A method and network device for dialing into a network
By establishing a proxy dialing entry in the campus BRAS device to manage user access permissions, the problem of frequent disconnections caused by BRAS device authentication failures was solved, and users were able to access the campus network stably.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Patents(China)
- Current Assignee / Owner
- NEW H3C TECH CO LTD
- Filing Date
- 2025-01-19
- Publication Date
- 2026-07-07
AI Technical Summary
In the campus network of the joint operator, after a user successfully connects to the on-campus BRAS device, frequent disconnections occur due to the failure of the operator's BRAS device authentication, preventing the user from accessing on-campus resources.
By establishing proxy dialing entries in the campus BRAS device, key user information and proxy dialing results are recorded, user network access permissions are managed, and users can still access the campus network when operator authentication fails.
This solution resolves the frequent disconnection issues caused by BRAS device authentication failures by operators, improving the stability and reliability of user access to the campus network.
Smart Images

Figure CN120050261B_ABST
Abstract
Description
Technical Field
[0001] This specification relates to the field of communication technology, and in particular to a method and network equipment for dial-up network access. Background Technology
[0002] BRAS: Broadband Remote Access Server.
[0003] To meet the diverse needs of campus network users for network access, improve user satisfaction, and simplify the construction and maintenance of campus networks, more and more universities are adopting a model of joint operation and co-construction of multiple access points with multiple operators, delegating the choice of network access points to students, who can choose to open a broadband account with a particular operator according to their own needs.
[0004] In a joint operation scenario, deploying PPPoE proxy dialing functionality on on-campus BRAS equipment or PPPoE proxy dialing gateways not only helps schools and operators improve BRAS service deployment efficiency and simplify joint operation models, but also provides campus network users with an excellent internet experience. PPPoE proxy dialing refers to a technology where on-campus BRAS equipment or PPPoE proxy dialing gateways initiate proxy dialing authentication with the BRAS equipment of their respective operators for on-campus users who have activated the operator's "proxy dialing" service. Here, "proxy dialing" service generally refers to internet access services for users with operator broadband accounts.
[0005] In PPPoE dialing applications, depending on the device providing the PPPoE dialing function, there are two main types: integrated PPPoE dialing mode and PPPoE dialing gateway mode.
[0006] Integrated PPPoE dialing mode: In this mode, the on-campus BRAS equipment also serves as the PPPoE dialing equipment, that is, the on-campus BRAS equipment provides both BRAS access authentication function and PPPoE dialing function for on-campus users.
[0007] PPPoE dialing gateway mode: In this mode, the PPPoE dialing function is provided by a separate PPPoE dialing device (i.e., PPPoE dialing gateway), and the on-campus BRAS device no longer serves as the PPPoE dialing device.
[0008] However, during the user's dialing process, there are actually two dialing actions: one is when the user dials online on the campus BRAS, and the second is when the user, after logging in on the campus BRAS, triggers the campus BRAS to initiate a dial-up connection with the operator's BRAS. Regardless of whether it's on the campus BRAS or the operator's BRAS, whenever a user logs off, the other user needs to be notified to log off simultaneously. This presents a problem: a user might successfully dial online on the campus BRAS, but due to some reason (such as unpaid bills), the dial-up connection with the operator's BRAS fails, causing the campus BRAS user to drop out. Then the terminal dials again, triggering this cycle repeatedly, ultimately preventing the user from accessing campus resources. Summary of the Invention
[0009] To overcome the problems existing in related technologies, this manual provides a method and network equipment for dial-up network access.
[0010] According to a first aspect of the embodiments of this specification, a method for dialing into a network is provided, the method comprising:
[0011] Receive dialing requests sent by users within the park and obtain key user information from the dialing requests;
[0012] The system initiates a proxy dialing request to the operator based on the dialing request and receives the proxy dialing result from the operator based on the proxy dialing request.
[0013] Establish a dispatch table entry based on the user's key information and the dispatch results;
[0014] The user's access to the campus network and / or access to the operator's network is managed according to the aforementioned dial-up entries.
[0015] The step of receiving dialing requests from users within the park and obtaining key user information from the dialing requests includes:
[0016] Receive dialing requests sent by users within the park, and at least obtain the IP address and MAC address assigned to the user by the park's BRAS from the dialing requests.
[0017] The step of initiating a proxy dialing request to the operator based on the dialing request includes:
[0018] When the campus BRAS identifies that a user is accessing the operator's network based on the dialing request, it initiates a proxy dialing request to the operator.
