CN115604315A - Remote processing device and method of server and electronic equipment - Google Patents

Abstract

The invention discloses a remote processing device and method of a server and electronic equipment. Relates to the technical field of financial science and technology. Wherein, the device includes: the system comprises a client, wherein the client is a user terminal for performing remote operation and maintenance management on an application server and is used for initiating a remote operation and maintenance management instruction, and the remote operation and maintenance management instruction at least comprises one of the following instructions: switching on and off, restarting and operating system backup recovery; the remote recovery device at least comprises a network gate, is connected with the client, receives a remote operation and maintenance management instruction, switches the internal network processing state and the external network processing state of the remote recovery device through the network gate, and performs remote operation and maintenance management on the application server by using a target management interface protocol. The invention solves the technical problem that the operation and maintenance management of the server is difficult to be carried out in a remote processing mode in the related technology.

Description

Server remote processing device and method, electronic device

technical field

The present invention relates to the technical field of financial technology, in particular, to a server remote processing device and method, and electronic equipment.

Background technique

At present, in IT system operation and maintenance, server crashes and operating system crashes often occur due to software abnormalities. The most effective way to solve these problems is to restart the server or use backup data to restore the system.

When the server crashes or the operating system crashes, the network service of the server is invalid. Therefore, the operation and maintenance personnel cannot perform remote operation and maintenance management through remote connection, and can only go to the site for operation and maintenance, which greatly increases the production and application costs. Recovery time and O&M workload.

In addition, because the server is generally located in the enterprise intranet, remote operation and maintenance commands, scripts, and programs must be transmitted through external network communications, especially in banks, securities, government agencies and other units that have high data security requirements, considering the security isolation of internal and external networks The problem is that internal and external network data are not allowed to be stored on the same disk, and simultaneous access and processing of internal and external data is prohibited. Therefore, the situation that the server is in the enterprise intranet further increases the risk of operation and maintenance managers restarting or restoring the server. Operation and maintenance management efficiency.

For the above problems, no effective solution has been proposed yet.

Contents of the invention

Embodiments of the present invention provide a server remote processing device and method, and electronic equipment, so as to at least solve the technical problem in the related art that it is difficult to perform operation, maintenance and management of the server through remote processing.

According to an aspect of an embodiment of the present invention, there is provided a remote processing device for a server, including: a client, wherein the client is a user terminal for remote operation and maintenance management of an application server, and is used to initiate remote operation and maintenance management Instructions, the remote operation and maintenance management instructions include at least one of the following: power on and off, restart, operating system backup and recovery; remote recovery device, wherein the remote recovery device includes at least a network gatekeeper, and the remote recovery device is connected to the The client connects, receives the remote operation and maintenance management instruction, switches the internal network processing state and the external network processing state of the remote recovery device through the gatekeeper, and uses the target management interface protocol to communicate with the application server. Perform remote operation and maintenance management.

Further, the remote recovery device further includes: a hard disk, wherein the hard disk at least includes: an internal network hard disk and an external network hard disk, and the internal network hard disk is used to store the internal network data of the remote operation and maintenance management, The external network hard disk is used to store the external network data of the remote operation and maintenance management; a processor, wherein the processor at least includes: an internal network processor and an external network processor, and the internal network processor is used for Processing internal network data, the external network processor is used to process the external network data, the gatekeeper is connected with the internal network processor and the external network processor, and is used to pass through the internal network The processor controls the availability of the internal network hard disk, and controls the availability of the external network hard disk through the external network processor, physically isolates the internal network and the external network, and controls the internal network processor and the external network The processor works in a time-sharing manner; an exchange area memory, wherein the exchange area memory is connected to the internal network processor and the external network processor for providing data exchange for the internal network data and the external network data buffer.

Further, the remote recovery device further includes: multiple communication interfaces, wherein the multiple communication interfaces at least include: an internal network communication interface and an external network communication interface; multiple data interfaces, wherein the multiple data interfaces It is used for performing maintenance and management on the remote recovery device, and the maintenance management at least includes: device program upgrade, device testing and debugging.

According to another aspect of the embodiments of the present invention, there is also provided a remote processing method for a server, the method is applied to any one of the above-mentioned remote processing devices, including: receiving the remote operation and maintenance management command sent by the client through the remote recovery device , when the remote recovery device is in the external network processing state, storing the remote operation and maintenance management instruction; after storing the remote operation and maintenance management instruction, performing internal and external network processing through the gatekeeper in the remote recovery device State switching, switching the external network processing state to the internal network processing state, and using the target management interface protocol to perform remote operation and maintenance management on the application server through the remote operation and maintenance management command.

Further, receiving the remote operation and maintenance management instruction sent by the client through the remote recovery device, and storing the remote operation and maintenance management instruction when the remote recovery device is in the external network processing state includes: receiving the remote operation and maintenance management instruction sent by the client The operation and maintenance management command, when the remote recovery device is in the external network processing state, the remote operation and maintenance management command is stored in the external network hard disk of the remote recovery device, and the external network processor executes the operation and maintenance management command. The remote operation and maintenance management command in the hard disk on the external network is verified; if the command is verified and passed, the remote operation and maintenance management command is stored in the exchange area memory of the remote recovery device.

Further, using the target management interface protocol to perform remote operation and maintenance management on the application server through the remote operation and maintenance management instruction includes: repackaging the operation and maintenance management instruction through the target management interface protocol to obtain the target operation and maintenance management command, and send the target operation and maintenance management command to the intranet hard disk of the remote recovery device; call the target operation and maintenance management command in the intranet hard disk through the intranet processor of the remote recovery device , performing remote operation and maintenance management on the application server.

Further, the remote operation and maintenance management instruction sent by the client is received by the remote recovery device, and before the remote operation and maintenance management instruction is stored using the target management interface protocol when the remote recovery device is in the external network processing state, it includes: receiving the remote operation and maintenance management instruction triggered by the target object, and performing identity authentication on the target object through the client; after the identity authentication is passed, performing security detection on the remote operation and maintenance management instruction, wherein the The safety detection at least includes: virus detection; after the safety detection is passed, sending the remote operation and maintenance management instruction to the remote recovery device.

Further, after the remote operation and maintenance management is performed on the application server, it includes: obtaining the operation log of the remote operation and maintenance management through the intranet processor of the remote recovery device, and sending the operation log to the In the storage of the exchange area, wherein, the operation log at least includes: the operation and maintenance results of the remote operation and maintenance management; the remote recovery device switches the processing state of the internal and external network through the gatekeeper, and switches the processing state of the internal network is the external network processing state; read the operation log in the exchange area memory through the external network processor of the remote recovery device, and encrypt the operation log to obtain the target operation log; The log is stored in the hard disk on the external network, and the target operation log is pushed to the client.

