User access method and device based on SSL (Secure Socket Layer) VPN (Virtual Private Network) gateway cluster

A gateway cluster and gateway technology, applied in the communication field, can solve problems such as low system performance, achieve cost savings and avoid system performance bottlenecks

Active Publication Date: 2011-10-19
XINHUASAN INFORMATION TECH CO LTD
View PDF4 Cites 50 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0013] The present invention provides a user access method and device based on an SSL VPN gateway cluster to solve the problem of low system performance caused by using a load balancer in an SSL VPN gateway cluster in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • User access method and device based on SSL (Secure Socket Layer) VPN (Virtual Private Network) gateway cluster
  • User access method and device based on SSL (Secure Socket Layer) VPN (Virtual Private Network) gateway cluster
  • User access method and device based on SSL (Secure Socket Layer) VPN (Virtual Private Network) gateway cluster

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0033] Embodiments of the present invention will be described in detail below in conjunction with the accompanying drawings.

[0034] see image 3 , is a schematic diagram of networking of the SSL VPN gateway cluster solution in the embodiment of the present invention. The two SSL VPN gateways in the figure use VRRP (Virtual Router Redundancy Protocol, Virtual Router Redundancy Protocol) to form a gateway cluster. image 3 Only two SSL VPN gateways are shown in , but the number of SSLVPN gateways in the SSLVPN gateway cluster solution networking in the embodiment of the present invention is not limited to two.

[0035] Each SSL VPN gateway in the SSL VPN gateway cluster is configured as follows:

[0036] (1) Each SSL VPN gateway provides different IP addresses externally and internally; that is, each gateway uses a private network IP address for the internal network (server side), and uses a public network IP address for the external network (user side);

[0037] (2) Each S...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a user access method and a device based on an SSL (Secure Socket Layer) VPN (Virtual Private Network) gateway cluster. The gateways in the SSL VPN gateway cluster use a VRRP (Virtual Router Redundancy Protocol), and are configured with cluster neighbor table entries which contain the current states of neighbor gateways and current user connecting number. The method comprises the following steps that the gateways maintain the cluster neighbor table entries through a cluster neighbor probe process which is periodically executed; and when the master gateway receives an SSL access request transmitted to the SSL VPN gateway cluster VRRP backup tram address by a user terminal, and judges that no gateway processing source IP (Internet Protocol) address is the access request of the source IP address of the SSL access request, according to the current states of the neighbor gateways and the current user connecting number in the cluster neighbor table entries, as well as the current user connecting number of the master gateway, the gateway which has minimum load and can be accessible is selected, and the user terminal is redirected to the neighbor gateway. The invention can realize SSL VPN gateway cluster load balancing and improves the property of a system.

Description

technical field [0001] The present invention relates to the technical field of communications, in particular to a user access method and device based on an SSL VPN gateway cluster. Background technique [0002] VPN (Virtual Private Network, Virtual Private Network) is defined as establishing a temporary and secure connection through a public network (usually the Internet), and is a safe and stable tunnel passing through the public network. VPN can help remote users, company branches, business partners and suppliers establish trusted and secure connections with the company's intranet, and is used to cost-effectively connect to the secure extranet virtual private network of business partners and users. VPN mainly adopts tunnel technology, encryption and decryption technology, key management technology and user and device identity authentication technology. [0003] SSL (Secure Sockets Layer, Secure Sockets Layer) is a set of Internet data security protocols, which are widely ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/66
Inventor 梁鹏胡国华
Owner XINHUASAN INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap