[go: up one dir, main page]

WO2018098633A1 - Data transmission method, data transmission apparatus, electronic device and computer program product - Google Patents

Data transmission method, data transmission apparatus, electronic device and computer program product Download PDF

Info

Publication number
WO2018098633A1
WO2018098633A1 PCT/CN2016/107745 CN2016107745W WO2018098633A1 WO 2018098633 A1 WO2018098633 A1 WO 2018098633A1 CN 2016107745 W CN2016107745 W CN 2016107745W WO 2018098633 A1 WO2018098633 A1 WO 2018098633A1
Authority
WO
WIPO (PCT)
Prior art keywords
transmission
unit
network transmission
transmission unit
vpn
Prior art date
Application number
PCT/CN2016/107745
Other languages
French (fr)
Chinese (zh)
Inventor
王华涛
Original Assignee
深圳前海达闼云端智能科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 深圳前海达闼云端智能科技有限公司 filed Critical 深圳前海达闼云端智能科技有限公司
Priority to PCT/CN2016/107745 priority Critical patent/WO2018098633A1/en
Priority to CN201680002961.3A priority patent/CN106797335B/en
Publication of WO2018098633A1 publication Critical patent/WO2018098633A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/72Routing based on the source address
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/12Avoiding congestion; Recovering from congestion
    • H04L47/125Avoiding congestion; Recovering from congestion by balancing the load, e.g. traffic engineering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/82Miscellaneous aspects
    • H04L47/825Involving tunnels, e.g. MPLS

Definitions

  • the present invention relates to the field of wireless communication technologies, and in particular, to a data transmission method, a data transmission device, an electronic device, and a computer program product.
  • wireless data terminals such as 3G (third generation mobile communication technology) / 4G (fourth generation mobile communication technology) terminals (such as SIM (Subscriber Identification Module) Card transmission, such as a cable network transmission unit, is one of the common methods for data transmission.
  • 3G third generation mobile communication technology
  • 4G fourth generation mobile communication technology
  • SIM Subscriber Identification Module
  • the first terminal (such as a user's smart phone) establishes a transmission path with the second terminal in advance through the wireless router by using a wifi technology (one end of the transmission path is connected to the wireless router, and the other end is connected to the second terminal).
  • a wifi technology one end of the transmission path is connected to the wireless router, and the other end is connected to the second terminal.
  • each data in the data stream transmits its data to the second terminal (such as an application server) through a pre-established transmission path.
  • the first terminal establishes a transmission path with the second terminal by using the 3G/4G technology in advance through the 3G/4G terminal (one end of the transmission path is connected to the 3G/4G terminal, and the other end is connected to the second terminal).
  • the first terminal transmits the data stream
  • each data in the data stream transmits its data to the second terminal through a pre-established transmission path.
  • the transmission path is established in advance with the second terminal through the 4G terminal, as shown in FIG. 1 , including a 4G terminal-base station (such as EnodeB)-Internet-second. terminal.
  • a 4G terminal-base station such as EnodeB
  • the base station transmits each data to the second terminal via the Internet.
  • each data in the data stream of the first terminal is transmitted through a path established by the pre-established network transmission unit and the second terminal, and the bandwidth in the 4G technology is fixed, but the data stream transmitted by the method is used.
  • the amount of data included is unstable, if the data transmitted by this method If the amount of data included in the stream is large, the available bandwidth of each data in the data stream is small. For a single data, the available bandwidth cannot satisfy the transmission requirement of the data, and the transmission time of the data is prolonged, and the transmission quality is degraded.
  • an embodiment of the present invention provides a data transmission method, a data transmission device, an electronic device, and a computer program product.
  • an embodiment of the present invention provides a data transmission method, where the method is applied to an access device, where the method includes:
  • the routing unit routes to the first transmission virtual network device, so that the source address IP is the IP address of the network transmission unit corresponding to the access device, and the data packet whose destination IP is the VPN server is routed to the network transmission unit by the routing unit of the access device. a gateway of the corresponding network transmission unit;
  • the routing unit of the access device After the routing unit of the access device routes the uplink data packet to the first transmission virtual network device according to the modified routing rule, acquiring the uplink data packet from the first transmission virtual network device;
  • an embodiment of the present invention provides a data transmission apparatus, including:
  • a establishing unit configured to establish a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server end;
  • a modifying unit configured to modify a routing rule of the access device;
  • the modified routing rule causes the uplink data packet to be routed by the routing unit of the access device to the first transmission virtual network device, so that the source address IP is the IP address of the network transmission unit corresponding to the access device, and the data packet whose destination IP is the VPN server is routed by the routing unit of the access device to the gateway of the network transmission unit corresponding to the network transmission unit;
  • a first acquiring unit configured to acquire an uplink data packet from the first transmission virtual network device after the routing unit of the access device routes the uplink data packet to the first transmission virtual network device according to the modified routing rule ;
  • a selecting unit configured to select a network transmission unit according to a pre-acquired network transmission unit selection policy; and when performing VPN encapsulation on the uplink data packet, setting a source address IP of the VPN encapsulated uplink data packet to the selected network transmission unit IP, destination IP is set to the IP address of the VPN server.
