[go: up one dir, main page]

CN114745186A - Method for realizing data exchange between two different networks isolated from each other - Google Patents

Method for realizing data exchange between two different networks isolated from each other Download PDF

Info

Publication number
CN114745186A
CN114745186A CN202210410915.4A CN202210410915A CN114745186A CN 114745186 A CN114745186 A CN 114745186A CN 202210410915 A CN202210410915 A CN 202210410915A CN 114745186 A CN114745186 A CN 114745186A
Authority
CN
China
Prior art keywords
data exchange
message
network data
exchange system
application system
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202210410915.4A
Other languages
Chinese (zh)
Inventor
陈泉吉
黄尚强
李忠彪
刘开航
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Same Side Seville Information Technology Co ltd
Original Assignee
Same Side Seville Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Same Side Seville Information Technology Co ltd filed Critical Same Side Seville Information Technology Co ltd
Priority to CN202210410915.4A priority Critical patent/CN114745186A/en
Publication of CN114745186A publication Critical patent/CN114745186A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0209Architectural arrangements, e.g. perimeter networks or demilitarized zones
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1095Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

本发明公开了一种实现互相隔离的两种不同网络间数据交换的方法,包括步骤A1、第一应用系统向第一网络数据交换系统发送MQ消息,第一网络数据交换系统获取MQ消息并转换为消息文件,向安全边界发起通讯请求消息;步骤A2、安全边界通过文件摆渡或TCP消息的形式将消息文件摆渡到第二网络数据交换系统;步骤A3、第二网络数据交换系统解析消息文件,并将其转换为MQ消息后供第二应用系统订阅消费。本发明实现两种不同隔离的网络之间的数据通讯和数据交换,解决了业务的数据与其他组织与网络互通问题,加强了各组织、网络之间的合作,更高效、深度的利用各种业务数据。

Figure 202210410915

The invention discloses a method for realizing data exchange between two different networks that are isolated from each other, comprising step A1: a first application system sends an MQ message to a first network data exchange system, and the first network data exchange system acquires the MQ message and converts it For the message file, initiate a communication request message to the security boundary; Step A2, the security boundary ferries the message file to the second network data exchange system in the form of a file ferry or a TCP message; Step A3, the second network data exchange system parses the message file, And convert it into an MQ message for the second application system to subscribe and consume. The invention realizes data communication and data exchange between two different isolated networks, solves the problem of intercommunication between business data and other organizations and networks, strengthens cooperation between organizations and networks, and utilizes various business data.

Figure 202210410915

Description

一种实现互相隔离的两种不同网络间数据交换的方法A method for realizing data exchange between two different networks that are isolated from each other

技术领域technical field

本发明涉及数据交换技术领域,具体的说,是一种实现互相隔离的两种不同网络间数据交换的方法。The invention relates to the technical field of data exchange, in particular to a method for realizing data exchange between two different networks that are isolated from each other.

背景技术Background technique

政府机构、事业单位、高端制造、银行以及一些涉密企业等,为了满足安全保密要求,建立了多个网络环境,如涉密网、非涉密网、生产网、测试网和互联网等,实现不同网络之间的隔离和安全管理。Government agencies, institutions, high-end manufacturing, banks, and some secret-related enterprises have established multiple network environments, such as secret-related networks, non-secret-related networks, production networks, test networks, and the Internet, in order to meet security and confidentiality requirements. Isolation and security management between different networks.

随着信息化系统不断完善,在信息系统应用环境中,信息系统通常会使用到不同网络中的数据,然而一般情况下,信息系统无法直接访问请求分布在各个网络中的执行数据,通常会使用光盘、U盘、移动硬盘等存储介质,通过人工摆渡的方式数据,而这种摆渡方式效率低、繁琐,不能满足需求,因而需要建设一套系统,打通网络闭环,为信息系统提供安全、快捷的数据通道。With the continuous improvement of the information system, in the application environment of the information system, the information system usually uses data in different networks. However, in general, the information system cannot directly access and request the execution data distributed in each network. The storage media such as CD-ROM, U-disk, mobile hard disk, etc., pass the data by manual ferrying. However, this ferrying method is inefficient, cumbersome, and cannot meet the needs. Therefore, it is necessary to build a system to open up the network closed loop and provide the information system with safety and speed. data channel.

发明内容SUMMARY OF THE INVENTION

本发明的目的在于提供一种实现互相隔离的两种不同网络间数据交换的方法,用于解决现有技术中依靠人工摆渡方式实现互相隔离的不同网络间的数据交换效率低的问题。The purpose of the present invention is to provide a method for realizing data exchange between two different networks that are isolated from each other, which is used to solve the problem of low data exchange efficiency between different networks that are isolated from each other by means of manual ferrying in the prior art.

本发明通过下述技术方案解决上述问题:The present invention solves the above-mentioned problems through the following technical solutions:

一种实现互相隔离的两种不同网络间数据交换的方法,包括:A method for realizing data exchange between two different networks that are isolated from each other, including:

步骤A1、第一应用系统向第一网络数据交换系统发送MQ消息,第一网络数据交换系统获取MQ消息并转换为消息文件,向安全边界发起通讯请求消息;Step A1, the first application system sends the MQ message to the first network data exchange system, the first network data exchange system obtains the MQ message and converts it into a message file, and initiates a communication request message to the security boundary;

步骤A2、安全边界通过文件摆渡或TCP消息的形式将消息文件摆渡到第二网络数据交换系统;Step A2, the security boundary ferries the message file to the second network data exchange system in the form of file ferry or TCP message;

步骤A3、第二网络数据交换系统解析消息文件,并将其转换为MQ消息后供第二应用系统订阅消费。Step A3: The second network data exchange system parses the message file and converts it into an MQ message for the second application system to subscribe and consume.

MQ异步运行模式下,外部应用系统(第二应用系统)通过订阅内部业务系统(第一应用系统)消息实现内外网应用系统的数据交换。此时,第一应用系统为内部应用系统,第一网络数据交换系统为内网数据交换系统,第二应用系统为外部应用系统,第二网络数据交换系统为外网数据交换系统。所述安全边界为网闸或单向导入设备。In the MQ asynchronous operation mode, the external application system (second application system) realizes data exchange between internal and external network application systems by subscribing to the internal business system (first application system) messages. In this case, the first application system is an internal application system, the first network data exchange system is an intranet data exchange system, the second application system is an external application system, and the second network data exchange system is an external network data exchange system. The security boundary is a gatekeeper or a one-way import device.

一种实现互相隔离的两种不同网络间数据交换的方法,包括:A method for realizing data exchange between two different networks that are isolated from each other, including:

步骤B1、第一应用系统向第一网络数据交换系统发送HTTP消息,第一网络数据交换系统获取HTTP消息并转换为消息文件,向安全边界发起请求消息;Step B1, the first application system sends an HTTP message to the first network data exchange system, the first network data exchange system obtains the HTTP message and converts it into a message file, and initiates a request message to the security boundary;

步骤B2、安全边界通过文件摆渡或TCP消息的形式将请求消息摆渡到第二网络数据交换系统;Step B2, the security boundary ferries the request message to the second network data exchange system in the form of file ferry or TCP message;

步骤B3、第二网络数据交换系统解析请求消息,向第二应用系统发起获取请求,以及接收第二应用系统的返回数据,并生成返回消息;Step B3, the second network data exchange system parses the request message, initiates an acquisition request to the second application system, and receives return data from the second application system, and generates a return message;

步骤B4、安全边界通过文件摆渡的方式将第二网络数据交换系统的返回消息摆渡到第一网络数据交换系统;Step B4, the security boundary ferries the return message of the second network data exchange system to the first network data exchange system by means of file ferrying;

步骤B5、第一网络数据交换系统解析返回消息得到返回内容并发送至第一应用系统。Step B5, the first network data exchange system parses the returned message to obtain the returned content and sends it to the first application system.