[0019] The step of receiving the dispatch result from the operator based on the dispatch request includes:
[0020] The system receives the authentication result of the user by the operator based on the proxy dialing request. The authentication result includes: authentication passed or failed, and / or the reason code for authentication failure, as well as the proxy dialing address information assigned to the user by the operator after successful authentication.
[0021] The step of establishing a dispatch table entry based on the user's key information and the dispatch result includes:
[0022] Obtain the IP address and MAC address assigned to the user by the campus BRAS, as well as the authentication result, and establish a proxy dialing table entry based on the correspondence between the IP address assigned to the user by the BRAS, the MAC address of the user, and the authentication result.
[0023] The step of managing the user's access to the campus network and / or access to the operator network according to the dial-up entry includes:
[0024] If a user accesses an operator's network, the system will identify whether there is a corresponding dial-up address information assigned to the user by the operator in the dial-up table entry.
[0025] If there is a proxy address information assigned to the user by the operator, the user will be allowed to access the operator's network based on the proxy address information assigned to the user by the operator.
[0026] If there is no dial-up address information assigned to the user by the operator, then only the user is allowed to access the campus network.
[0027] As can be seen from the above embodiments, by establishing a proxy dialing entry based on the user's key information and the proxy dialing result, even if the operator fails to authenticate the user, the user can still access the campus network based on the proxy dialing entry.
[0028] According to a second aspect of the embodiments of this specification, a network device is provided, the network device comprising:
[0029] The receiving module is used to receive dialing requests sent by users within the park and to obtain key user information from the dialing requests.
[0030] The sending module is used to initiate a proxy dialing request to the operator based on the dialing request;
[0031] The receiving module is also used to receive the dispatch result fed back by the operator based on the dispatch request;
[0032] The processing module is used to create a dialing entry based on the user's key information and the dialing result, and to manage the user's access to the campus network and / or access to the operator's network based on the dialing entry.
[0033] Specifically, the receiving module is used to receive dialing requests sent by users within the park, and to obtain at least the IP address and MAC address assigned to the user by the park's BRAS from the dialing request.
[0034] The receiving module is further configured to receive the authentication result of the operator on the user based on the proxy dialing request. The authentication result includes: authentication passed or authentication failed, and / or the reason code for authentication failed, as well as the proxy dialing address information assigned to the user by the operator after successful authentication.
[0035] Specifically, the processing module is used to identify whether there is corresponding dialing address information allocated to the user by the operator in the dialing table if the user accesses the operator's network.
[0036] If there is a proxy address information assigned to the user by the operator, the user will be allowed to access the operator's network based on the proxy address information assigned to the user by the operator.
[0037] If there is no dial-up address information assigned to the user by the operator, then only the user is allowed to access the campus network.
[0038] It should be understood that the above general description and the following detailed description are exemplary and explanatory only, and are not intended to limit this specification. Attached Figure Description
[0039] The accompanying drawings, which are incorporated in and form part of this specification, illustrate embodiments consistent with this specification and, together with the description, serve to explain the principles of this specification.
[0040] Figure 1 This is a schematic diagram of a campus network scenario architecture illustrated in this specification according to an exemplary embodiment.
[0041] Figure 2 This is a flowchart illustrating a method for dialing into a network according to an exemplary embodiment. Detailed Implementation
[0042] Exemplary embodiments will now be described in detail, examples of which are illustrated in the accompanying drawings. When the following description relates to the drawings, unless otherwise indicated, the same numerals in different drawings denote the same or similar elements. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with this specification. Rather, they are merely examples of apparatuses and methods consistent with some aspects of this specification as detailed in the appended claims.
[0043] The terminology used in this specification is for the purpose of describing particular embodiments only and is not intended to be limiting of this specification. The singular forms “a,” “the,” and “the” as used in this specification and the appended claims are also intended to include the plural forms unless the context clearly indicates otherwise. It should also be understood that the term “and / or” as used herein refers to and includes any and all possible combinations of one or more of the associated listed items.
[0044] It should be understood that although the terms first, second, third, etc., may be used in this specification to describe various information, this information should not be limited to these terms. These terms are only used to distinguish information of the same type from one another. For example, without departing from the scope of this specification, first information may also be referred to as second information, and similarly, second information may also be referred to as first information. Depending on the context, the word "if" as used herein may be interpreted as "when," "when," or "in response to determination."
[0045] In this embodiment, "park" can refer to a specific service area, such as a campus network or a company network.
