用户用第一账号和密码登录移动终端上的应用软件;用户登录后,路由器获取移动终端用户登录的第一账号和密码;可选地,路由器将获取到的用户账号和密码与预先配置添加的注册信息进行比对验证,如果用户的账号和密码与路由器预先配置添加的注册信息一致,则通过验证;可选地,路由器会根据第一账号和密码与用户使用的移动终端的地址信息建立对应关系,然后基于该对应关系并通过用户数据报协议或传输控制协议建立内网路由器和外网移动终端之间的隧道连接。可选地,移动终端的地址信息可选为IP地址信息。Since the alarm information sent by the router may be confidential, in order to increase the security in the process of sending the alarm information, the present embodiment determines the tunnel connection established between the internal network and the external network. The method further includes: establishing a registration information of the added user on the router, where the registration information includes at least a first account and a password, and the registration information may be user-defined or generated by the router itself; The user logs in the application software on the mobile terminal with the first account and password; after the user logs in, the router obtains the first account and password that the mobile terminal user logs in; optionally, the router adds the obtained user account and password with the pre-configuration. The registration information is compared and verified. If the user's account and password are consistent with the registration information added by the router in advance, the authentication is passed; optionally, the router establishes the address information of the mobile terminal used by the user according to the first account and password. Corresponding relationship, and then establishing a tunnel connection between the intranet router and the extranet mobile terminal based on the correspondence and through a user datagram protocol or a transmission control protocol. Optionally, the address information of the mobile terminal may be selected as IP address information.
在完成建立用户的账号和密码与用户使用的移动终端的地址信息之间的对应关系之后,当路由器有告警信息要发送时,可以通过该对应关系确定需要发送告警信息的移动终端的地址信息,并将告警信息发送至该地址信息对应的移送终端。After the correspondence between the account and the password of the user and the address information of the mobile terminal used by the user is completed, when the router has the alarm information to be sent, the address information of the mobile terminal that needs to send the alarm information may be determined by the correspondence. And sending the alarm information to the transfer terminal corresponding to the address information.
在本实施例中,为了实现多用户的信息管理,还可以在路由器上配置添加多个注册信息,该多个注册信息可以被多个移动终端使用来建立隧道连接,以满足多个用户接收告警信息的需要。In this embodiment, in order to implement multi-user information management, a plurality of registration information may be added to the router, and the multiple registration information may be used by multiple mobile terminals to establish a tunnel connection, so as to meet multiple users to receive alarms. The need for information.
在本实施例中,在确定内网路由器与外网移动终端之间建立的隧道连接之后,还包括路由器通过telnet(远程终端协议)或ssh(安全外壳协议)接收移动终端发送的控制指令。可选地,路由器根据该控制指令来进行告警处理和/或业务配置。In this embodiment, after determining the tunnel connection established between the intranet router and the external network mobile terminal, the router further includes receiving, by the telnet (remote terminal protocol) or ssh (secure shell protocol), a control command sent by the mobile terminal. Optionally, the router performs alarm processing and/or service configuration according to the control instruction.
由于对路由器的管理需要更高的权限,本实施例在路由器通过远程终端协议或安全外壳协议接收移动终端发送的控制指令之前,还包括路由器通过telnet或ssh获取移动终端的第二账号和密码信息;将获取的所述第二账号和密码信息和所述路由器预先配置添加的登录信息进行比对验证。该第二账号和密码信息是用于验证移动终端发送控制指令的权限,该第二账号和密码和上述的第一账号和密码可以是相同的账号和密码,或者是不同的。可选地,该登录信息是基于AAA(验证、授权、记账)标准的登录信息。Since the management of the router requires higher authority, the embodiment includes the router obtaining the second account and password information of the mobile terminal through telnet or ssh before receiving the control command sent by the mobile terminal by using the remote terminal protocol or the secure shell protocol. And performing the comparison verification on the obtained second account and password information and the login information added by the router in advance. The second account and password information is used to verify that the mobile terminal sends a control command, and the second account and password and the first account and password may be the same account and password, or different. Optionally, the login information is login information based on an AAA (Authentication, Authorization, Accounting) standard.