HTTP同步运行模式下,在文件交换模式下,当第一网络数据交换系统接收到第一应用系统的HTTP消息(POST或GET请求)后,第一网络数据交换系统将POST或GET请求转换为消息文件,格式为XML、ZIP或JSON,消息文件命名为接口类型_时间戳_全局唯一标识符,安全边界将该消息文件发送到单导交换区,然后该请求保持对安全边界的单导反馈区的监听,如果在指定时间内从单导反馈区获取到返回的文件,则将文件解析为HTTP响应,返回给数据交换(外网),如在指定时间内没能监听到单导反馈区指定文件,则返回超时错误;在TCP模式下,第一网络数据交换系统与第二网络交换系统建立TCP连接。当第一网络数据交换系统接收到第一应用系统的POST或GET请求后,第一网络数据交换系统则将请求转化为TCP消息并发送给第二网络数据交换系统,然后该请求保持对TCP消息监听,如果在指定时间内从单导反馈区获取到返回的消息,则将文件解析为HTTP响应,返回给第一应用系统,如在指定时间内没能监听到单导反馈区指定文件,则返回超时错误。In the HTTP synchronous operation mode, in the file exchange mode, after the first network data exchange system receives the HTTP message (POST or GET request) of the first application system, the first network data exchange system converts the POST or GET request into a message file, the format is XML, ZIP or JSON, the message file is named as interface type_timestamp_globally unique identifier, the security boundary sends the message file to the single-lead exchange area, and then the request maintains the single-lead feedback area to the security boundary If the returned file is obtained from the single-guide feedback area within the specified time, the file will be parsed as an HTTP response and returned to the data exchange (external network). If the single-guide feedback area cannot be monitored within the specified time file, a timeout error is returned; in the TCP mode, the first network data exchange system establishes a TCP connection with the second network exchange system. After the first network data exchange system receives the POST or GET request from the first application system, the first network data exchange system converts the request into a TCP message and sends it to the second network data exchange system, and then the request keeps the TCP message Monitor, if the returned message is obtained from the single-guide feedback area within the specified time, the file will be parsed as an HTTP response and returned to the first application system. If the specified file in the single-guide feedback area cannot be monitored within the specified time, then Returns a timeout error.

所述消息文件的格式为所述第一应用系统为内部应用系统,第一网络数据交换系统为内网数据交换系统,第二应用系统为外部应用系统,第二网络数据交换系统为外网数据交换系统;或者所述第一应用系统为外部应用系统,第一网络数据交换系统为外网数据交换系统,第二应用系统为内部应用系统,第二网络数据交换系统为内网数据交换系统。The format of the message file is that the first application system is an internal application system, the first network data exchange system is an intranet data exchange system, the second application system is an external application system, and the second network data exchange system is an external network data exchange system. exchange system; or the first application system is an external application system, the first network data exchange system is an external network data exchange system, the second application system is an internal application system, and the second network data exchange system is an intranet data exchange system.

所述安全边界为网闸或单向导入设备。The security boundary is a gatekeeper or a one-way import device.

本发明与现有技术相比,具有以下优点及有益效果:Compared with the prior art, the present invention has the following advantages and beneficial effects:

本发明实现两种不同隔离的网络之间的数据通讯和数据交换,解决了工作人员目前只能在内网环境查阅资料、审批公文,办公地点非常固定,办公时间也受办公地点约束不能及时处理事务的问题;解决了业务的数据与其他组织与网络互通问题,加强了各组织、网络之间的合作,更高效、深度的利用各种业务数据。The invention realizes the data communication and data exchange between two different isolated networks, and solves the problem that the staff can only check data and approve official documents in the intranet environment at present, the office location is very fixed, and the office hours are also restricted by the office location and cannot be processed in time. It solves the problem of intercommunication between business data and other organizations and networks, strengthens cooperation between organizations and networks, and makes more efficient and in-depth use of various business data.

附图说明Description of drawings

图1为本发明中第一种实施方式的示意图;Fig. 1 is the schematic diagram of the first embodiment in the present invention;

图2为本发明中第二种实施方式的示意图。FIG. 2 is a schematic diagram of a second embodiment of the present invention.

具体实施方式Detailed ways

下面结合实施例对本发明作进一步地详细说明,但本发明的实施方式不限于此。The present invention will be further described in detail below with reference to the examples, but the embodiments of the present invention are not limited thereto.