Further, switching the internal network processing state and the external network processing state of the remote recovery device through the gatekeeper includes: writing to the watchdog in the remote recovery device through the gatekeeper Enter the state data of the internal and external network processing state, and monitor the state data through the watchdog, wherein the watchdog is used to determine whether the working state of the gatekeeper is abnormal according to the state data, and in the When the working state of the network gatekeeper is abnormal, send a reset signal to the network gatekeeper; when the network gatekeeper receives the reset signal, read the state data in the watchdog; according to the the state data, send a blocking command to the internal network processor, and send a start command to the external network processor, and switch the internal network processing state to the external network processing state; or, according to the state data , sending a blocking instruction to the external network processor, and sending a start instruction to the internal network processor, switching the external network processing state to the internal network processing state.

According to another aspect of the embodiments of the present invention, there is also provided an electronic device, including: a processor; and a memory for storing executable instructions of the processor; wherein, the processor is configured to execute the above-mentioned Any one of the server's remoting methods.

According to another aspect of the embodiments of the present invention, a computer-readable storage medium is also provided, and the computer-readable storage medium stores a computer program, wherein, when the computer program is running, the device where the computer-readable storage medium is located is controlled to execute any one of the above-mentioned The remoting method for the item's server.

In the present invention, the remote processing device of the server includes: a client, wherein the client is a user terminal for remote operation and maintenance management of the application server, and is used to initiate a remote operation and maintenance management command, and the remote operation and maintenance management command includes at least the following: One: power on and off, restart, operating system backup and recovery; remote recovery device, wherein the remote recovery device at least includes a network gatekeeper, the remote recovery device is connected to the client, receives remote operation and maintenance management instructions, and controls the remote recovery device through the network gatekeeper. Intranet processing state and external network processing state switch between internal and external network processing states, and use the target management interface protocol to perform remote operation and maintenance management on the application server. Furthermore, the technical problem in the related art that it is difficult to manage the operation and maintenance of the server through remote processing is solved. In the present invention, the remote operation and maintenance management command for the application server is initiated by the client to the remote recovery device, and then the remote operation and maintenance management of the application server is performed by using the target management interface protocol through the remote recovery device with a gatekeeper, thereby avoiding the The operation and maintenance management personnel need to go to the site to manage the operation and maintenance of the application server, especially the operation and maintenance management of the application server in the enterprise intranet, so as to achieve the technical effect of improving the operation and maintenance management efficiency of the application server.

Description of drawings

The accompanying drawings described here are used to provide a further understanding of the present invention and constitute a part of the application. The schematic embodiments of the present invention and their descriptions are used to explain the present invention and do not constitute improper limitations to the present invention. In the attached picture:

FIG. 1 is a schematic diagram of an optional server remote processing device according to an embodiment of the present invention;

FIG. 2 is a schematic diagram of a connection structure of an optional remote processing device of a server according to an embodiment of the present invention;

Fig. 3 is a schematic diagram of system modules of an optional remote recovery device according to an embodiment of the present invention;

Fig. 4 is a front view of the outline structure of an optional remote recovery device according to an embodiment of the present invention;

Fig. 5 is a rear view of the outline structure of an optional remote recovery device according to an embodiment of the present invention;

FIG. 6 is a flow chart of an optional server remote processing method according to an embodiment of the present invention;

FIG. 7 is a schematic diagram of a circuit connection of an optional gatekeeper according to an embodiment of the present invention;

FIG. 8 is a workflow diagram of an optional remote operation and maintenance of a server according to an embodiment of the present invention;

Fig. 9 is a schematic diagram of an optional electronic device according to an embodiment of the present invention.

detailed description

In order to enable those skilled in the art to better understand the solutions of the present invention, the following will clearly and completely describe the technical solutions in the embodiments of the present invention in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments are only It is an embodiment of a part of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts shall fall within the protection scope of the present invention.

It should be noted that the terms "first" and "second" in the description and claims of the present invention and the above drawings are used to distinguish similar objects, but not necessarily used to describe a specific sequence or sequence. It is to be understood that the data so used are interchangeable under appropriate circumstances such that the embodiments of the invention described herein can be practiced in sequences other than those illustrated or described herein. Furthermore, the terms "comprising" and "having", as well as any variations thereof, are intended to cover a non-exclusive inclusion, for example, a process, method, system, product or device comprising a sequence of steps or elements is not necessarily limited to the expressly listed Those steps or elements may instead include other steps or elements not explicitly listed or inherent to the process, method, product or apparatus.

For the convenience of description, some terms or nouns involved in the present invention are explained below.

IPMI, Intelligent Platform Management Interface, referred to as IPMI, is an open standard hardware management interface protocol, which defines a specific method for embedded management subsystems to communicate and can be used to control and operate the server, and only needs to The power supply of the motherboard is normal, no matter what state the server itself is in (starting, shutting down, crashing), users are allowed to manage the operation and maintenance of the server through the management port.

vxworks, an embedded real-time operating system.

E2PROM, that is, EEPROM, Electrically Erasable Programmable read only memeory, refers to the electrically erasable programmable read-only memory, which is a memory chip that does not lose data after power failure.

SPI, Serial Peripheral Interface, referred to as SPI, serial peripheral interface, is a high-speed, full-duplex, synchronous communication bus.

It should be noted that the server remote processing device and method in the present disclosure can be used in the financial technology field in the case of remote operation and maintenance management of the application server, and can also be used in any field other than the financial technology field to control the application server In the case of remote operation and maintenance management, the application field of the remote processing device and method of the server is not limited in the present disclosure.

It should be noted that the relevant information (including but not limited to user equipment information, user personal information, etc.) and data (including but not limited to data for display, data for analysis, etc.) involved in this disclosure are authorized by the user. Or information and data fully authorized by the parties. For example, there is an interface between this system and relevant users or institutions. Before obtaining relevant information, it is necessary to send an acquisition request to the aforementioned user or institution through the interface, and obtain relevant information after receiving the consent information fed back by the aforementioned user or institution. information.

The present invention will be further described below in conjunction with various embodiments.

Embodiment one

According to an embodiment of the present invention, an embodiment of an optional remote processing device for a server is provided. FIG. 1 is a schematic diagram of an optional remote processing device for a server according to an embodiment of the present invention. As shown in FIG. 1 , The unit includes:

Client 1, the client, where the client is a user terminal for remote operation and maintenance management of the application server, and is used to initiate remote operation and maintenance management instructions, and the remote operation and maintenance management instructions include at least one of the following: power on and off, restart, Operating system backup restore.

Fig. 2 is a schematic diagram of the connection structure of a remote processing device of an optional server according to an embodiment of the present invention. As shown in Fig. 2, the client 1 is connected to the remote recovery device 2 through an external communication network (such as a telecom operator network) , the operation and maintenance technicians can use the client 1 to initiate a remote operation and maintenance management command, and send the remote operation and maintenance management command to the remote recovery device 2 through the external communication network, and perform remote operation and maintenance on the application server 3 through the remote recovery device 2 .