  • an embodiment of the present invention provides an electronic device, where the electronic device includes:
  • a memory one or more processors; and one or more modules, the one or more modules being stored in the memory and configured to be executed by the one or more processors, the one or The plurality of modules includes instructions for performing the various steps in the method of the first aspect.
  • an embodiment of the present invention provides a computer program product for use in conjunction with an electronic device including a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer
  • the program mechanism includes instructions for performing the various steps in the method of the first aspect.
  • an embodiment of the present invention provides a data transmission method, which is applied to a VPN server, where the method includes:
  • the data packet After receiving the uplink data packet of the access device, the data packet is VPN decapsulated and sent to the second transmission virtual network device.
  • an embodiment of the present invention provides a data transmission apparatus, including:
  • a establishing unit configured to establish a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server end;
  • a determining unit configured to determine each network transmission unit corresponding to the access device side
  • the processing unit is configured to perform VPN decapsulation on the data packet after receiving the uplink data packet of the access device, and send the data packet to the second transmission virtual network device.
  • an embodiment of the present invention provides an electronic device, where the electronic device includes:
  • a memory one or more processors; and one or more modules, the one or more modules being stored in the memory and configured to be executed by the one or more processors, the one or The plurality of modules includes instructions for performing the various steps of the method of the fifth aspect.
  • an embodiment of the present invention provides a computer program product for use in conjunction with an electronic device including a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer
  • the program mechanism includes instructions for performing the various steps of the methods described in the method of the fifth aspect.
  • the method provided by the embodiment of the present invention may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit, so as to flexibly select the network transmission unit according to the transmitted data, and thereby utilize the network transmission unit reasonably.
  • FIG. 2 is a schematic structural diagram of a data transmission system according to an embodiment of the present invention.
  • FIG. 3 is a schematic flowchart of a VPN tunnel establishment process according to an embodiment of the present invention.
  • FIG. 4 is a schematic flowchart of a data transmission method according to an embodiment of the present invention.
  • FIG. 5 is a schematic flowchart of another data transmission method according to an embodiment of the present invention.
  • FIG. 6 is a schematic structural diagram of a data transmission apparatus according to an embodiment of the present invention.
  • FIG. 7 is a schematic structural diagram of an electronic device according to an embodiment of the present invention.
  • FIG. 8 is a schematic structural diagram of another data transmission apparatus according to an embodiment of the present invention.
  • FIG. 9 is a schematic structural diagram of another electronic device according to an embodiment of the present invention.
  • the current data transmission method is: the first terminal establishes a transmission path with the second terminal in advance through a network transmission unit (such as a wireless router or a wireless data terminal).
  • a network transmission unit such as a wireless router or a wireless data terminal.
  • the first terminal transmits data its data is transmitted to the second terminal through a pre-established transmission path.
  • the bandwidth corresponding to the network transmission unit is fixed, but the amount of data transmitted by the method is unstable. If the amount of data transmitted by the method is large, the available bandwidth of each data is small, and available for a single data. The bandwidth cannot meet the transmission requirement of the data, causing the transmission time of the data to be prolonged and the transmission quality to be degraded.
  • the present invention provides a data transmission method, which can select a network transmission unit according to a network transmission unit selection policy, and transmit uplink data through a selected network transmission unit, thereby implementing flexible selection of a network according to the transmitted data.
  • the transmission unit, and then the network transmission unit is rationally utilized to improve the data transmission quality.
  • the data transmission method provided by the present invention can be applied to a data transmission system composed of an access device and a VPN server.
  • the data transmission system includes an access device 202 and a VPN server 203.
  • it can also include a data generating end - the first terminal 201 and the data most The final receiving end - the second terminal 204.
  • the access device 202 can be located in the first terminal 201 (as shown in FIG. 2( a )).
  • the access device 202 can also be located outside the first terminal 201, and the access device 202 is connected to the first terminal 201 (as shown in FIG. 2(b)).
  • the access device 202 is connected to n network transmission units at the same time, wherein the n network transmission units may be n wireless terminals, or may be n line network transmission units, or may be, m wireless terminals and nm line network transmissions.
  • n network transmission units may be n wireless terminals, or may be n line network transmission units, or may be, m wireless terminals and nm line network transmissions.
  • Unit, m is a positive integer greater than 0 and m is less than n.
  • n wireless terminals may be n wireless routers, or n wireless data terminals, or t network transmission units and n-t wireless data terminals, where t is a positive integer greater than 0 and m is less than n.