[0046] like Figure 1 In one campus network scenario, the on-campus users are those who connect and authenticate via IPOE or PPPoE. The on-campus BRAS is a device that provides BRAS access services and PPPoE proxy dialing services to on-campus users. Specifically, the on-campus BRAS device includes the following two types of interfaces for proxy dialing services:
[0047] The first type: On-campus user access interface: This refers to the interface on the on-campus BRAS device that provides BRAS access services to on-campus users. In PPPoE dial-up networking, the campus network administrator controls the access permissions of on-campus users by deploying OoS policies on the on-campus BRAS device. That is, when an on-campus user authenticates and goes online through this interface using an on-campus account, they only have on-campus network access permissions and no external network access permissions.
[0048] The second type: PPPoE proxy dialing interface: This refers to the interface on the campus BRAS device that provides proxy dialing services to campus users who have activated the "proxy dialing" service. If a campus user has activated the "proxy dialing" service with their operator, after the user authenticates and goes online on the campus BRAS device using their campus account, the campus BRAS device will automatically initiate a proxy dialing authentication request to the user's operator's BRAS device through the PPPoE proxy dialing interface. After successful authentication, the user can access the external network through their operator.
[0049] On-campus DHCP server: dynamically assigns IP addresses to authenticated users within the campus.
[0050] On-campus AAA server: Interacts with the on-campus BRAS to complete user authentication, authorization, and billing.
[0051] On-campus Portal Server: A server-side system that receives authentication requests from on-campus users, provides a web authentication page to on-campus users, and interacts with on-campus BRAS devices to exchange user authentication information (username, password, etc.) to complete the identity authentication of on-campus users.
[0052] Operator BRAS: Equipment that provides BRAS access services for PPPOE dialing on campus BRAS.
[0053] The basic workflow for PPPoE payouts is as follows:
[0054] On-campus users activate the operator's "dial-up" service with the operator and bind the operator-provided "dial-up" account to their on-campus account on the on-campus AAA server. Whether the binding process involves the on-campus user binding the account themselves or first submitting a request to the campus network administrator for binding depends on the support capabilities of the on-campus AAA server.
[0055] After an on-campus user authenticates and goes online using their on-campus account on the on-campus BRAS device, the BRAS device, while maintaining the on-campus access authentication user information of the on-campus user, will also mark the user as a PPPoE proxy user. That is, for each on-campus user who has activated the "proxy" service, the on-campus BRAS device will mark and maintain two identities: "on-campus access authentication user" and "PPPoE proxy user". For the on-campus user's intranet traffic, the BRAS device will process it as the on-campus access authentication user (such as an IPEOE user) at the time of going online, and directly allow intranet traffic. For the on-campus user's external network traffic, the BRAS device will process it as a PPPoE proxy user.
[0056] When the on-campus AAA server receives a billing start message from the on-campus BRAS device regarding a certain user, the on-campus AAA server will notify the on-campus BRAS device to start PPPoE dialing for the billing user through a COA message. The COA message will carry information such as the "dialing" account opened by the user.
[0057] The on-campus BRAS device simulates a PPPoE connection based on the received COA message, and uses the "proxy dialing" account information carried in the COA message to initiate PPPoE proxy dialing to the corresponding operator's BRAS device through the proxy dialing interface. The operator's BRAS device acts as the PPPoE server.
[0058] The operator authenticates PPPoE dial-up users. After successful authentication, the operator allocates IP addresses and other information to the PPPoE dial-up users through NCP negotiation.
[0059] After a successful dial-up call, the BRAS device on campus will generate and maintain the session information of the dial-up user.
[0060] When the campus BRAS device receives external network traffic from a user, it first replaces the source P address of the packet with the IP address assigned by the operator to the dial-up user, and then encapsulates the packet in PPPOE before forwarding it to the corresponding operator's BRAS device.
[0061] When the on-campus BRAS device receives backhaul traffic from the external network, it first performs PPPoE decapsulation on the packet, then replaces the destination P address of the packet with the user's on-campus P address before forwarding it to the corresponding on-campus user.
[0062] As can be seen from the above process, there are actually two dialing actions during the user's entire dialing process: the first is when the user dials online on the campus BRAS, and the second is when the campus BRAS initiates a dial-up connection with the operator's BRAS after the user goes online on the campus BRAS. Regardless of whether it's on the campus BRAS or the operator's BRAS, whenever a user goes offline, the other user needs to be notified to go offline simultaneously. This presents a problem: a user successfully dials online on the campus BRAS, but due to some reason (such as unpaid bills), the dial-up connection with the operator's BRAS fails, causing the campus BRAS user to drop out. Then the terminal dials again, triggering this cycle repeatedly, ultimately preventing the user from accessing campus resources.