实施例1:Example 1:

结合图1所示,一种实现互相隔离的两种不同网络间数据交换的方法,包括:With reference to Figure 1, a method for realizing data exchange between two different networks that are isolated from each other includes:

步骤A1、第一应用系统(内部应用系统)向第一网络数据交换系统(数据交换(内网))发送MQ消息,数据交换(内网)获取MQ消息并转换为消息文件,向安全边界(网闸或单向导入设备)发起通讯请求消息;Step A1, the first application system (internal application system) sends an MQ message to the first network data exchange system (data exchange (intranet)), the data exchange (intranet) obtains the MQ message and converts it into a message file, and sends the MQ message to the security boundary ( Gatekeeper or one-way import device) initiates a communication request message;

步骤A2、安全边界通过文件摆渡或TCP消息的形式将消息文件摆渡到第二网络数据交换系统(数据交换(外网));Step A2, the security boundary ferries the message file to the second network data exchange system (data exchange (external network)) in the form of file ferry or TCP message;

步骤A3、数据交换(外网)解析消息文件,并将其转换为MQ消息后供第二应用系统(外部应用系统)订阅消费。Step A3: The data exchange (external network) parses the message file and converts it into an MQ message for subscription and consumption by the second application system (external application system).

MQ异步运行模式下,外部应用系统通过订阅内部业务系统(内部应用系统)消息实现内外网应用系统的数据交换。In the MQ asynchronous operation mode, the external application system realizes the data exchange between the internal and external network application systems by subscribing to the internal business system (internal application system) messages.

实施例2:Example 2:

结合图2所示,当第一应用系统为内部应用系统,第一网络数据交换系统为内网数据交换系统,第二应用系统为外部应用系统,第二网络数据交换系统为外网数据交换系统时,一种实现互相隔离的两种不同网络间数据交换的方法,包括:2, when the first application system is an internal application system, the first network data exchange system is an intranet data exchange system, the second application system is an external application system, and the second network data exchange system is an external network data exchange system. , a method for realizing data exchange between two different networks that are isolated from each other, including:

步骤B1、内部应用系统向内网数据交换系统(数据交换(内网))发送HTTP消息,数据交换(内网)获取HTTP消息并转换为消息文件,向安全边界发起通讯请求消息;Step B1, the internal application system sends an HTTP message to the intranet data exchange system (data exchange (intranet)), the data exchange (intranet) obtains the HTTP message and converts it into a message file, and initiates a communication request message to the security boundary;

步骤B2、安全边界通过文件摆渡或TCP消息的形式将请求消息摆渡到外网数据交换系统(数据交换(外网));Step B2, the security boundary ferries the request message to the external network data exchange system (data exchange (external network)) in the form of file ferry or TCP message;

步骤B3、(数据交换(外网)获取并解析请求消息,向外部应用系统发起获取请求,外部应用系统返回数据,并发送到数据交换(外网),数据交换(外网)接收外部应用系统的返回数据,并生成返回消息发送到安全边界;Step B3, (the data exchange (external network) acquires and parses the request message, initiates an acquisition request to the external application system, the external application system returns the data, and sends it to the data exchange (external network), and the data exchange (external network) receives the external application system the return data, and generate a return message to send to the security boundary;

步骤B4、安全边界通过文件摆渡的方式将数据交换(外网)的返回消息摆渡到数据交换(内网);Step B4, the security boundary ferries the return message of the data exchange (external network) to the data exchange (intranet) by means of file ferrying;

步骤B5、数据交换(内网)解析返回消息得到返回内容并发送至内部应用系统,内部应用系统接收HTTP返回内容消息。Step B5, the data exchange (intranet) parses the return message to obtain the return content and sends it to the internal application system, and the internal application system receives the HTTP return content message.