  • m wireless terminals which may be m wireless routers, or m wireless data terminals, or i network transmission units and m-i wireless data terminals, i being a positive integer greater than 0 and m being less than n.
  • the services provided for each wireless terminal may be the same operator or different operators.
  • the access device 202 before performing the data transmission method provided by the embodiment, the access device 202 establishes a VPN (Virtual Private Network) tunnel in advance with the VPN server 203.
  • the specific establishment process is: after the access device 202 determines that the open condition is met, the VPN tunnel between the first transmission virtual network device on the access device 202 side and the second transmission virtual network device on the VPN server end 203 is established, and the access is modified.
  • the routing rules of the device is: after the access device 202 determines that the open condition is met, the VPN tunnel between the first transmission virtual network device on the access device 202 side and the second transmission virtual network device on the VPN server end 203 is established, and the access is modified.
  • the routing rules of the device is:
  • the modified routing rule may enable the uplink data packet to be routed by the routing unit of the access device 202 to the first transmission virtual network device, where the source address IP is the IP of the network transmission unit corresponding to the access device 202.
  • the inter-connected protocol) address, and the packet whose destination IP is the VPN server 203 is routed by the routing unit of the access device 202 to the gateway of the network transmission unit corresponding to the network transmission unit.
  • the routing unit in order for the uplink data packet to be routed by the routing unit of the access device 202 to the first transmission virtual network device, the routing unit may be The next hop is directed to the network transmission unit; in addition, in order to enable the destination IP to be the data packet of the VPN server 203 to be routed by the routing unit of the access device 202 to the gateway of the network transmission unit corresponding to the network transmission unit, N policy routes and N routing tables, (N is equal to the number of network transmission units), that is, adding a policy route and a routing table to each network transmission unit.
  • the policy routing content is that the source address is the IP address of the network transmission unit, and the destination IP address is the data packet of the VPN server IP address, and the routing table of the network transmission unit is queried.
  • the content of the routing table is the default gateway is the gateway of the network transmission unit. .
  • the opening condition includes: monitoring that the preset button is triggered by the user; and/or, the real-time network transmission parameter does not satisfy the transmission requirement.
  • FIG. 3 shows a specific implementation method for establishing a VPN tunnel between the first transmission virtual network device on the access device 202 side and the second transmission virtual network device of the VPN server 203, and modifying the routing rules of the access device.
  • the method includes:
  • the access device 202 sends the type information of each network transmission unit to the VPN server 203.
  • the access device 202 In order for the VPN server 203 to determine a more reasonable network transmission unit selection policy, the access device 202 needs to transmit the type information of each network transmission unit it accesses to the VPN server 203.
  • the VPN server 203 determines a network transmission unit selection policy according to information of each network transmission unit, creates a second transmission virtual network device, allocates a VPN tunnel establishment resource, and changes a next hop in the second routing rule to a second transmission virtual Internet equipment.
  • the manner in which the VPN server 203 creates the second transmission virtual network device may be an existing manner, for example, establishing a TUN (point-to-point device) type second transmission virtual network device through a Linux virtual network card, or establishing a TAP through a Linux virtual network card (Ethernet) Device) type of second transmission virtual network device.
  • a TUN point-to-point device
  • a Linux virtual network card Ethernet
  • the VPN server 203 acquires a corresponding network transmission unit selection policy according to the real-time network transmission parameters.
  • the network transmission unit selection strategy may be a load balancing selection strategy, or A selection strategy for bandwidth aggregation.
  • the VPN server 203 determines the network transmission unit selection policy according to the information of each network transmission unit. After the second transmission virtual network device is created, the next hop in the second routing rule is changed to the second transmission virtual network device, and the VPN server 203 is received according to the second routing rule. The data is routed to the second transport virtual network device.
  • the VPN server 203 sends the network transmission unit selection policy, the type of the second transmission virtual network device, and the VPN tunnel establishment resource to the access device 202.
  • the type of the second transmission virtual network device is TUN, or the type of the second transmission virtual network device is TAP.
  • the VPN server 203 also determines available network transmission units based on real-time network transmission parameters, and returns the available network transmission units to the access device 202 in the form of first information.
  • the access device 202 receives the network transmission unit selection policy, the type of the second transmission virtual network device, and the VPN tunnel establishment resource.
  • the access device 202 also receives the first information.
  • the access device 202 also actively receives the network transmission unit selection policy. For example, when the access device 202 detects that the preset button is triggered by the user, the corresponding network transmission unit selection policy is acquired; or the access device 202 acquires the corresponding network transmission unit selection policy according to the real-time network transmission parameter.
  • the access device 202 creates a first transmission virtual network device of the same type as the second transmission virtual network device, and establishes one VPN tunnel according to the VPN tunnel establishment resource.
  • the access device 202 access device changes the next hop in the first routing rule to the first transmission virtual network device.