[0063] To address the aforementioned technical problems, this disclosure provides a method for dial-up network access, such as... Figure 2 As shown, the method includes:
[0064] S201 receives dialing requests sent by users within the park and obtains key user information from the dialing requests;
[0065] S202 initiates a proxy dialing request to the operator based on the dialing request, and receives the proxy dialing result from the operator based on the proxy dialing request.
[0066] S203 establishes a dispatch table entry based on the user's key information and the dispatch result;
[0067] S204 manages the user's access to the campus network and / or access to the operator's network according to the dial-up entry.
[0068] In step S201, the user initiates a dial-up call to the campus (campus) BRAS. After the campus BRAS successfully dials up, the user will obtain the assigned campus (campus) IP address, and obtain the user's IP address and MAC address.
[0069] In this embodiment, a proxy dialing entry can be created, as shown in Table 1. Here, IP is the address assigned to the user when dialing into the campus network BRAS; MAC is the user's MAC address; Destination interface: the outgoing interface forwarded after traffic hits the proxy dialing entry. If the proxy dialing is successful, the outgoing interface of the proxy user will be filled in here; otherwise, it will be all 0, indicating no proxy dialing outgoing interface, and routing needs to be checked for forwarding; Proxy dialing IP: the IP address assigned by the operator after the proxy user successfully dials in; Proxy dialing MAC: the MAC address of the proxy user, which is actually the MAC address of the user's terminal, authorized by the RADIUS server during COA; Proxy dialing result: 0 indicates successful proxy dialing, 1-99 (defining the corresponding number of values according to actual needs) defines the corresponding proxy dialing failure reason. For example, "1" indicates unpaid fees, "2" indicates the account does not exist, "3" indicates an incorrect password, etc., and "99" indicates that proxy dialing was not triggered.
[0070]
[0071] Table 1
[0072] In step S201, the obtained campus (park) IP address and MAC address can be recorded in Table 1.
[0073] In step S202, a proxy dialing request is initiated to the operator based on the proxy dialing process (the proxy dialing process is carried out in the basic working process of the current PPPOE proxy dialing, and will not be repeated here), and the authentication result of the operator on the user according to the proxy dialing request is received. The authentication result includes: authentication passed or authentication failed, and / or the reason code for authentication failed, as well as the proxy dialing address information assigned to the user by the operator after successful authentication.
[0074] The dialing results obtained from the operator can be recorded in Table 1 and correspond to the user's campus IP address.
[0075] In this embodiment, if a user accesses the operator's network, it is determined whether there is corresponding dialing address information assigned to the user by the operator in the dialing table. If there is dialing address information assigned to the user by the operator, the user is allowed to access the operator's network according to the dialing address information assigned to the user by the operator. If there is no dialing address information assigned to the user by the operator, the user is only allowed to access the campus network.
[0076] To illustrate this application in detail, the following examples are also provided in the embodiments of this disclosure:
[0077] 1. User 1 and User 2 successively initiated dial-up connections to the campus BRAS. After successful dial-up, User 1 was assigned the IP address 10.1.1.2, and User 2 was assigned the IP address 10.1.1.3. The user dial-up entries generated by the campus BRAS are shown in Table 2:
[0078]
[0079]
[0080] Table 2
[0081] 2. After users 1 and 2 are successfully authenticated on the campus network BRAS, they send a billing start message to the campus AAA server. After receiving the billing start message, the campus AAA server obtains the username, password, MAC address and other information of users 1 and 2, and sends COA messages to the campus BRAS device to trigger the dial-up process.
[0082] 3. When the campus BRAS receives the COA messages corresponding to User 1 and User 2, it parses out the corresponding fields and responds with an ACK to the campus AAA server. At the same time, it initiates the proxy dialing process based on the parsed username, password, MAC address and other information, and sends a PPPoE authentication request to the operator's BRAS.