实施例二: Embodiment 2:
本实施例提供的是以移动终端作为接收端,其接收告警信息的方法,如图2所示,其步骤包括201-202:This embodiment provides a method for receiving alarm information by using a mobile terminal as a receiving end, as shown in FIG. 2, and the steps thereof include 201-202:
步骤201,确定外网和内网路由器之间建立的隧道连接。Step 201: Determine a tunnel connection established between the external network and the internal network router.
步骤202,移动终端通过该隧道连接接收来自路由器发送的告警信息。Step 202: The mobile terminal receives the alarm information sent by the router through the tunnel connection.
上述步骤201中确定该隧道连接表示,外网和内网路由器之间已建立隧道连接,而在本实施例中,建立该隧道连接是一次性的,当隧道连接建立完成后,就不再需要再次建立隧道连接,而仅仅需要确定已建立的隧道连接,减少了建立隧道连接所需的时间,有效提升了工作效率。In the foregoing
上述步骤201中的建立的隧道连接,该隧道连接是基于任意一个能实现跨网络通信的通信协议建立的,可选地,该隧道连接是基于UDP或TCP建立的。The established tunnel connection in the
在本实施例中,为了增加在告警信息发送过程中的安全性,本实施例在确定外网和内网之间建立的隧道连接之前,还包括隧道连接的建立步骤,该建立步骤与实施例一中的建立步骤一致,这里不再赘述。In this embodiment, in order to increase the security in the process of sending the alarm information, the present embodiment further includes a step of establishing a tunnel connection before determining the tunnel connection established between the external network and the internal network, and the establishing step and the embodiment are The establishment steps in one are the same, and will not be described here.
在本实施例中,当移动终端需要对路由器进行告警业务管理时,在确认外网移动终端和内网路由器之间建立的隧道连接之后,还可以通过telnet或ssh向路由器发送控制指令,对路由器进行相应的告警业务信息管理。该控制指令可以是针对接收到的告警信息对路由器进行管理的指令,也可以是移动终端为了规避风险而发出的控制指令。In this embodiment, when the mobile terminal needs to perform alarm service management on the router, after confirming the tunnel connection established between the external network mobile terminal and the internal network router, the telnet or ssh may also send a control command to the router to the router. Perform corresponding alarm service information management. The control command may be an instruction for managing the router for the received alarm information, or may be a control command issued by the mobile terminal to avoid the risk.
由于对路由器的管理需要更高的权限,本实施例在移动终端用过telnet或ssh向路由器发送控制指令之前,还包括移动终端通过telnet或ssh向路由器发送第二账号和密码信息;可选地,路由器针对该第二账号和密码信息进行权限验证,这样大大地提高了通过移动终端对路由器远程监控管理的安全性。Since the management of the router requires higher authority, the mobile terminal sends the second account and password information to the router through telnet or ssh before the mobile terminal sends the control command to the router by using telnet or ssh; optionally, the mobile terminal sends the second account and password information to the router through telnet or ssh; The router performs rights verification on the second account and password information, which greatly improves the security of remote monitoring and management of the router through the mobile terminal.
实施例三:Embodiment 3:
本实施例提供了一种告警信息管理的方法,如图3所示,步骤包括301-307:This embodiment provides a method for managing alarm information. As shown in FIG. 3, the steps include: 301-307:
步骤301,用户通过第一账号和密码信息登录移动终端上的应用软件。 Step 301: The user logs in the application software on the mobile terminal by using the first account and the password information.
应用软件获取用户的账号和密码后,再将账号和密码信息发送至路由器。After the application software obtains the user's account and password, the account and password information is sent to the router.
步骤302,路由器获取第一账号和密码信息,与路由器预先配置添加的注册信息进行比对验证;待验证通过后,建立账号信息和移动终端的地址信息的对应关系,基于该对应关系并通过UDP或TCP建立路由器和移动终端之间的隧道连接。Step 302: The router obtains the first account and password information, and performs comparison verification with the registration information added by the router in advance. After the verification is passed, the correspondence between the account information and the address information of the mobile terminal is established, and the correspondence is based on the UDP. Or TCP establishes a tunnel connection between the router and the mobile terminal.
步骤303,路由器有告警信息产生需要发送时,路由器根据步骤302中的账号信息以及对应关系确定对应的移动终端的地址信息。Step 303: When the router has the alarm information generated and needs to be sent, the router determines the address information of the corresponding mobile terminal according to the account information and the corresponding relationship in
步骤304,路由器将产生的告警信息通过隧道连接发送至根据步骤303中确定的与该地址信息对应的移动终端。Step 304: The router sends the generated alarm information to the mobile terminal corresponding to the address information determined according to step 303 through a tunnel connection.