  • a VPN tunnel is established between the access device 202 and the VPN server 203, and the first transmission virtual network device can simultaneously connect multiple network transmission units of the access device 202 according to the network transmission unit selection policy.
  • the network transmission unit is selected to transmit data to the VPN server 203 via the VPN tunnel through the selected network transmission unit, and the second transmission virtual network device in the VPN server 203 routes the data to the second terminal 204.
  • each network transmission unit has independent network access capability, and each network transmission unit can use its independent network access capability to transmit data to the VPN server 203 through the VPN tunnel to implement network transmission.
  • the first terminal 201 can select a network transmission unit from among multiple network transmission units that simultaneously connect the access device.
  • the data is transmitted to the VPN server 203 through the VPN tunnel through the selected network transmission unit.
  • the second transmission virtual network device in the VPN server 203 then routes the data to the second terminal 204. For details, refer to FIG. 4.
  • the access device 202 acquires uplink data.
  • the uplink data may be the first data in the first terminal 201.
  • the access device 202 If the access device 202 is located in the first terminal 201, the first data can be directly read from the first data storage location in the first terminal 201. If the access device 202 is located outside the first terminal 201, the first data sent by the first terminal 201 may be received.
  • the access device 202 obtains an uplink data packet from the first transmission virtual network device after the routing unit routes the uplink data packet to the first transmission virtual network device according to the modified first routing rule.
  • the access device 202 selects a network transmission unit according to the pre-acquired network transmission unit selection policy, and sets a source address IP of the VPN encapsulated uplink data packet to the selected network transmission when performing VPN encapsulation on the uplink data packet.
  • Unit IP, destination IP is set to VPN The IP address of the server.
  • the source IP address of the encapsulated uplink data packet is the IP of the selected network transmission unit, and the destination IP address is the IP address of the VPN server.
  • the specific implementation process of the access device 202 selecting a network transmission unit according to the pre-acquired network transmission unit selection policy may be: the access device 202 selects one transmission unit from the available network transmission units indicated by the first information.
  • the specific implementation process of performing the VPN encapsulation of the uplink data packet may be: encapsulating the uplink data packet and performing VPN encapsulation.
  • the access device 202 selects a network transmission unit according to the network transmission unit selection policy, and transmits the first data to the VPN server 203 via the VPN tunnel through the selected network transmission unit.
  • the implementation of the data transmission through the VPN tunnel may be an existing implementation, for example, a UDP (User Datagram Protocol) transmission, and details are not described herein again.
  • UDP User Datagram Protocol
  • the VPN server 203 determines, according to each network transmission unit corresponding to the access device 202, after receiving the uplink data packet of the access device 202, the VPN packet is decapsulated and sent to the second transmission virtual network device.
  • the VPN server 203 After the VPN server 203 performs VPN decapsulation on the data sent by the access device 202, the VPN server 203 sends the decapsulated data to the second transmission virtual network device according to the changed second routing rule.
  • the second transmission virtual network device decrypts the access device 202 to send data in the step, and the decrypted data is routed to the second terminal 204.
  • the first terminal 201 sends data to the access device 202, and the access device 202 selects a network transmission unit according to the network transmission unit selection policy, and passes the data through the selected network transmission unit through the VPN tunnel. Transfer to the VPN server 203, and route the data to the second terminal 204 via the VPN server 203, not only implementing the first terminal 201 The purpose of transmitting the data to the second terminal 204 can also reasonably utilize the network transmission unit to improve the data transmission quality.
  • the access device 202 shown in FIG. 4 can select the network transmission unit, and the access device 202 and the VPN server 203 can be implemented.
  • the process of transmitting the data to the VPN server 203 between the established VPN tunnels, and the process of transmitting the data from the VPN tunnel established between the VPN server 203 and the access device 202 to the access device 202 may also be implemented. 5.
  • the VPN server 203 receives the data packet addressed to the access device 202.
  • the data packet can be the second data in the second terminal 204.
  • the VPN server 203 routes the data packet to the second transmission virtual network device according to the changed second routing rule, and selects a network transmission unit according to the network transmission unit selection policy.
  • the VPN server 203 Before the VPN server 203 selects a network transmission unit according to the network transmission unit selection policy, it is also required to determine each network transmission unit corresponding to the access device side.
  • the VPN server 203 performs VPN encapsulation on the data packet and sends the data packet to the public network.
  • the destination address of the encapsulated data packet is the IP address of the selected network transmission unit.
  • the VPN server 203 may first encrypt the data packet, and then VPN encapsulate the encrypted data packet and send it to the public network.
  • the access device 202 routes the second data to the first transmission virtual network device according to the changed first routing rule, the encrypted data is obtained from the first transmission virtual network device, and the encrypted data is decrypted. The data is sent to the routing module of access device 202.
  • the routing module can route the decrypted data to the first terminal 201.