[0083] 4. User 1 successfully dialed up and obtained the IP address 20.1.1.2 with interface 1 as the outgoing interface. The corresponding dialing table entries were refreshed, as shown in Table 3:
[0084] Index Ip Mac Destination interface proxy IP Mac dialing Disbursement Results 1 10.1.1.2 1-2-3 interface1 20.1.1.2 1-2-3 0 2 10.1.1.3 1-2-4 0 0 0 99
[0085] Table 3
[0086] User 2's dialing failed (it will periodically and continuously trigger dialing). The operator's BRAS returned the authentication failure reason as unpaid fees. Based on this result, the dialing table entries were refreshed, as shown in Table 4:
[0087] Index Ip Mac Destination interface proxy IP Mac dialing Disbursement Results 1 10.1.1.2 1-2-3 interface1 20.1.1.2 1-2-3 0 2 10.1.1.3 1-2-4 0 0 0 1
[0088] 5. After User 1 successfully dials in, a DM message will be sent to notify the AAA server that User 1 has successfully dialed in. If User 2 fails to dial in, a DM message will also be sent to notify the AAA server that User 2 has failed to dial in. The reason for failure will also be sent to the AAA server, but the user will not be taken offline.
[0089] 6. If User 1's traffic accesses the campus network, it is routed and forwarded according to the configured policy. If it accesses the external network, it is routed and forwarded according to the configured policy, and User 1's address 10.1.1.2 is simultaneously replaced with the address 20.1.1.2 assigned by the dial-up provider before forwarding. If User 2's traffic accesses the campus network, it is routed and forwarded according to the configured policy. If it accesses the external network, it is directly discarded because the outgoing interface is 0.
[0090] 7. The process of user 1 going offline is the same as before. Regardless of whether it is initiated by the user, the campus network BRAS, or the operator BRAS, the other two offline users will be notified simultaneously.
[0091] 8. When User 2 goes offline, the campus AAA is notified to go offline. After User 2 recharges, the campus network BRAS will successfully make a dial-up call to the operator's BRAS. At the same time, the entry for User 2 on the campus network BRAS will be refreshed to a normal dial-up user entry. The campus network BRAS will then notify the campus AAA via DM message that the user dial-up call was successful and the overdue payment mark will be refreshed.
[0092] As can be seen from the above embodiments, by establishing a proxy dialing entry and recording key user information and proxy dialing results, the problem of users being unable to access the campus network when the campus network BRAS is used as a proxy dialing device is solved, and users fail to access the campus network when the proxy dialing authentication fails due to operator arrears or other reasons.
[0093] Based on the above method embodiments, this disclosure also provides a network device, the network device comprising:
[0094] The receiving module is used to receive dialing requests sent by users within the park and to obtain key user information from the dialing requests.
[0095] The sending module is used to initiate a proxy dialing request to the operator based on the dialing request;
[0096] The receiving module is also used to receive the dispatch result fed back by the operator based on the dispatch request;
[0097] The processing module is used to create a dialing entry based on the user's key information and the dialing result, and to manage the user's access to the campus network and / or access to the operator's network based on the dialing entry.
[0098] Specifically, the receiving module is used to receive dialing requests sent by users within the park, and to obtain at least the IP address and MAC address assigned to the user by the park's BRAS from the dialing request.
[0099] The receiving module is further configured to receive the authentication result of the operator on the user based on the proxy dialing request. The authentication result includes: authentication passed or authentication failed, and / or the reason code for authentication failed, as well as the proxy dialing address information assigned to the user by the operator after successful authentication.
[0100] Specifically, the processing module is used to identify whether there is corresponding dialing address information allocated to the user by the operator in the dialing table if the user accesses the operator's network.
[0101] If there is a proxy address information assigned to the user by the operator, the user will be allowed to access the operator's network based on the proxy address information assigned to the user by the operator.
[0102] If there is no dial-up address information assigned to the user by the operator, then only the user is allowed to access the campus network.
[0103] For the device embodiments, since they basically correspond to the method embodiments, the relevant parts can be referred to in the description of the method embodiments. The device embodiments described above are merely illustrative. The modules described as separate components may or may not be physically separate, and the components shown as modules may or may not be physical modules, that is, they may be located in one place or distributed across multiple network modules. Some or all of the modules can be selected to achieve the purpose of the solution in this specification according to actual needs. Those skilled in the art can understand and implement this without creative effort.
[0104] The foregoing has described specific embodiments of this specification. Other embodiments are within the scope of the appended claims. In some cases, the actions or steps recited in the claims may be performed in a different order than that shown in the embodiments and may still achieve the desired result. Furthermore, the processes depicted in the drawings do not necessarily require the specific or sequential order shown to achieve the desired result. In some embodiments, multitasking and parallel processing are possible or may be advantageous.