The above-mentioned remote operation and maintenance management commands may include power on and off, restart, operating system backup and recovery, and server status checks. Examples of the above-mentioned remote operation and maintenance management commands are as follows:

①Server status check, check the physical health characteristics of the application server, such as temperature, voltage, fan working status, power status, network card status, etc.

② The server is restarted, and the operating system of the application server 3 is restarted. The operation and maintenance technicians can also set the application program to start automatically on the operating system of the application server 3, so that the application program can be automatically started after the application server is restarted, and the production system can be restored.

③ Server operating system backup and recovery. If the operating system or application program is damaged and the server restart cannot solve the problem, the server backup and recovery function can be used. The application server 3 can use the server system backup file uploaded by the maintenance personnel through the client 1 (such as the ISO image problem) to rebuild the system, and automatically restart the server after completion to restore the production application.

Remote recovery device 2, the remote recovery device, wherein the remote recovery device at least includes a network gatekeeper, the remote recovery device is connected to the client, receives remote operation and maintenance management instructions, and processes the internal network status and external network processing status of the remote recovery device through the network gatekeeper The status is switched between the internal and external network processing status, and the remote operation and maintenance management of the application server is carried out by using the target management interface protocol.

The above-mentioned remote recovery device may include at least a network gatekeeper, and the above-mentioned network gatekeeper can be used to switch the internal network processing state and the external network processing state of the remote recovery device, so as to realize physical isolation of the internal network data and external network data of the enterprise, To ensure the security of the enterprise intranet, the above-mentioned gatekeeper can be a single-chip microcomputer chip, such as: AT89S51 single-chip microcomputer chip.

The above-mentioned target management interface protocol can be the IPMI intelligent platform management interface protocol, and the remote recovery device is based on the remote operation and maintenance management command, through the vxworks embedded operating system that comes with the server main board, and controls the application server according to the IPMI intelligent platform management interface protocol. Operation to realize remote operation and maintenance management of the application server.

In this embodiment, the remote operation and maintenance management command for the application server can be initiated by the client to the remote recovery device, and then the remote operation and maintenance management of the application server can be performed by using the target management interface protocol through the remote recovery device with a gatekeeper. It avoids the need for operation and maintenance managers to go to the site to manage the operation and maintenance of the application server, especially the operation and maintenance management of the application server in the intranet of the enterprise, thereby achieving the technical effect of improving the efficiency of the operation and maintenance management of the application server. Furthermore, the technical problem in the related art that it is difficult to manage the operation and maintenance of the server through remote processing is solved.

In order to ensure that the remote recovery device accurately physically isolates the internal and external networks and ensures the security of remote operation and maintenance management, in an embodiment, the remote recovery device further includes: a hard disk, wherein the hard disk at least includes: an internal network hard disk and an external network hard disk, The internal network hard disk is used to store the internal network data of remote operation and maintenance management, and the external network hard disk is used to store the external network data of remote operation and maintenance management; the processor, wherein the processor at least includes: the internal network processor and the external network The network processor, the internal network processor is used to process the internal network data, the external network processor is used to process the external network data, the gatekeeper is connected with the internal network processor and the external network processor, and is used to control the internal network through the internal network processor. The availability of network hard disks, and the availability of external network hard disks controlled by the external network processor, the physical isolation of the internal network and the external network, and the control of the time-sharing work of the internal network processor and the external network processor; The memory is connected to the internal network processor and the external network processor, and is used to provide a data exchange buffer for internal network data and external network data.

The remote recovery device described above may also include a hard disk, a processor, and a memory in a swap area. FIG. 3 is a schematic diagram of a system module of an optional remote recovery device according to an embodiment of the present invention. As shown in FIG. 3 , the hard disk can be divided into internal Network hard disk S7 and external network hard disk S8, the processor can be divided into internal network processor S1 and external network processor S2, the system module of the remote recovery device can also include network gatekeeper S3, watchdog S4, exchange area memory S5, RJ45 Interface S6, external network communication network card S9, hard disk power control S10, and internal network interface S11, the following describes each part in Figure 3:

Gatekeeper S3, gatekeeper S3 controls the availability of dual hard disks through the hard disk power supply control unit S10 (that is, when the internal network processor is working, the external network hard disk is powered off, and only the internal network hard disk is available; when the external network processor is working, the internal network hard disk In case of power failure, only external network hard drives are available), ensuring the physical isolation of data storage on internal and external networks. At the same time, the gatekeeper S3 is connected with the internal network processor S1 and the external network processor S2 by signal lines, and can control the two processors to work in time-sharing, so as to realize the physical isolation of data processing in the internal and external network.

Watchdog S4. The gatekeeper is the core to realize the physical isolation of internal and external network data. When the gatekeeper S3 program is abnormal, the watchdog S4 can send a reset pulse to force the gatekeeper S3 system to reset to ensure its reliability.

The exchange area storage S5, the exchange area storage S5 is a general-purpose flash memory, and is used as a buffer for exchanging data between the internal and external networks.

The RJ45 interface S6 is connected to the management port of the application server 3 to realize the operation and maintenance of the application server 3 by the remote recovery device 2 . The intranet processor S1 calls the operation and maintenance program on the intranet hard disk S7, analyzes the remote operation and maintenance management instructions and data packets of the maintenance personnel, and sends instructions to the server management port through the RJ45 interface to realize the operation and maintenance management operation.

The hard disk power supply control S10 selects the power supply for the internal network hard disk S7 and the external network hard disk S8 under the control of the gatekeeper S3.

Through the various components in the above-mentioned remote recovery device, the remote recovery device can realize the precise physical isolation of the internal and external networks, and the technical effect of providing support for remote operation and maintenance management of the application server.

In order to ensure that the remote recovery device performs data interaction with the outside, in this embodiment, the remote recovery device also includes: a plurality of communication interfaces, wherein the plurality of communication interfaces at least include: an internal network communication interface and an external network communication interface; a plurality of data Interfaces, wherein a plurality of data interfaces are used for maintenance and management of the remote recovery device, and the maintenance management at least includes: device program upgrade, device testing and debugging.

The above-mentioned multiple communication interfaces may include an internal network communication interface and an external network communication interface for network communication of the remote recovery device, and may also include multiple data interfaces for maintenance and management of the remote recovery device.

Fig. 4 is a front view of an optional remote restoration device according to an embodiment of the present invention, and Fig. 5 is a rear view of an optional remote restoration device according to an embodiment of the present invention, as shown in Fig. 4 and FIG. 5, the external structure of the remote recovery device may include an external network hard disk 11 and an internal network hard disk 12, as well as an internal network interface 22 (corresponding to the above-mentioned internal network communication interface) and an external network communication card 13 (corresponding to The above-mentioned external network communication interface), management port 21, CONSOLE interface 23 (debugging configuration interface of equipment), data interface 14, wherein, the above-mentioned multiple data interfaces can include CONSOLE interface 23 and data interface 14, wherein, the above-mentioned The intranet network interface 22 may not be set in the remote recovery device. The front view of the remote recovery device and each part in the test diagram are described below.