  • the VPN server 203 transmits the data in the second terminal 204 to the access device 202, and the access device 202 routes to the first terminal 201, not only to transmit the data in the second terminal 204 to the first terminal.
  • the purpose of the terminal 201 is also to flexibly select to transmit data. The way to rationally utilize the network transmission unit to improve the quality of data transmission.
  • the following takes the smart terminal to transmit the video data obtained by the instant messaging software to the VPN server corresponding to the instant messaging software as an example, and describes the implementation methods of the prior art and the present solution again.
  • the smart terminal includes both a wireless router and a 4G terminal, and the smart terminal currently transmits data through the 4G terminal.
  • the smart terminal transmits all the video data acquired by the instant communication software to the VPN server corresponding to the instant communication software through the 4G terminal.
  • the intelligent terminal transmits the image data acquired by the instant communication software to the VPN server corresponding to the instant communication software through the 4G terminal according to the real-time situation of the VPN tunnel corresponding to the 4G terminal and the wireless router, and acquires the voice by the instant communication software.
  • the data is transmitted to the VPN server corresponding to the instant messaging software through the wireless router.
  • the bandwidth that the 4G terminal can provide cannot satisfy the video data requirement, but the bandwidth that the 4G terminal can provide can meet the transmission requirement of the voice data by using the image data in the video data and The voice data is separated, the voice data is transmitted through the 4G terminal, and the image data is transmitted through the wireless router, which does not cause the transmission time of the video data to be prolonged, and the quality of the video data transmission is degraded.
  • the access device 202 continues to determine whether the shutdown condition is satisfied after determining that the ON condition is satisfied, and terminates the data transmission if the access device 202 determines that the shutdown condition is satisfied. Process, disconnect the VPN tunnel, and restore the routing rules to the pre-modification.
  • the access device 202 sends a VPN tunnel disconnection instruction to the VPN server 203, and restores the next hop in the changed first routing rule to the next hop before the change; the VPN server The 203 VPN server releases the VPN tunnel establishment resource according to the VPN tunnel disconnection command, and restores the next hop in the changed second routing rule to the next hop before the change.
  • the specific implementation manner of obtaining the preset shutdown control signal is: when the preset button is detected to be triggered by the user, the access device 202 determines that the shutdown condition is satisfied; or, according to the currently acquired network transmission unit selection policy, only one application is determined.
  • the network transmission unit transmits, and the access device 202 determines that the shutdown condition is satisfied.
  • the method provided by the embodiment of the present invention may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit, so as to flexibly select the network transmission unit according to the transmitted data, and thereby utilize the network transmission unit reasonably.
  • the method provided by the present application can be flexibly controlled by the control signal.
  • the network transmission unit is a wireless network terminal, but in practical applications, the network transmission unit may also be a wired network port.
  • the present embodiment provides a data transmission apparatus, and the principle of solving the problem by the data transmission apparatus is similar to the method performed by the access apparatus in the data transmission method shown in FIG. 3 to FIG. 5, and thus the transmission is performed.
  • the terminal reference may be made to the implementation of the method performed by the access device in FIG. 3 to FIG. 5, and the repeated description is not repeated.
  • the data transmission device includes:
  • the establishing unit 601 is configured to establish a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server end;
  • the modifying unit 602 is configured to modify the routing rule of the access device.
  • the modified routing rule is configured to route the uplink data packet by the routing unit of the access device to the first transmission virtual network device, so that the source address IP is the network corresponding to the access device.
  • the IP address of the transmission unit and the destination IP address of the VPN server are routed by the routing unit of the access device to the network transmission corresponding to the network transmission unit.
  • the first obtaining unit 603 is configured to: after the routing unit of the access device routes the uplink data packet to the first transmission virtual network device according to the modified routing rule, obtain the uplink data packet from the first transmission virtual network device;
  • the selecting unit 604 is configured to select a network transmission unit according to the pre-acquired network transmission unit selection policy, and set the source address IP of the VPN encapsulated uplink data packet to the selected network transmission when performing VPN encapsulation on the uplink data packet.
  • the IP address of the unit and the destination IP address are set to the IP address of the VPN server.
  • the network transmission unit selection policy is a load balancing selection policy; or a bandwidth aggregation selection policy.
  • the data transmission device further includes:
  • a second sending unit configured to send type information of each network transmission unit to a VPN server
  • a first receiving unit configured to receive first information returned by the VPN server; the first information is used to indicate an available network transmission unit;
  • the selecting unit 604 includes:
  • a transmission unit is selected from available network transmission units indicated by the first information.
  • the data transmission device further includes:
  • the second receiving unit is configured to receive a network transmission unit selection policy returned by the VPN server.
  • the selecting unit 604 is configured to encrypt the uplink data packet and perform VPN encapsulation.
  • the data transmission device further includes:
  • a second acquiring unit configured to obtain encrypted downlink data from the first transmission virtual network device
  • a decryption unit for decrypting encrypted downlink data
  • a third sending unit configured to send the decrypted downlink data to a routing module of the access device.