步骤305,移动终端采用第二账号和密码信息并通过ssh或telnet登录路由器。Step 305: The mobile terminal uses the second account and password information and logs in to the router through ssh or telnet.
该登录过程为:连接互联网的移动终端将第二账号和密码信息通过ssh或telnet发送至建立有隧道连接的验证服务器,该验证服务器可以是路由器,也可以是不同于路由器的一个验证装置,在本实施例中,该验证服务器优选为路由器。The login process is: the mobile terminal connected to the Internet sends the second account and password information to the verification server established with the tunnel connection through ssh or telnet, and the verification server may be a router or a verification device different from the router. In this embodiment, the verification server is preferably a router.
步骤306,路由器进行移动终端的第二账号和密码信息的授权认证。Step 306: The router performs authorization authentication of the second account and password information of the mobile terminal.
步骤307,授权认证通过后,移动终端通过telnet或ssh向路由器发送控制指令,路由器根据该控制指令进行告警信息管理和/或业务配置。Step 307: After the authorization is passed, the mobile terminal sends a control command to the router through telnet or ssh, and the router performs alarm information management and/or service configuration according to the control instruction.
实施例四:Embodiment 4:
本实施例提供了一种路由器,请参见图4所示,包括:第一连接确定模块41、告警判断模块42和告警发送模块43。This embodiment provides a router, as shown in FIG. 4, including: a first connection determining module 41, an alarm determining module 42, and an alarm sending module 43.
第一连接确定模块41,设置为确定内网和外网移动终端之间建立的隧道连接,该隧道连接是基于UDP或TCP建立的。The first connection determining module 41 is configured to determine a tunnel connection established between the intranet and the extranet mobile terminal, the tunnel connection being established based on UDP or TCP.
告警判断模块42,设置为判断内网路由器上是否有告警信息产生。The alarm judging module 42 is configured to determine whether an alarm information is generated on the intranet router.
可选地,所述告警信息包括:所述路由器本身的告警信息和/或所述路由器所在的内网中的其他设备发送到所述路由器的告警信息。Optionally, the alarm information includes: alarm information of the router itself and/or alarm information sent by other devices in the intranet of the router to the router.
告警发送模块43,设置为如果判定所述内网路由器上有告警信息产生,将产生的告警信息通过隧道连接发送至移动终端。 The alarm sending module 43 is configured to send the generated alarm information to the mobile terminal through a tunnel connection if it is determined that the alarm information is generated on the intranet router.
可选地,路由器还包括连接建立模块44,设置为在所述第一连接确定模块41确定内网路由器和外网移动终端之间建立的隧道连接之前,获取移动终端的第一账号和密码信息;将获取的第一账号和密码信息与路由器预先配置添加的注册信息进行验证比对;在第一账号和密码验证通过后,建立该第一账号和密码信息与移动终端的地址信息之间的对应关系;根据该对应关系,通过用户数据报协议或传输控制协议建立内网路由器和外网移动终端之间的隧道连接。告警发送模块43确定所述告警信息需远程发送的所述第一账号的信息;根据第一账号的信息以及对应关系确定与第一账号的信息相对应的移动终端的地址信息,根据该地址信息通过隧道连接将路由器的告警信息发送至该移动终端。Optionally, the router further includes a connection establishing module 44, configured to acquire the first account and password information of the mobile terminal before the first connection determining module 41 determines the tunnel connection established between the intranet router and the external network mobile terminal. And verifying the obtained first account and password information with the registration information added by the router in advance; after the first account and the password are verified, establishing the first account and the password information and the address information of the mobile terminal Corresponding relationship; according to the correspondence, establishing a tunnel connection between the intranet router and the external network mobile terminal by using a user datagram protocol or a transmission control protocol. The alarm sending module 43 determines information of the first account that needs to be sent remotely by the alarm information, and determines address information of the mobile terminal corresponding to the information of the first account according to the information of the first account and the corresponding relationship, according to the address information. The router's alarm information is sent to the mobile terminal through a tunnel connection.