(1) The power switch 10 controls the power supply of the device.

(2) The external network hard disk 11 stores the external network service operation program of the storage device itself and the data and programs uploaded from the external network during the operation and maintenance process.

(3) intranet hard disk 12, the backup of the intranet service running program of the storage device itself, the operating system of the application server 3 and the application software, in addition, the data and programs uploaded from the external network are stored in the exchange area memory after security detection, and then Then import it to the internal network hard disk.

(4) The external network communication card 13 is responsible for the communication connection between the device and the client terminal 1 .

(5) Data interface 14, a data interface (such as a USB interface) used for program upgrade and maintenance of the device itself.

(6) The power supply 20 is responsible for the power supply of the device.

(7) management port 21, access the remote management port of application server 3 by the management port connection line of device, control application server 3 start-up, shutdown, restart by IPMI interface protocol, remotely reinstall server operating system, and can monitor server Physical health characteristics, such as temperature, voltage, fan operating status, power status, and other functions.

(8) Intranet network interface 22, through which the remote recovery device 2 can be connected to the intranet to facilitate the upgrade of the application recovery device and the data backup of the application server 3 (such as operating system mirror image, application software backup package). If this function is not selected, on-site operation and maintenance can only be performed through the CONSOLE interface 23 and the data interface 14.

(9) CONSOLE interface 23 is used as a control interface through a notebook computer connected to the CONSOLE interface, and the data interface 14 is used as a data source by connecting a mobile hard disk, optical drive, U disk and other media to the device itself for testing and debugging, firmware upgrades, etc.

Through each part of the appearance structure of the remote recovery device, the technical effect of the management of the remote recovery device and the efficiency of the external service provided by the remote recovery device can be realized.

The above-mentioned remote processing device of the server may also include a processor and a memory, the above-mentioned client 1, the remote recovery device 2, etc. are all stored in the memory as program units, and the processor executes the above-mentioned program units stored in the memory to realize the corresponding Features.

The above-mentioned processor includes a kernel, and the kernel retrieves corresponding program units from the memory. One or more kernels can be set, and by adjusting the kernel parameters, the remote operation and maintenance management command for the application server can be initiated to the remote recovery device through the client, and then the application server can be controlled by using the target management interface protocol through the remote recovery device with a gatekeeper. Remote operation and maintenance management avoids the need for operation and maintenance managers to go to the site to manage the operation and maintenance of application servers, especially the operation and maintenance management of application servers in the enterprise intranet, thereby achieving the technical effect of improving the efficiency of operation and maintenance management of application servers .

Embodiment two

According to the embodiment of the present invention, an optional embodiment of the remote processing method of the server is provided. The remote processing method of the server is applied to the remote processing device in Embodiment 1. It should be noted that the flowchart in the accompanying drawing shows The steps of can be performed in a computer system, such as a set of computer-executable instructions, and, although a logical order is shown in the flowcharts, in some cases, the steps shown or described steps.

Fig. 6 is a flowchart of an optional server remote processing method according to an embodiment of the present invention. As shown in Fig. 6, the method includes the following steps:

Step S601, receiving the remote operation and maintenance management command sent by the client through the remote recovery device, and storing the remote operation and maintenance management command when the remote recovery device is in the external network processing state.

The above-mentioned remote recovery device receives the remote operation and maintenance management command sent by the client, and can temporarily cache the remote operation and maintenance management command in the exchange area memory of the remote recovery device when the remote recovery device is in the external network processing state.

Step S602, after storing the remote operation and maintenance management instruction, switch the processing state of the internal and external network through the gatekeeper in the remote recovery device, switch the processing state of the external network to the processing state of the internal network, and use the target management interface protocol to pass the remote operation and maintenance The management command performs remote operation and maintenance management on the application server.

After the remote recovery device temporarily caches the remote operation and maintenance management instructions in the exchange area memory of the remote recovery device, it can switch the processing state of the internal and external network through the gatekeeper in the remote recovery device, and switch the processing state of the external network to the processing state of the internal network. In the intranet, the target management interface protocol is used to perform remote operation and maintenance management on the application server through remote operation and maintenance management commands.

The aforementioned switching of the internal and external network processing states may be switching the external network processor state to the internal network processing state, or switching the internal network processing state to the external network processing state.

In this embodiment, the remote operation and maintenance management command for the application server can be initiated by the client to the remote recovery device, and then the remote operation and maintenance management of the application server can be performed by using the target management interface protocol through the remote recovery device with a gatekeeper. It avoids the need for operation and maintenance managers to go to the site to manage the operation and maintenance of the application server, especially the operation and maintenance management of the application server in the intranet of the enterprise, thereby achieving the technical effect of improving the efficiency of the operation and maintenance management of the application server. Furthermore, the technical problem in the related art that it is difficult to manage the operation and maintenance of the server through remote processing is solved.

In order to ensure the accuracy of data processing by the remote recovery device on the external network, in this embodiment, the remote operation and maintenance management command sent by the client is received by the remote recovery device, and when the remote recovery device is in the processing state of the external network, the remote The operation and maintenance management command also includes the following content: receive the remote operation and maintenance management command sent by the client, and store the remote operation and maintenance management command in the external network hard disk of the remote recovery device when the remote recovery device is in the external network processing state , and perform instruction verification on the remote operation and maintenance management instruction in the external network hard disk through the external network processor; if the instruction verification is passed, store the remote operation and maintenance management instruction in the exchange area memory of the remote recovery device.

In this embodiment, the remote operation and maintenance management instruction sent by the client can be sent in the form of a data packet. After receiving the data packet including the remote operation and maintenance management instruction from the client, the data packet including the remote operation and maintenance management instruction can be sent Stored in the external network hard disk of the remote recovery device, the data packet can also include digital signatures and client information for sending remote operation and maintenance management instructions. Instruction verification can also be performed on remote operation and maintenance management instructions in the external network hard disk through the external network processor. Instruction verification can include but not limited to verification of digital signatures. restore the device's swap memory.

Specifically, in the remote recovery device, the external network processor S2 receives the data packet (command, data, digital signature, client information) sent by the client 1 and stores it in the external network hard disk S8, and the external network processor S2 will verify the digital If the signature is incorrect, delete the data packet and return an error message to the client; if the digital signature is correct, copy the external network hard disk S8 to the exchange area storage S5 after unpacking.

After unpacking the external network hard disk S8 and copying it to the swap area memory S5, the "blocking" status information can also be written into the "boot status area" of the external network hard disk S8 (to ensure that the external network processor S2 calls the log processing when it restarts next time program), and send a signal of "switching from the external network to the internal network" to the network gatekeeper S3 through the signal line P1.