HTTP同步运行模式下,内外网数据交换模式有文件交换模式和TCP模式,其中:In the HTTP synchronous operation mode, the internal and external network data exchange modes include file exchange mode and TCP mode, among which:

在文件交换模式下,当内网数据交换系统接收到内部应用系统的HTTP消息(POST或GET请求)后,内网数据交换系统将POST或GET请求转换为消息文件,格式为XML、ZIP或JSON,消息文件命名为接口类型_时间戳_全局唯一标识符,安全边界将该消息文件发送到单导交换区,然后该请求保持对安全边界的单导反馈区的监听,如果在指定时间内从单导反馈区获取到返回的文件,则将文件解析为HTTP响应,返回给数据交换(外网),如在指定时间内没能监听到单导反馈区指定文件,则返回超时错误。In the file exchange mode, when the intranet data exchange system receives the HTTP message (POST or GET request) from the internal application system, the intranet data exchange system converts the POST or GET request into a message file in the format of XML, ZIP or JSON , the message file is named as interface type_timestamp_globally unique identifier, the security boundary sends the message file to the single-lead exchange area, and then the request keeps monitoring the single-lead feedback area of the security boundary, if the When the single-guide feedback area obtains the returned file, the file will be parsed as an HTTP response and returned to the data exchange (external network). If the file specified in the single-guide feedback area cannot be monitored within the specified time, a timeout error will be returned.

在TCP模式下,内网数据交换系统与外网交换系统建立TCP连接。当内网数据交换系统接收到内部应用系统的POST或GET请求后,内网数据交换系统则将请求转化为TCP消息并发送给外网数据交换系统,然后该请求保持对TCP消息监听,如果在指定时间内从单导反馈区获取到返回的消息,则将文件解析为HTTP响应,返回给内部应用系统,如在指定时间内没能监听到单导反馈区指定文件,则返回超时错误。In the TCP mode, the intranet data exchange system establishes a TCP connection with the extranet exchange system. When the intranet data exchange system receives the POST or GET request from the internal application system, the intranet data exchange system converts the request into a TCP message and sends it to the extranet data exchange system, and then the request keeps monitoring the TCP message. If the returned message is obtained from the single-lead feedback area within the specified time, the file will be parsed as an HTTP response and returned to the internal application system. If the specified file in the single-lead feedback area cannot be monitored within the specified time, a timeout error will be returned.

同理,所述第二应用系统为内部应用系统,第二网络数据交换系统为内网数据交换系统,第一应用系统为外部应用系统,第一网络数据交换系统为外网数据交换系统时同样适用。Similarly, the second application system is an internal application system, the second network data exchange system is an intranet data exchange system, the first application system is an external application system, and the first network data exchange system is an external network data exchange system. Be applicable.

尽管这里参照本发明的解释性实施例对本发明进行了描述,上述实施例仅为本发明较佳的实施方式,本发明的实施方式并不受上述实施例的限制,应该理解,本领域技术人员可以设计出很多其他的修改和实施方式,这些修改和实施方式将落在本申请公开的原则范围和精神之内。Although the present invention is described herein with reference to the illustrative embodiments of the present invention, the above-mentioned embodiments are only preferred embodiments of the present invention, and the embodiments of the present invention are not limited by the above-mentioned embodiments, and it should be understood that those skilled in the art Numerous other modifications and embodiments can be devised that will fall within the scope and spirit of the principles disclosed herein.

Claims (8)