可选地,路由器还包括指令处理模块45,设置为在所述第一连接确定模块确定内网路由器和外网移动终端之间建立的隧道连接之后,通过telnet或ssh接收来自移动终端的控制指令。此外,路由器还可以根据该控制指令进行告警信息处理和/或业务配置。可选地,为了加强路由器接收控制指令的安全性,指令处理模块46还设置为接收来自移动终端的第二账号和密码信息,并对该第二账号和密码信息进行验证。可选地,可以将该第二账号和密码信息在路由器接收来自移动终端的控制指令之前接收并验证,验证通过后再接收来自移动终端的控制指令,也可以是同时接收第二账号和密码信息以及控制指令,然后对该第二账号和密码信息进行验证,当验证通过后再执行该控制指令。Optionally, the router further includes an instruction processing module 45 configured to receive, after the first connection determining module determines a tunnel connection established between the intranet router and the extranet mobile terminal, receive a control instruction from the mobile terminal by using telnet or ssh . In addition, the router can also perform alarm information processing and/or service configuration according to the control instruction. Optionally, in order to enhance the security of the router receiving the control instruction, the instruction processing module 46 is further configured to receive the second account and password information from the mobile terminal, and verify the second account and the password information. Optionally, the second account and password information may be received and verified before the router receives the control instruction from the mobile terminal, and the control command from the mobile terminal is received after the verification is passed, or the second account and the password information are simultaneously received. And controlling the instruction, and then verifying the second account and the password information, and executing the control instruction after the verification is passed.
实施例五:Embodiment 5:
本实施例提供了一种移动终端,如图5所示,包括:第二连接确定模块51和告警接收模块52。The embodiment provides a mobile terminal. As shown in FIG. 5, the mobile terminal includes a second connection determining module 51 and an alarm receiving module 52.
第二连接确定模块51,设置为确定外网和内网路由器之间建立的隧道连接。The second connection determining module 51 is configured to determine a tunnel connection established between the external network and the intranet router.
告警接收模块52,设置为通过隧道连接接收路由器发送的告警信息。The alarm receiving module 52 is configured to receive the alarm information sent by the router through the tunnel connection.
在本实施例中,移动终端还包括账号信息处理模块53,设置为在所述第二连接确定模块确定外网移动终端和内网路由器之间建立的隧道连接之前,将所述移动终端的第一账号和密码信息发送到所述路由器。此外,还可以接 收路由器返回的验证结果信息。In this embodiment, the mobile terminal further includes an account information processing module 53 configured to set the mobile terminal before the second connection determining module determines the tunnel connection established between the external network mobile terminal and the intranet router. An account and password information is sent to the router. In addition, you can also pick up Receive the verification result information returned by the router.
在本实施例中,移动终端还包括指令发送模块54,设置为在所述第二连接确定模块确定外网移动终端和内网路由器之间建立的隧道连接之后,通过远程终端协议或安全外壳协议发送控制指令至所述路由器,即将控制指令通过telnet或ssh发送至路由器。可选地,还可以将第二账号和密码信息通过telnet或ssh发送至路由器。In this embodiment, the mobile terminal further includes an instruction sending module 54 configured to pass the remote terminal protocol or the secure shell protocol after the second connection determining module determines the tunnel connection established between the external network mobile terminal and the intranet router. Sending a control command to the router, that is, sending the control command to the router through telnet or ssh. Optionally, the second account and password information may also be sent to the router through telnet or ssh.
可选地,所述指令发送模块还设置为:在通过远程终端协议或安全外壳协议向所述路由器发送控制指令之前,将所述移动终端的第二账号和密码信息通过远程终端协议或安全外壳协议发送至所述路由器。Optionally, the instruction sending module is further configured to: pass the second account and password information of the mobile terminal to a remote terminal protocol or a secure shell before sending the control instruction to the router by using a remote terminal protocol or a secure shell protocol. The protocol is sent to the router.
一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现所述的告警信息发送的方法以及所述的告警信息接收的方法。A computer readable storage medium storing computer executable instructions, the method of transmitting the alarm information when the computer executable instructions are executed by the processor, and the method of receiving the alarm information.