In order to ensure the accuracy of the operation and maintenance management of the application server by the remote recovery device on the intranet, in this embodiment, the target management interface protocol is used to perform remote operation and maintenance management on the application server through remote operation and maintenance management instructions, and the following content is also included : Repackage the operation and maintenance management instructions through the target management interface protocol to obtain the target operation and maintenance management instructions, and send the target operation and maintenance management instructions to the intranet hard disk of the remote recovery device; The target operation and maintenance management command in the network hard disk is used for remote operation and maintenance management of the application server.

For example: the internal network processor S1 repackages the data in the exchange area storage S5 according to the IPMI interface specification, stores them in the internal network hard disk S7, and clears the data in the exchange area storage S5 at the same time. The intranet processor S1 calls the server operation and maintenance program on the intranet hard disk S7, analyzes the remote operation and maintenance instructions and data packets of the maintenance personnel, and sends instructions to the server management port through the RJ45 interface S7 to realize the operation and maintenance operation, and realizes the improvement of the remote recovery device. The technical effect of the accuracy of the operation and maintenance management of the application server on the intranet.

In order to ensure the data security of the remote operation and maintenance management of the application server by the remote recovery device, the remote operation and maintenance management command sent by the client is received through the remote recovery device, and when the remote recovery device is in the external network processing state, the target management interface is used Before the protocol stores the remote operation and maintenance management instruction, it includes: receiving the remote operation and maintenance management instruction triggered by the target object, and performing identity authentication on the target object through the client; after passing the identity authentication, performing security detection on the remote operation and maintenance management instruction, among which The safety detection at least includes: virus detection; after the safety detection is passed, the remote operation and maintenance management instruction is sent to the remote recovery device.

The above-mentioned identity authentication can be secure real-name authentication, and the authentication means can include but not limited to biometric methods such as face and fingerprint, or use reserved password identification, SMS identification, dynamic password identification and other functions to authenticate the identity of the target object, Among them, the target object may be operation and maintenance technicians. After the identity authentication is passed, the client 1 establishes a connection with the remote recovery device 2 through the telecom operator's communication network (such as a 5G network). The operation and maintenance technicians can send remote operation and maintenance management instructions (detection, restart, recovery, etc.) and data (script files, programs, system backup files, etc. of the recovery system) to the remote recovery device through the client 1.

During the process of sending remote operation and maintenance management instructions through client 1, client 1 can also perform security inspections on remote operation and maintenance management instructions and data with its own security inspection program and virus database data, such as: performing security analysis and virus detection, after passing the inspection Digitally sign the information that can be used for remote operation and maintenance management instructions and data, and then send the instructions, data, digital signature, and client information (for server log push after the execution of the operation and maintenance command) to the remote recovery device 2 The technical effect of improving the data security of the remote operation and maintenance management of the application server by the remote recovery device is realized.

In order to ensure the integrity of operation data and log security of remote operation and maintenance management, in this embodiment, after performing remote operation and maintenance management on the application server, it includes: obtaining the remote operation and maintenance management information through the intranet processor of the remote recovery device. operation log, and send the operation log to the storage in the exchange area, wherein the operation log at least includes: the operation and maintenance results of remote operation and maintenance management; processing status for the external network; read the operation log in the memory of the exchange area through the external network processor of the remote recovery device, and encrypt the operation log to obtain the target operation log; store the target operation log in the external network hard disk, and send to The client pushes the target operation log to ensure the integrity of the operation data for remote operation and maintenance management.

In this embodiment, after remote operation and maintenance management is performed on the application server, that is, after the operation of the remote operation and maintenance management command is completed, the intranet processor S1 decodes the log file of the intranet hard disk and copies it to the exchange area storage S5, and Send the "intranet to external network" command to the gatekeeper S5 to switch the internal network processing state to the external network processing state, and the gatekeeper S3 writes the "internal network to external network switch" command to the gatekeeper S3 to the E2PROM built in the watchdog chip. " status data. Then, the gatekeeper S3 sends a "blocking" command to the internal network processor S1, and controls the internal network hard disk to lose power, supplies power to the external network hard disk, and at the same time sends a restart command to the external network processor S2 that is already in the "blocking" state, and the external network The network processor S2 reads the state information in the "boot status area" of the external network hard disk S8 and restarts. Since the internal network hard disk is powered off, the external network processor S2 can only identify and access the external network hard disk and the storage in the swap area.

After the internal network processing state is switched to the external network processing state, the external network processor S2 can read the log files of the storage in the exchange area, parse the log files, and obtain client information and server logs. Since the server log files contain server and network configuration For sensitive information such as information, the log (corresponding to the above-mentioned operation log) can also be encrypted, and then packaged to form a new log file (corresponding to the above-mentioned target operation log), copied to the external network hard disk, and clear the storage in the exchange area content. The external network processor S2 initiates a log reconnection return request to the client 1.

After the external network processor S2 initiates a log reconnection request to client 1, client 1 receives the connection request, downloads the log file, and can decrypt and view it. If it is confirmed that the operation and maintenance is successful, it can log out and release the client and log file. The connection of the device 2 is restored remotely. Since the remote recovery device 2 needs to switch the network multiple times and restart the internal network processor S1 and the external network processor S2 to realize the isolation of the internal and external network during the recovery process of the processing server, this embodiment can support the single task mode, that is, at the same time Only a single user can operate and maintain a single server.

The technical effect of ensuring the integrity of the operation data of the remote operation and maintenance management and the security of the log is realized.

In order to ensure the physical isolation between the internal network and the external network and ensure data security, in this embodiment, the internal network processing state and the external network processing state of the remote recovery device are switched between the internal network processing state and the external network processing state through the gatekeeper, including: The gate writes the status data of the internal and external network processing status to the watchdog in the remote recovery device, and monitors the status data through the watchdog, wherein the watchdog is used to determine the status of the gatekeeper based on the status data Whether the working state is abnormal, when the working state of the network gatekeeper is abnormal, send a reset signal to the network gatekeeper; when the network gatekeeper receives the reset signal, read the state data in the watchdog; according to the state Data, send a blocking command to the internal network processor, and send a start command to the external network processor, switch the internal network processing state to the external network processing state; or, according to the state data, send a blocking command to the external network processor, and send a blocking command to the external network processor The internal network processor sends a start command to switch the external network processing state to the internal network processing state.

The above-mentioned watchdog can adopt the X5045 chip, and the chip adopted by the watchdog is not limited here. The watchdog S4 (X5045 chip) can mainly provide reset pulses for the gatekeeper S3 (AT89S51 chip). After switching from the external network processing state to the state data of the internal network processing state, the gatekeeper S3 can write the working state data of the gatekeeper S3 to the E2PROM built in the watchdog chip through the SPI bus control. , if the watchdog detects that the gatekeeper is working abnormally, that is, the state data in the watchdog chip is different from the actual running state data, it will be able to send a RST (reset) signal to the gatekeeper to restart, and the gatekeeper will read in The state data of E2PROM built in the watchdog chip ensures that the gatekeeper itself is in the correct working state, and the external network processor S2 can send a "blocking" signal, and the external network processor S2 will interrupt the session connection with the client and enter In the "blocked" state, and no longer provide external services. Interrupting the session of the client and stopping the external service can effectively reduce the risk of the remote recovery device 2 being exposed to attacks on the external network; after the remote operation and maintenance management command is completed, the external network server 2 can access the Actively initiate connections to avoid network attacks such as IP duress.