  • the establishing unit 601 is configured to establish a VPN tunnel when the opening condition is met;
  • Opening conditions include:
  • the data transmission device further includes:
  • the disconnect unit is used to determine that the shutdown condition is met, disconnect the VPN tunnel, and restore the routing rule to the pre-modification.
  • the data transmission device further includes:
  • a determining unit configured to determine that the closing condition is satisfied after detecting that the preset button is triggered by the user; or determining, according to the currently acquired network transmission unit selection policy, that only one network transmission unit is used for transmission, and determining that the closing condition is satisfied.
  • the data transmission device further includes:
  • the third acquiring unit is configured to: when the preset button is triggered by the user, obtain a corresponding network transmission unit selection policy; or obtain a corresponding network transmission unit selection policy according to the real-time network transmission parameter.
  • the data transmission apparatus may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit, thereby flexibly selecting a network transmission unit according to the transmitted data, and thereby rationally utilizing the network transmission. unit.
  • the present embodiment provides an electronic device.
  • the electronic device includes a memory 701, one or more processors 702, and one or more modules 703, the one or more modules 703. Stored in the memory 701 and configured to be executed by the one or more processors 702, the one or more modules 703 including methods for performing the operations performed by the access devices of Figures 3-5 The instructions in each step.
  • the electronic device provided by the embodiment of the present invention may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit to implement the The transmitted data flexibly selects the network transmission unit to make reasonable use of the network transmission unit.
  • the present embodiment provides a computer program product for use in conjunction with an electronic device including a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer
  • the program mechanism includes instructions for performing the various steps in the method performed by the access device of Figures 3 through 5.
  • the computer program product provided by the embodiment of the present invention may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit, thereby flexibly selecting a network transmission unit according to the transmitted data, thereby appropriately utilizing the network transmission. unit.
  • the present embodiment provides a data transmission apparatus.
  • the principle of solving the problem by the data transmission apparatus is similar to the method performed by the VPN server in the data transmission method shown in FIG. 3 to FIG. 5, and thus the transmission end is
  • the implementation refer to the implementation of the method performed by the VPN server in FIG. 3 to FIG. 5, and the repeated description is not repeated.
  • the data transmission device includes:
  • the establishing unit 801 is configured to establish a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server end;
  • a determining unit 802 configured to determine each network transmission unit corresponding to the access device side
  • the processing unit 803 is configured to perform VPN decapsulation on the data packet after receiving the uplink data packet of the access device, and send the data packet to the second transmission virtual network device.
  • the data transmission device further includes:
  • the obtaining unit is configured to obtain a corresponding network transmission unit selection policy according to the real-time network transmission parameter.
  • the data transmission apparatus selects a policy according to a network transmission unit selection policy. Selecting a network transmission unit to receive data, and flexibly selecting a network transmission unit according to the transmitted data, thereby rationally utilizing the network transmission unit.
  • the present embodiment provides an electronic device.
  • the electronic device includes a memory 901, one or more processors 902, and one or more modules 903, the one or more modules 903 Stored in the memory 901 and configured to be executed by the one or more processors 902, the one or more modules 903 comprising methods for performing the VPN server of Figures 3 through 5 Instructions for each step.
  • the electronic device selects a network transmission unit to receive data according to a network transmission unit selection policy, and implements flexible selection of a network transmission unit according to the transmitted data, thereby appropriately utilizing the network transmission unit.
  • the present embodiment provides a computer program product for use in conjunction with an electronic device including a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer
  • the program mechanism includes instructions for performing the various steps in the method performed by the VPN server of Figures 3 through 5.
  • the computer program product provided by the embodiment of the present invention selects a network transmission unit to receive data according to a network transmission unit selection policy, and implements flexible selection of a network transmission unit according to the transmitted data, thereby appropriately utilizing the network transmission unit.
  • embodiments of the present invention can be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment, or a combination of software and hardware. Moreover, the present invention may employ computer usable storage media (including but not included) in one or more of the computer usable program code embodied therein. It is limited to the form of a computer program product implemented on a disk storage, a CD-ROM, an optical storage, or the like.
  • the computer program instructions can also be stored in a computer readable memory that can direct a computer or other programmable data processing device to operate in a particular manner, such that the instructions stored in the computer readable memory produce an article of manufacture comprising the instruction device.
  • the apparatus implements the functions specified in one or more blocks of a flow or a flow and/or block diagram of the flowchart.
  • These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device.