1.一种实现互相隔离的两种不同网络间数据交换的方法,其特征在于,包括:1. a method for realizing data exchange between two different networks that are isolated from each other, is characterized in that, comprising: 步骤A1、第一应用系统向第一网络数据交换系统发送MQ消息,第一网络数据交换系统获取MQ消息并转换为消息文件,向安全边界发起通讯请求消息;Step A1, the first application system sends the MQ message to the first network data exchange system, the first network data exchange system obtains the MQ message and converts it into a message file, and initiates a communication request message to the security boundary; 步骤A2、安全边界通过文件摆渡或TCP消息的形式将消息文件摆渡到第二网络数据交换系统;Step A2, the security boundary ferries the message file to the second network data exchange system in the form of file ferry or TCP message; 步骤A3、第二网络数据交换系统解析消息文件,并将其转换为MQ消息后供第二应用系统订阅消费。Step A3: The second network data exchange system parses the message file and converts it into an MQ message for the second application system to subscribe and consume. 2.根据权利要求1所述的一种实现互相隔离的两种不同网络间数据交换的方法,其特征在于,所述第一应用系统为内部应用系统,第一网络数据交换系统为内网数据交换系统,第二应用系统为外部应用系统,第二网络数据交换系统为外网数据交换系统。2. The method for realizing data exchange between two different networks that are isolated from each other according to claim 1, wherein the first application system is an internal application system, and the first network data exchange system is an intranet data The exchange system, the second application system is an external application system, and the second network data exchange system is an external network data exchange system. 3.根据权利要求1所述的一种实现互相隔离的两种不同网络间数据交换的方法,其特征在于,所述安全边界为网闸或单向导入设备。3 . The method for realizing data exchange between two different networks that are isolated from each other according to claim 1 , wherein the security boundary is a gatekeeper or a one-way import device. 4 . 4.一种实现互相隔离的两种不同网络间数据交换的方法,其特征在于,包括:4. A method for realizing data exchange between two different networks that are isolated from each other, is characterized in that, comprising: 步骤B1、第一应用系统向第一网络数据交换系统发送HTTP消息,第一网络数据交换系统获取HTTP消息并转换为消息文件,向安全边界发起请求消息;Step B1, the first application system sends an HTTP message to the first network data exchange system, the first network data exchange system obtains the HTTP message and converts it into a message file, and initiates a request message to the security boundary; 步骤B2、安全边界通过文件摆渡或TCP消息的形式将请求消息摆渡到第二网络数据交换系统;Step B2, the security boundary ferries the request message to the second network data exchange system in the form of file ferry or TCP message; 步骤B3、第二网络数据交换系统解析请求消息,向第二应用系统发起获取请求,以及接收第二应用系统的返回数据,并生成返回消息;Step B3, the second network data exchange system parses the request message, initiates an acquisition request to the second application system, and receives return data from the second application system, and generates a return message; 步骤B4、安全边界通过文件摆渡的方式将第二网络数据交换系统的返回消息摆渡到第一网络数据交换系统;Step B4, the security boundary ferries the return message of the second network data exchange system to the first network data exchange system by means of file ferrying; 步骤B5、第一网络数据交换系统解析返回消息得到返回内容并发送至第一应用系统。Step B5, the first network data exchange system parses the returned message to obtain the returned content and sends it to the first application system. 5.根据权利要求4所述的一种实现互相隔离的两种不同网络间数据交换的方法,其特征在于,所述第一网络数据交换系统获取HTTP消息并转换为消息文件,向安全边界发起请求消息后,持续监听安全边界返回的消息。5. a kind of method for realizing data exchange between two different networks that are isolated from each other according to claim 4, is characterized in that, described first network data exchange system obtains HTTP message and is converted into message file, initiates to security boundary After requesting a message, continue to monitor the message returned by the security boundary. 6.根据权利要求4所述的一种实现互相隔离的两种不同网络间数据交换的方法,其特征在于,所述消息文件的格式为XML、ZIP或JSON,消息文件命名为接口类型_时间戳_全局唯一标识符。6. a kind of method for realizing data exchange between two different networks of mutual isolation according to claim 4, is characterized in that, the format of described message file is XML, ZIP or JSON, and message file is named as interface type_time stamp_globally unique identifier. 7.根据权利要求4所述的一种实现互相隔离的两种不同网络间数据交换的方法,其特征在于,所述第一应用系统为内部应用系统,第一网络数据交换系统为内网数据交换系统,第二应用系统为外部应用系统,第二网络数据交换系统为外网数据交换系统;或者所述第一应用系统为外部应用系统,第一网络数据交换系统为外网数据交换系统,第二应用系统为内部应用系统,第二网络数据交换系统为内网数据交换系统。7. The method for realizing data exchange between two different networks that are isolated from each other according to claim 4, wherein the first application system is an internal application system, and the first network data exchange system is an intranet data an exchange system, the second application system is an external application system, and the second network data exchange system is an external network data exchange system; or the first application system is an external application system, and the first network data exchange system is an external network data exchange system, The second application system is an internal application system, and the second network data exchange system is an intranet data exchange system. 8.根据权利要求4所述的一种实现互相隔离的两种不同网络间数据交换的方法,其特征在于,所述安全边界为网闸或单向导入设备。8 . The method for realizing data exchange between two different networks that are isolated from each other according to claim 4 , wherein the security boundary is a gatekeeper or a one-way import device. 9 .
CN202210410915.4A 2022-04-19 2022-04-19 Method for realizing data exchange between two different networks isolated from each other Pending CN114745186A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210410915.4A CN114745186A (en) 2022-04-19 2022-04-19 Method for realizing data exchange between two different networks isolated from each other