When the gatekeeper S3 switches from the internal network processing state to the external network processing state, the principle of state switching is the same as that of switching from the external network processing state to the internal network processing state. The status data of gate S3 "Switching from internal network processing state to external network processing state". Subsequently, the gatekeeper S3 sends a "blocking" command to the internal network processor S1, and controls the internal network hard disk to lose power, supplies power to the external network hard disk, and at the same time sends a restart command to the external network processor S2 that is already in the "blocked" state. The network processor S2 reads the state information in the "boot status area" of the external network hard disk S8 and restarts. Since the internal network hard disk is powered off, the external network processor S2 can only identify and access the external network hard disk and the storage in the swap area.

Switching the processing state of the internal and external network through the gatekeeper realizes the physical isolation of the internal network and the external network and ensures the technical effect of data security.

Embodiment three

This embodiment provides an optional remote processing method for the server. The remote recovery method for the server can physically isolate the internal network and the external network through the gatekeeper in the remote recovery device to ensure the security of the internal network data. Network communication technology and server remote management port realize remote operation and maintenance and system recovery of application servers in the intranet.

The remote recovery device has two operating modes of "external network service" and "intranet processing", that is, there are two processing states of internal network processing state and external network processing state. The switching between the two operating modes is completed by the gatekeeper S3. Among them, the external network service mode is used to send, receive and process the operation and maintenance instructions and data submitted by the operation and maintenance technicians through the client 1 (recovery system script files, programs, system backup files, etc.). Server operation and maintenance management.

FIG. 7 is a schematic diagram of a circuit connection of an optional gatekeeper according to an embodiment of the present invention. The circuit connection principle of the gatekeeper is shown in FIG. 7 . The two operating modes will be described below in conjunction with FIG. 7 . In the external network service mode, the internal network processor S1 is blocked, the internal network hard disk S7 is powered off, and the external network processor S2 is running, but can only access the powered external network hard disk S8 and the swap area storage S5 for data processing. In the "intranet processing" operating mode, the external network processor S2 is blocked, the external network hard disk S8 is powered off, and the internal network processor S1 is running, but can only access the powered internal network hard disk S7 and the swap area storage S5 for data processing.

In Figure 7, the AT89S51 chip is the gatekeeper S3, the corresponding X5045 is the watchdog S4, and two IRFB4410 chips and circuits form the hard disk power control module S10. The P1.6 and P1.7 ports of the gatekeeper are used to control the hard disk power supply of the external network and the hard disk power supply of the internal network respectively. When the gatekeeper is in the external network processing state, the output of P1.6 is 0 (low level), and the output of P1.7 is 1 (high level). The IRFB4410 of the network hard disk power supply is cut off, the external network hard disk S8 is powered on, and the internal network hard disk S7 is powered off; when the gatekeeper is in the internal network processing state, the output of P1.6 is 1 (high level), and the output of P1.7 is 0 (low level), at this time, the IRFB4410 connected to the internal network hard disk S7 power supply is turned on, and the IRFB4410 connected to the external network hard disk S8 power supply is turned off, the internal network hard disk power supply is powered on, and the external network hard disk power supply is powered off.

The watchdog S4 (X5045 chip) mainly provides reset pulses for the gatekeeper S3 (AT89S51 chip). The E2PROM built in the watchdog chip writes the working status data of the gatekeeper S3. If the watchdog detects that the gatekeeper is working abnormally during the subsequent operation, it will send an RST signal to it to restart, and the gatekeeper will restart when it restarts. Read in the state parameters of the built-in E2PROM in the watchdog chip to ensure that it is in the correct working state; the same is true when the gatekeeper S3 switches from the state of the internal network to the external network.

When the gatekeeper S3 switches between internal and external processing states, it can also communicate with the external network processor S2 and the internal network processor S1 through P1.4 and P1.5 to control its time-sharing work.

FIG. 8 is a work flow chart of an optional remote operation and maintenance of a server according to an embodiment of the present invention. The work flow of the server remote processing method in this embodiment will be described below in conjunction with FIG. 8 .

(1) Client authentication.

The client 1 is an IT terminal (such as a mobile phone, a computer, a PAD, etc.) used by an operation and maintenance technician who uses the application server 3 to perform remote operation and maintenance management. Terminals can perform secure real-name authentication. Authentication means include but are not limited to biometric methods such as face and fingerprint, or use reserved password identification, SMS identification, dynamic password identification and other functions to authenticate the identity of operation and maintenance technicians.

(2) Sending an operation and maintenance instruction (corresponding to the above-mentioned remote operation and maintenance management instruction).

After the authentication is passed, the client 1 establishes a connection with the remote recovery device 2 through the telecom operator's communication network (such as a 5G network). The operation and maintenance technicians can send instructions (detection, restart, recovery, etc.) and data (script files, programs, system backup files, etc. of the recovery system) through the client 1 for remote operation and maintenance.

(3) Command data detection.

Client 1 will call its own security detection program and virus database data to conduct security analysis and virus detection on instructions and data, and digitally sign the information after passing the detection, and send instructions, data, digital signatures, and client information (for operation and maintenance commands to After the execution, the server log push) is sent to the remote recovery device 2 together.

(4) Instruction acceptance verification.

The external network processor S2 receives the data packet (command, data, digital signature, client information) sent by the client 1 and stores it in the external network hard disk S8, and the external network processor S2 will verify the digital signature, and delete the data packet if it is incorrect , and return an error message to the client; if the digital signature is correct, the external network hard disk S8 is unpacked and then copied to the exchange area memory S5, and then the "blocking" status information is written into the "boot status area" of the external network hard disk S8 ( Ensure that the external network processor S2 calls the log processing program when it restarts next time), and sends a signal of "switching from the external network to the internal network" to the gatekeeper S3 through the signal line P1.5.

(4) Switching from the external network to the internal network (corresponding to the above-mentioned switching from the processing state of the external network to the processing state of the internal network).

The gatekeeper S3 writes the state data of gatekeeper S3 "switching from the external network to the internal network (corresponding to the switching from the external network processing state to the internal network processing state)" of the gatekeeper S3 to the built-in E2PROM of the watchdog chip (this data is used for the gatekeeper S3 maintains the correct state after the fault restarts), and the external network processor S2 sends a "blocking" signal, and the external network processor S2 will interrupt the session connection with the client, enter the "blocking" state, and no longer provide external services. Interrupting the session of the client and stopping external services can effectively reduce the risk of the remote recovery device 2 being exposed to attacks on the external network; after the remote operation and maintenance command is completed, the external network server 2 actively initiates a connection through the client information in the data packet in the previous session , to avoid network attacks such as IP duress.