[0105] Other embodiments of this specification will readily occur to those skilled in the art upon consideration of the specification and practice of the invention claimed herein. This specification is intended to cover any variations, uses, or adaptations that follow the general principles of this specification and include common knowledge or customary techniques in the art not claimed herein. The specification and examples are to be considered exemplary only, and the true scope and spirit of this specification are indicated by the following claims.
[0106] It should be understood that this specification is not limited to the precise structures described above and shown in the accompanying drawings, and various modifications and changes can be made without departing from its scope. The scope of this specification is limited only by the appended claims.
[0107] The above description is merely a preferred embodiment of this specification and is not intended to limit this specification. Any modifications, equivalent substitutions, improvements, etc., made within the spirit and principles of this specification should be included within the scope of protection of this specification.
Claims
1. A method for dial-up network access, characterized in that, The method includes: Receive dialing requests sent by users within the park and obtain key user information from the dialing requests; The system initiates a proxy dialing request to the operator based on the dialing request and receives the proxy dialing result from the operator based on the proxy dialing request. Establish a dispatch table entry based on the user's key information and the dispatch results; The user's access to the campus network and / or access to the operator's network is managed according to the aforementioned dial-up entries; The process of receiving the dispatch result from the operator based on the dispatch request includes: receiving the authentication result of the user by the operator based on the dispatch request, wherein the authentication result includes: authentication passed or authentication failed, and / or the reason code for authentication failed, and the dispatch address information assigned to the user by the operator after authentication passed. The step of managing the user's access to the campus network and / or access to the operator network according to the dial-up entry includes: If a user accesses an operator's network, the system will identify whether there is a corresponding dial-up address information assigned to the user by the operator in the dial-up table entry. If there is a proxy address information assigned to the user by the operator, the user will be allowed to access the operator's network based on the proxy address information assigned to the user by the operator. If there is no dial-up address information assigned to the user by the operator, then only the user is allowed to access the campus network.
2. The method according to claim 1, characterized in that, The process of receiving dialing requests from users within the park and obtaining key user information from the dialing requests includes: Receive dialing requests sent by users within the park, and at least obtain the IP address and MAC address assigned to the user by the park's BRAS from the dialing requests.
3. The method according to claim 1, characterized in that, The step of initiating a proxy dialing request to the operator based on the dialing request includes: When the campus BRAS identifies that a user is accessing the operator's network based on the dialing request, it initiates a proxy dialing request to the operator.
4. The method according to claim 1, characterized in that, The step of establishing a dispatch table entry based on the user's key information and the dispatch result includes: Obtain the IP address and MAC address assigned to the user by the campus BRAS, as well as the authentication result, and establish a proxy dialing table entry based on the correspondence between the IP address assigned to the user by the BRAS, the MAC address of the user, and the authentication result.
5. A network device, characterized in that, The network device includes: The receiving module is used to receive dialing requests sent by users within the park and to obtain key user information from the dialing requests. The sending module is used to initiate a proxy dialing request to the operator based on the dialing request; The receiving module is also used to receive the dispatch result fed back by the operator based on the dispatch request; The processing module is used to create a dialing entry based on the user's key information and the dialing result, and to manage the user's access to the campus network and / or access to the operator's network based on the dialing entry. The process of receiving the dispatch result from the operator based on the dispatch request includes: receiving the authentication result of the user by the operator based on the dispatch request, wherein the authentication result includes: authentication passed or authentication failed, and / or the reason code for authentication failed, and the dispatch address information assigned to the user by the operator after authentication passed. Specifically, the processing module is used to identify whether there is corresponding dialing address information allocated to the user by the operator in the dialing table if the user accesses the operator's network. If there is a proxy address information assigned to the user by the operator, the user will be allowed to access the operator's network based on the proxy address information assigned to the user by the operator. If there is no dial-up address information assigned to the user by the operator, then only the user is allowed to access the campus network.
6. The network device according to claim 5, characterized in that, The receiving module is specifically used to receive dialing requests sent by users within the park, and to obtain at least the IP address and MAC address assigned to the user by the park's BRAS from the dialing request.
7. The network device according to claim 5, characterized in that, The receiving module is further configured to receive the authentication result of the operator on behalf of the user based on the proxy dialing request. The authentication result includes: authentication passed or authentication failed, and / or the reason code for authentication failed, as well as the proxy dialing address information assigned to the user by the operator after successful authentication.