本领域普通技术人员可以理解上述实施例的全部或部分步骤可以使用计算机程序流程来实现,所述计算机程序可以存储于一个计算机可读存储介质中,所述计算机程序在相应的硬件平台上(如系统、设备、装置、器件等)执行,在执行时,包括方法实施例的步骤之一或其组合。One of ordinary skill in the art will appreciate that all or a portion of the steps of the above-described embodiments can be implemented using a computer program flow, which can be stored in a computer readable storage medium, such as on a corresponding hardware platform (eg, The system, device, device, device, etc. are executed, and when executed, include one or a combination of the steps of the method embodiments.
可选地,上述实施例的全部或部分步骤也可以使用集成电路来实现,这些步骤可以被分别制作成一个个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。Alternatively, all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve.
上述实施例中的装置/功能模块/功能单元可以采用通用的计算装置来实现,它们可以集中在单个的计算装置上,也可以分布在多个计算装置所组成的网络上。The devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
上述实施例中的装置/功能模块/功能单元以软件功能模块的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。上述提到的计算机可读取存储介质可以是只读存储器,磁盘或光盘等。When the device/function module/functional unit in the above embodiment is implemented in the form of a software function module and sold or used as a stand-alone product, it can be stored in a computer readable storage medium. The above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
通过本发明实施例的告警信息发送方法,建立跨网络的隧道连接,实现了内网路由器与外网移动终端的跨网络通信;当内网路由器产生重要告警时, 路由器可以通过该隧道连接将产生的告警信息发送出去,实现了告警信息的跨网络远程发送,使得不在值班室的值班人员和管理员也能得知机房的告警信息。并且通过本发明实施例的移动终端接收告警信息的方法,用户利用建立好的跨网络的隧道连接接收来自路由器发送的告警信息,避免了路由器产生告警信息时,由于值班人员和管理员的临时离开,不能及时接收告警信息而带来不可预估的损失的问题。 The method for transmitting the alarm information in the embodiment of the present invention establishes a tunnel connection across the network, and realizes cross-network communication between the intranet router and the external network mobile terminal; when the intranet router generates an important alarm, The router can send out the generated alarm information through the tunnel connection, and realize the remote transmission of the alarm information across the network, so that the on-duty personnel and administrators who are not in the duty room can also know the alarm information of the equipment room. And the method for receiving the alarm information by the mobile terminal in the embodiment of the present invention, the user uses the established tunnel connection across the network to receive the alarm information sent by the router, and avoids the temporary departure of the on-duty personnel and the administrator when the router generates the alarm information. The problem that the alarm information cannot be received in time and the unpredictable loss is caused.
Claims (21)
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510646714.4A CN106571937A (en) | 2015-10-08 | 2015-10-08 | Router, mobile terminal and alarm information sending and reception method |
| CN201510646714.4 | 2015-10-08 |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| WO2016197993A1 true WO2016197993A1 (en) | 2016-12-15 |
Family
ID=57502947
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PCT/CN2016/085870 Ceased WO2016197993A1 (en) | 2015-10-08 | 2016-06-15 | Router, mobile terminal, and alarm information sending method, and alarm information receiving method |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN106571937A (en) |
| WO (1) | WO2016197993A1 (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112367365A (en) * | 2020-10-26 | 2021-02-12 | 南京燚麒智能科技有限公司 | Method and system for directionally pushing data |
| CN113347019A (en) * | 2021-04-28 | 2021-09-03 | 上海淇玥信息技术有限公司 | Alarm message processing method and system for isolated cluster and computer equipment |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107733688A (en) * | 2017-09-14 | 2018-02-23 | 国网湖北省电力公司孝感供电公司 | A kind of warning system based on mobile terminal |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090046687A1 (en) * | 2007-08-13 | 2009-02-19 | Samsung Electronics Co. Ltd | Mobile wimax network system having private network and mobile ip terminal processing method thereof |
| TW200924436A (en) * | 2007-11-22 | 2009-06-01 | D Link Corp | Method of connecting network terminal devices of a private network by using a hand-held electronic device |
| CN101984611A (en) * | 2010-10-18 | 2011-03-09 | 中山大学 | Digital home public gateway based on internet protocol (IP) network |
| CN103220202A (en) * | 2005-10-21 | 2013-07-24 | 三星电子株式会社 | Method and apparatus of performing tunnel signaling over IP tunneling path |
| CN103871217A (en) * | 2014-04-01 | 2014-06-18 | 上海庆科信息技术有限公司 | Method for giving alarm based on Wi-Fi wireless internet |