The gatekeeper S3 outputs 1 (high level) to P1.6, and the output of P1.7 is 0 (low level). At this time, the internal network hard disk S7 is powered on, and the external network hard disk S8 is powered off.

The gatekeeper S3 sends an "activation" signal to the intranet processor S1, and the intranet processor S1 in the "blocked" state restarts.

(5) Command operation.

The internal network processor S1 repackages the data in the exchange area storage S5 according to the IPMI interface specification, stores them in the internal network hard disk S7, and clears the data in the exchange area storage S5 at the same time. The intranet processor S1 calls the server operation and maintenance program on the intranet hard disk S7, analyzes the remote operation and maintenance instructions and data packets of the maintenance personnel, and sends instructions to the server management port through the RJ45 interface S7 to realize the operation and maintenance operation.

The operation and maintenance operation instructions implement the operation and maintenance of the server according to the IPMI intelligent platform management interface specification. IPMI can control the power on, off, and restart of the server, remotely reinstall the server operating system, and monitor the physical health characteristics of the server, such as temperature, voltage, fan working status, power status, and other functions. To put it simply, the remote management port is a high-level remote KVM system, which can remotely control servers without network support, redirect server feedback information to log files for storage, and also save CD images and folders on the remote control terminal. It is mapped and loaded into the server as a virtual CD-ROM drive.

Examples of commonly used operation and maintenance instructions are as follows:

①Server status check, the remote operation and maintenance command will check the physical health characteristics of the server, such as temperature, voltage, fan working status, power status, network card status, etc.

②The server is restarted, and the remote operation and maintenance command will restart the operating system of the application server 3. The operation and maintenance personnel can set the application program to start automatically in the operating system, so that the application program can be automatically started after the server is restarted, and the production system can be restored.

③Server backup recovery, if the operating system or application program is damaged, and the server restart in the previous step cannot solve the problem, you can use the server backup recovery function. The application server 3 can rebuild the system by using the server system backup file (such as the ISO image problem) uploaded by the maintenance personnel through the client, and automatically restart the server after completion to restore the production application.

When the operation and maintenance command is run, the input script and output result are redirected to the log file of the internal network hard disk. The log file contains the external network IP address information of client 1, which is used to push the log file.

(6) Switch from internal network to external network (corresponding to the above-mentioned internal network processing state switching to external network processing state)

After the operation and maintenance command is completed, the internal network processor S1 decodes the log file of the internal network hard disk and copies it to the storage area S5 in the exchange area, and sends the "switch from internal network to external network" command to the gatekeeper S5, and the gatekeeper S3 sends a message to the gatekeeper. The built-in E2PROM of the dog chip writes the status data of the gatekeeper S3 "switching from the internal network to the external network". Subsequently, the gatekeeper S3 sends a "blocking" command to the internal network processor S1, and controls the internal network hard disk to lose power, supplies power to the external network hard disk, and at the same time sends a restart command to the external network processor S2 that is already in the "blocked" state. The network processor S2 reads the state information in the "boot status area" of the external network hard disk S8 and restarts. Since the internal network hard disk is powered off, the external network processor S2 can only identify and access the external network hard disk and the storage in the swap area.

(7) Log push.

The external network processor S2 reads the log files of the storage in the exchange area, parses the log files, and obtains client information and server logs. Since the log files contain sensitive information such as server and network configuration information, the logs need to be encrypted and then packaged to form Copy the new log file to the hard disk on the external network, and clear the memory content of the swap area. The external network processor S2 initiates a log reconnection return request to the client 1.

(8) Release the connection.

Client 1 receives the connection request, downloads the log file, and can decrypt it for viewing. If it is confirmed that the operation and maintenance is successful, it can log out and release the connection between the client and the remote recovery device 2.

Since the remote recovery device 2 needs to switch the network multiple times and restart the internal network processor S1 and the external network processor S2 to realize the isolation of the internal and external network during the recovery process of the server, it only supports single-task mode, that is, only a single task can be performed at the same time. Users perform O&M operations on a single server.

This embodiment realizes the remote operation and maintenance and system recovery of the application server through the wireless network communication technology (IPMI) and the remote management port of the server, which solves the problem of lack of network support in the remote operation and maintenance management of the application server in the related technology, and realizes The technical effect of reducing the recovery time of production applications and the work pressure of operation and maintenance personnel. The remote recovery device in this embodiment realizes component redundancy, physical isolation, and time-sharing switching of internal and external network storage, processors, and network connections at the hardware level, ensuring complete isolation of data storage and processing.

In addition, in this embodiment, the client adopts multiple authentication methods to ensure the legitimacy of remote operators, and conducts security analysis, virus detection and digital signatures on instructions and data to ensure the security of transmission instructions and data; Mechanisms such as time-sharing switching, encrypted information transmission, and log reconnection and return during operation can effectively reduce the penetration and attacks from the external network to the internal network; in terms of data management, the data formats of the internal network hard disk and external network storage are different, and the exchange area The program files in the memory are also set to have no "run" permission, which further protects the security of the intranet.

The above-mentioned memory may include non-permanent memory in computer-readable media, forms such as random access memory (RAM) and/or non-volatile memory, such as read-only memory (ROM) or flash memory (flash RAM), and the memory includes at least a memory chip.

According to another aspect of the embodiments of the present invention, there is also provided an electronic device, including: a processor; and a memory for storing executable instructions of the processor; wherein, the processor is configured to execute the above-mentioned Any one of the server's remoting methods.

According to another aspect of the embodiments of the present invention, a computer-readable storage medium is also provided, and the computer-readable storage medium stores a computer program, wherein, when the computer program is running, the device where the computer-readable storage medium is located is controlled to execute any one of the above-mentioned The remoting method for the item's server.

FIG. 9 is a schematic diagram of an electronic device according to an embodiment of the present invention. As shown in FIG. 9 , an embodiment of the present invention provides an electronic device 90, the electronic device includes a processor, a memory, and a memory stored on the memory and can process The program running on the server implements the remote processing method of any one of the above servers when the processor executes the program.

The serial numbers of the above embodiments of the present invention are for description only, and do not represent the advantages and disadvantages of the embodiments.

In the above-mentioned embodiments of the present invention, the descriptions of each embodiment have their own emphases, and for parts not described in detail in a certain embodiment, reference may be made to relevant descriptions of other embodiments.

In the several embodiments provided in this application, it should be understood that the disclosed technical content can be realized in other ways. Wherein, the device embodiments described above are only illustrative. For example, the division of the units can be a logical function division. In actual implementation, there can be another division method. For example, multiple units or components can be combined or can be Integrate into another system, or some features may be ignored, or not implemented. In another point, the mutual coupling or direct coupling or communication connection shown or discussed may be through some interfaces, and the indirect coupling or communication connection of units or modules may be in electrical or other forms.