  • the instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

Provided are a data transmission method, a data transmission apparatus, an electronic device and a computer program product, applied to the technical field of wireless communications. The method comprises: establishing a VPN tunnel, and modifying a routing rule of an access apparatus; after routing an uplink data packet to a first virtual transmission network device according to the modified routing rule, acquiring the uplink data packet from the first virtual transmission network device; and selecting a network transmission unit according to a network transmission unit selection policy, and when performing VPN packaging on the uplink data packet, setting a source address IP of the VPN-packaged uplink data packet to be the IP of the selected network transmission unit, and setting a destination IP to be the IP address of a VPN server. According to the method provided in the present invention, a network transmission unit may be selected according to a network transmission unit selection policy, and uplink data is transmitted by means of the selected network transmission unit, so that the network transmission unit is selected flexibly and reasonably according to the transmitted data.

Description

数据传输方法、数据传输装置、电子设备和计算机程序产品Data transmission method, data transmission device, electronic device and computer program product 技术领域Technical field
本发明涉及无线通信技术领域,特别涉及一种数据传输方法、数据传输装置、电子设备和计算机程序产品。The present invention relates to the field of wireless communication technologies, and in particular, to a data transmission method, a data transmission device, an electronic device, and a computer program product.
背景技术Background technique
随着无线通信相关技术的飞速发展,通过无线路由器、无线数据终端(例如3G(第三代移动通信技术)/4G(第四代移动通信技术)终端(如SIM(Subscriber Identification Module客户识别模块)卡)、有线网络传输单元等网络传输单元进行数据传输成为常用方式之一。With the rapid development of wireless communication related technologies, through wireless routers, wireless data terminals (such as 3G (third generation mobile communication technology) / 4G (fourth generation mobile communication technology) terminals (such as SIM (Subscriber Identification Module) Card transmission, such as a cable network transmission unit, is one of the common methods for data transmission.
例如:第一终端(如用户智能手机)预先通过无线路由器利用wifi技术与第二终端建立传输路径(该传输路径的一端连接无线路由器,另一端连接第二终端)。当第一终端发送数据流时,数据流中的各数据均通过预先建立的传输路径将其数据传输至第二终端(如应用服务器)。For example, the first terminal (such as a user's smart phone) establishes a transmission path with the second terminal in advance through the wireless router by using a wifi technology (one end of the transmission path is connected to the wireless router, and the other end is connected to the second terminal). When the first terminal transmits the data stream, each data in the data stream transmits its data to the second terminal (such as an application server) through a pre-established transmission path.
再例如:第一终端预先通过3G/4G终端利用3G/4G技术与第二终端建立传输路径(该传输路径的一端连接3G/4G终端,另一端连接第二终端)。当第一终端发送数据流时,数据流中的各数据均通过预先建立的传输路径将其数据传输至第二终端。For another example, the first terminal establishes a transmission path with the second terminal by using the 3G/4G technology in advance through the 3G/4G terminal (one end of the transmission path is connected to the 3G/4G terminal, and the other end is connected to the second terminal). When the first terminal transmits the data stream, each data in the data stream transmits its data to the second terminal through a pre-established transmission path.
若第一终端连接2个网络传输单元,分别为无线路由器和4G终端,预先通过4G终端与第二终端建立传输路径如图1所示,包括4G终端-基站(如EnodeB)-Internet-第二终端。当第一终端发送数据流时,数据流中的各数据经4G终端传输至基站,基站将各数据经Internet传输至第二终端。If the first terminal is connected to two network transmission units, namely a wireless router and a 4G terminal, the transmission path is established in advance with the second terminal through the 4G terminal, as shown in FIG. 1 , including a 4G terminal-base station (such as EnodeB)-Internet-second. terminal. When the first terminal sends the data stream, each data in the data stream is transmitted to the base station via the 4G terminal, and the base station transmits each data to the second terminal via the Internet.
上述方法中,对于第一终端的数据流中的各数据,都通过预先建立的网络传输单元与第二终端建立的路径传输,而4G技术中带宽是固定的,但通过该方法传输的数据流包括的数据量不稳定,若通过该方法传输的数据 流包括的数据量较大,则数据流中每个数据可用的带宽较少,对于单个数据,会出现可用带宽不能满足该数据的传输需求情况,造成该数据的传输时间延长,传输质量下降。In the above method, each data in the data stream of the first terminal is transmitted through a path established by the pre-established network transmission unit and the second terminal, and the bandwidth in the 4G technology is fixed, but the data stream transmitted by the method is used. The amount of data included is unstable, if the data transmitted by this method If the amount of data included in the stream is large, the available bandwidth of each data in the data stream is small. For a single data, the available bandwidth cannot satisfy the transmission requirement of the data, and the transmission time of the data is prolonged, and the transmission quality is degraded.
发明内容Summary of the invention
为了提升传输质量,本发明实施例提供了一种数据传输方法、数据传输装置、电子设备和计算机程序产品。In order to improve the transmission quality, an embodiment of the present invention provides a data transmission method, a data transmission device, an electronic device, and a computer program product.