| CN203825792U (en) * | 2014-03-19 | 2014-09-10 | 珠海市太川电器制造有限公司 | Internet-based security alarm linked system |
-
2015
- 2015-10-08 CN CN201510646714.4A patent/CN106571937A/en active Pending
-
2016
- 2016-06-15 WO PCT/CN2016/085870 patent/WO2016197993A1/en not_active Ceased
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103220202A (en) * | 2005-10-21 | 2013-07-24 | 三星电子株式会社 | Method and apparatus of performing tunnel signaling over IP tunneling path |
| US20090046687A1 (en) * | 2007-08-13 | 2009-02-19 | Samsung Electronics Co. Ltd | Mobile wimax network system having private network and mobile ip terminal processing method thereof |
| TW200924436A (en) * | 2007-11-22 | 2009-06-01 | D Link Corp | Method of connecting network terminal devices of a private network by using a hand-held electronic device |
| CN101984611A (en) * | 2010-10-18 | 2011-03-09 | 中山大学 | Digital home public gateway based on internet protocol (IP) network |
| CN203825792U (en) * | 2014-03-19 | 2014-09-10 | 珠海市太川电器制造有限公司 | Internet-based security alarm linked system |
| CN103871217A (en) * | 2014-04-01 | 2014-06-18 | 上海庆科信息技术有限公司 | Method for giving alarm based on Wi-Fi wireless internet |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112367365A (en) * | 2020-10-26 | 2021-02-12 | 南京燚麒智能科技有限公司 | Method and system for directionally pushing data |
| CN113347019A (en) * | 2021-04-28 | 2021-09-03 | 上海淇玥信息技术有限公司 | Alarm message processing method and system for isolated cluster and computer equipment |
| CN113347019B (en) * | 2021-04-28 | 2024-08-20 | 上海淇玥信息技术有限公司 | A method, system and computer device for processing alarm messages of isolated clusters |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106571937A (en) | 2017-04-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10735511B2 (en) | Device and related method for dynamic traffic mirroring | |
| US10938800B2 (en) | System and method for secure access of a remote system | |
| US8484705B2 (en) | System and method for installing authentication credentials on a remote network device | |
| US9130826B2 (en) | System and related method for network monitoring and control based on applications | |
| US9813447B2 (en) | Device and related method for establishing network policy based on applications | |
| US9584393B2 (en) | Device and related method for dynamic traffic mirroring policy | |
| US9256636B2 (en) | Device and related method for application identification | |
| US9230213B2 (en) | Device and related method for scoring applications running on a network | |
| WO2011047600A1 (en) | Method, apparatus and system for detecting botnet | |
| JP6193185B2 (en) | Communication device, terminal device, and program | |
| CN104967590B (en) | A kind of methods, devices and systems for transmitting communication information | |
| WO2015131524A1 (en) | Remote access server method and web server | |
| WO2016202007A1 (en) | Device operation and maintenance method and system | |
| US10033734B2 (en) | Apparatus management system, apparatus management method, and program | |
| CN112333214B (en) | A security user authentication method and system for IoT device management | |
| Sălăgean et al. | IoT applications based on MQTT protocol | |
| WO2016197993A1 (en) | Router, mobile terminal, and alarm information sending method, and alarm information receiving method | |
| WO2016197782A2 (en) | Service port management method and apparatus, and computer readable storage medium | |
| Zheng et al. | IoTAegis: A scalable framework to secure the Internet of Things | |
| CN109302397A (en) | A kind of network safety managing method, platform and computer readable storage medium | |
| US20160316021A1 (en) | Remote out of band management | |
| CN109218064A (en) | network management system and management method | |
| KR101730404B1 (en) | Method of managing network route and network entity enabling the method | |
| WO2016131358A1 (en) | Home gateway, communication management method and communication system thereof | |
| KR20170038568A (en) | SDN Controller and Method for Identifying Switch thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| 121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 16806891 Country of ref document: EP Kind code of ref document: A1 |
|
| NENP | Non-entry into the national phase |
Ref country code: DE |
|
| 122 | Ep: pct application non-entry in european phase |
Ref document number: 16806891 Country of ref document: EP Kind code of ref document: A1 |