The units described as separate components may or may not be physically separated, and the components shown as units may or may not be physical units, that is, they may be located in one place, or may be distributed to multiple units. Part or all of the units can be selected according to actual needs to achieve the purpose of the solution of this embodiment.

In addition, each functional unit in each embodiment of the present invention may be integrated into one processing unit, each unit may exist separately physically, or two or more units may be integrated into one unit. The above-mentioned integrated units can be implemented in the form of hardware or in the form of software functional units.

If the integrated unit is realized in the form of a software function unit and sold or used as an independent product, it can be stored in a computer-readable storage medium. Based on this understanding, the essence of the technical solution of the present invention or the part that contributes to the prior art or all or part of the technical solution can be embodied in the form of a software product, and the computer software product is stored in a storage medium , including several instructions to make a computer device (which may be a personal computer, a server, or a network device, etc.) execute all or part of the steps of the methods described in various embodiments of the present invention. The aforementioned storage media include: U disk, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), mobile hard disk, magnetic disk or optical disk and other media that can store program codes. .

The above is only a preferred embodiment of the present invention, it should be pointed out that, for those of ordinary skill in the art, without departing from the principle of the present invention, some improvements and modifications can also be made, and these improvements and modifications can also be made. It should be regarded as the protection scope of the present invention.

Claims (10)

1. A remote processing device for a server, comprising:

the client is a user terminal for performing remote operation and maintenance management on the application server, and is used for initiating a remote operation and maintenance management instruction, wherein the remote operation and maintenance management instruction at least comprises one of the following instructions: switching on and off, restarting and operating system backup recovery;

the remote recovery device at least comprises a network gate, is connected with the client, receives the remote operation and maintenance management instruction, switches the internal network processing state and the external network processing state of the remote recovery device through the network gate, and performs remote operation and maintenance management on the application server by using a target management interface protocol.

2. The remote processing device of claim 1, wherein the remote recovery device further comprises:

a hard disk, wherein the hard disk comprises at least: the intranet hard disk is used for storing intranet data of the remote operation and maintenance management, and the extranet hard disk is used for storing extranet data of the remote operation and maintenance management;

a processor, wherein the processor comprises at least: the intranet processor is used for processing intranet data, the extranet processor is used for processing extranet data, the network gate is connected with the intranet processor and the extranet processor and used for controlling the availability of the intranet hard disk through the intranet processor and controlling the availability of the extranet hard disk through the extranet processor, carrying out physical isolation on the intranet and the extranet and controlling the intranet processor and the extranet processor to work in a time-sharing mode;

and the switching area memory is connected with the internal network processor and the external network processor and is used for providing a buffer area for data exchange for the internal network data and the external network data.

3. The remote processing device of claim 1, wherein the remote recovery device further comprises:

a plurality of communication interfaces, wherein the plurality of communication interfaces includes at least: an intranet communication interface and an extranet communication interface;

a plurality of data interfaces, wherein the plurality of data interfaces are used for performing maintenance management on the remote recovery device, and the maintenance management at least comprises: upgrading device programs and detecting and debugging devices.

4. A remote processing method of a server, applied to the remote processing apparatus of any one of claims 1 to 3, comprising:

receiving a remote operation and maintenance management instruction sent by a client through a remote recovery device, and storing the remote operation and maintenance management instruction under the condition that the remote recovery device is in an extranet processing state;

and after the remote operation and maintenance management instruction is stored, switching the internal and external network processing states through a network gate in the remote recovery device, switching the external network processing state into the internal network processing state, and performing remote operation and maintenance management on an application server through the remote operation and maintenance management instruction by using a target management interface protocol.

5. The remote processing method according to claim 4, wherein the receiving, by a remote recovery device, a remote operation and maintenance management command sent by a client, and in a case that the remote recovery device is in an extranet processing state, storing the remote operation and maintenance management command comprises:

receiving a remote operation and maintenance management instruction sent by a client, storing the remote operation and maintenance management instruction into an external network hard disk of the remote recovery device under the condition that the remote recovery device is in an external network processing state, and performing instruction verification on the remote operation and maintenance management instruction in the external network hard disk through an external network processor;

and storing the remote operation and maintenance management instruction into a switching area memory of the remote recovery device under the condition that the instruction passes verification.

6. The remote processing method according to claim 5, wherein the performing remote operation and maintenance management on the application server through the remote operation and maintenance management instruction by using a target management interface protocol comprises:

repackaging the operation and maintenance management instruction through the target management interface protocol to obtain a target operation and maintenance management instruction, and sending the target operation and maintenance management instruction to an intranet hard disk of the remote recovery device;

and calling the target operation and maintenance management instruction in the intranet hard disk through an intranet processor of the remote recovery device, and performing remote operation and maintenance management on the application server.

7. The remote processing method according to claim 4, wherein the receiving, by the remote recovery device, the remote operation and maintenance management command sent by the client, and in a case that the remote recovery device is in an extranet processing state, before storing the remote operation and maintenance management command by using a target management interface protocol, the method includes:

receiving the remote operation and maintenance management instruction triggered by a target object, and performing identity authentication on the target object through the client;

after the identity authentication is passed, performing security detection on the remote operation and maintenance management instruction, wherein the security detection at least comprises: virus detection;

and after the safety detection is passed, sending the remote operation and maintenance management instruction to the remote recovery device.

8. The remote processing method according to claim 6, wherein after performing the remote operation and maintenance management on the application server, the method comprises:

acquiring an operation log of the remote operation and maintenance management through an intranet processor of the remote recovery device, and sending the operation log to the swap area memory, wherein the operation log at least comprises: operation and maintenance results of the remote operation and maintenance management;

the remote recovery device switches the internal network processing state and the external network processing state through the network gate;

reading the operation log in the memory of the exchange area through an extranet processor of the remote recovery device, and encrypting the operation log to obtain a target operation log;

and storing the target operation log into the external network hard disk, and pushing the target operation log to the client.

9. The remote processing method according to claim 4, wherein switching the intranet processing state and the extranet processing state of the remote recovery apparatus by the gatekeeper comprises:

writing state data of an internal and external network processing state into a watchdog in the remote recovery device through the gatekeeper, and monitoring the state data through the watchdog, wherein the watchdog is used for determining whether the working state of the gatekeeper is abnormal according to the state data, and sending a reset signal to the gatekeeper under the condition that the working state of the gatekeeper is abnormal;

reading the status data in the watchdog when the gatekeeper receives the reset signal;

according to the state data, sending a blocking instruction to the internal network processor, sending a starting instruction to the external network processor, and switching the internal network processing state into the external network processing state; or the like, or, alternatively,

and sending a blocking instruction to the outer network processor according to the state data, sending a starting instruction to the inner network processor, and switching the outer network processing state into the inner network processing state.

10. An electronic device comprising one or more processors and memory for storing one or more programs, wherein the one or more programs, when executed by the one or more processors, cause the one or more processors to implement the remote processing method of the server of any of claims 4 to 9.

Images