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210410915.4A CN114745186A (en) 2022-04-19 2022-04-19 Method for realizing data exchange between two different networks isolated from each other

Publications (1)

Publication Number Publication Date
CN114745186A true CN114745186A (en) 2022-07-12

Family

ID=82282019

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210410915.4A Pending CN114745186A (en) 2022-04-19 2022-04-19 Method for realizing data exchange between two different networks isolated from each other

Country Status (1)

Country Link
CN (1) CN114745186A (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080281900A1 (en) * 2000-07-19 2008-11-13 International Business Machines Corporation Technique for Sending TCP Messages through HTTP Systems
CN108306847A (en) * 2017-01-13 2018-07-20 北京国双科技有限公司 Communication system and method
CN111355752A (en) * 2018-12-20 2020-06-30 阿里巴巴集团控股有限公司 File transmission method, device and equipment based on gatekeeper
CN114124916A (en) * 2021-10-27 2022-03-01 阿波罗智联(北京)科技有限公司 Data transmission method and device, electronic equipment and storage medium
CN114257580A (en) * 2021-12-22 2022-03-29 北京博思致新互联网科技有限责任公司 Sensorless Interaction Method of Border Gatekeeper

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080281900A1 (en) * 2000-07-19 2008-11-13 International Business Machines Corporation Technique for Sending TCP Messages through HTTP Systems
CN108306847A (en) * 2017-01-13 2018-07-20 北京国双科技有限公司 Communication system and method
CN111355752A (en) * 2018-12-20 2020-06-30 阿里巴巴集团控股有限公司 File transmission method, device and equipment based on gatekeeper
CN114124916A (en) * 2021-10-27 2022-03-01 阿波罗智联(北京)科技有限公司 Data transmission method and device, electronic equipment and storage medium
CN114257580A (en) * 2021-12-22 2022-03-29 北京博思致新互联网科技有限责任公司 Sensorless Interaction Method of Border Gatekeeper

Similar Documents

Publication Publication Date Title
US9818063B2 (en) Forecasting interest in an object over a future period of time using a three-stage time-series analysis process
CN100550719C (en) The method of equipment room data sync
CN108512748A (en) A kind of implementation method of micro services gateway
CN102868736A (en) Design and implementation method of cloud computing monitoring framework, and cloud computing processing equipment
CN114025002B (en) A method, system and communication device based on MQTT information transmission
CN113468221A (en) System integration method based on kafka message data bus
CN114338287A (en) Industrial edge gateway data management method based on active identification
CN108600316A (en) Data managing method, system and the equipment of cloud storage service
CN110213156A (en) A kind of span centre heart group's instant communicating method and system
CN113630366A (en) Internet of things equipment access method and system
CN105530289A (en) A platform and method for seamlessly integrating heterogeneous business systems of affiliated airports
CN110661848A (en) Message pushing method, device, equipment and medium based on video network
CN114745186A (en) Method for realizing data exchange between two different networks isolated from each other
WO2021083075A1 (en) Method and apparatus for subscribing to event stream
CN107888683A (en) A kind of client exchange method and device
WO2001067678A1 (en) An information switch
CN106130874A (en) Merge enterprise's integration information processing method of multi-communication mode
CN116684486A (en) Data transmission method for Internet of things
CN115914422A (en) TCP message communication architecture design method and system
CN101510901B (en) Communication method, communication apparatus and system between distributed equipment
CN115982133A (en) Data processing method and device
CN115250279A (en) IoT Hub core processing module
CN112565326B (en) RDMA communication address exchange method for distributed file system
CN102664965B (en) Device for realizing emergency command system grading network and working method thereof
CN106789941A (en) A kind of database and the implementation method of system application heartbeat unified management

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20220712