第一方面,本发明实施例提供了一种数据传输方法,所述方法应用于接入装置,所述方法包括:In a first aspect, an embodiment of the present invention provides a data transmission method, where the method is applied to an access device, where the method includes:
建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道,并修改接入装置的路由规则;修改的路由规则使得上行数据包被接入装置的路由单元路由至第一传输虚拟网络设备,使得源地址IP为接入装置所对应的网络传输单元的IP地址且目标IP为VPN服务器端的数据包被接入装置的路由单元路由至该网络传输单元对应的网络传输单元的网关;Establishing a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server side, and modifying a routing rule of the access device; the modified routing rule is such that the uplink data packet is accessed by the access device. The routing unit routes to the first transmission virtual network device, so that the source address IP is the IP address of the network transmission unit corresponding to the access device, and the data packet whose destination IP is the VPN server is routed to the network transmission unit by the routing unit of the access device. a gateway of the corresponding network transmission unit;
在所述接入装置的路由单元根据修改后的路由规则将上行数据包路由至第一传输虚拟网络设备后,从所述第一传输虚拟网络设备中获取上行数据包;After the routing unit of the access device routes the uplink data packet to the first transmission virtual network device according to the modified routing rule, acquiring the uplink data packet from the first transmission virtual network device;
根据预先获取的网络传输单元选择策略选择一个网络传输单元,并在对上行数据包进行VPN封装时,将VPN封装的上行数据包的源地址IP设置为所选择的网络传输单元的IP,目的IP设置为VPN服务器的IP地址。Selecting a network transmission unit according to the pre-acquired network transmission unit selection policy, and when performing VPN encapsulation on the uplink data packet, setting the source address IP of the VPN encapsulated uplink data packet to the IP of the selected network transmission unit, destination IP Set to the IP address of the VPN server.
第二方面,本发明实施例提供了一种数据传输装置,包括:In a second aspect, an embodiment of the present invention provides a data transmission apparatus, including:
建立单元,用于建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道;a establishing unit, configured to establish a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server end;
修改单元,用于修改接入装置的路由规则;修改的路由规则使得上行数据包被接入装置的路由单元路由至第一传输虚拟网络设备,使得源地址 IP为接入装置所对应的网络传输单元的IP地址且目标IP为VPN服务器端的数据包被接入装置的路由单元路由至该网络传输单元对应的网络传输单元的网关;a modifying unit, configured to modify a routing rule of the access device; the modified routing rule causes the uplink data packet to be routed by the routing unit of the access device to the first transmission virtual network device, so that the source address IP is the IP address of the network transmission unit corresponding to the access device, and the data packet whose destination IP is the VPN server is routed by the routing unit of the access device to the gateway of the network transmission unit corresponding to the network transmission unit;
第一获取单元,用于在所述接入装置的路由单元根据修改后的路由规则将上行数据包路由至第一传输虚拟网络设备后,从所述第一传输虚拟网络设备中获取上行数据包;a first acquiring unit, configured to acquire an uplink data packet from the first transmission virtual network device after the routing unit of the access device routes the uplink data packet to the first transmission virtual network device according to the modified routing rule ;
选择单元,用于根据预先获取的网络传输单元选择策略选择一个网络传输单元;并在对上行数据包进行VPN封装时,将VPN封装的上行数据包的源地址IP设置为所选择的网络传输单元的IP,目的IP设置为VPN服务器的IP地址。a selecting unit, configured to select a network transmission unit according to a pre-acquired network transmission unit selection policy; and when performing VPN encapsulation on the uplink data packet, setting a source address IP of the VPN encapsulated uplink data packet to the selected network transmission unit IP, destination IP is set to the IP address of the VPN server.
第三方面,本发明实施例提供了一种电子设备,所述电子设备包括:In a third aspect, an embodiment of the present invention provides an electronic device, where the electronic device includes:
存储器,一个或多个处理器;以及一个或多个模块,所述一个或多个模块被存储在所述存储器中,并被配置成由所述一个或多个处理器执行,所述一个或多个模块包括用于执行第一方面所述方法中各个步骤的指令。a memory, one or more processors; and one or more modules, the one or more modules being stored in the memory and configured to be executed by the one or more processors, the one or The plurality of modules includes instructions for performing the various steps in the method of the first aspect.
第四方面,本发明实施例提供了一种与包括显示器的电子设备结合使用的计算机程序产品,所述计算机程序产品包括计算机可读的存储介质和内嵌于其中的计算机程序机制,所述计算机程序机制包括用于执行第一方面所述方法中各个步骤的指令。In a fourth aspect, an embodiment of the present invention provides a computer program product for use in conjunction with an electronic device including a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer The program mechanism includes instructions for performing the various steps in the method of the first aspect.
第五方面,本发明实施例提供了一种数据传输方法,应用于VPN服务器,所述方法包括:In a fifth aspect, an embodiment of the present invention provides a data transmission method, which is applied to a VPN server, where the method includes:
建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道;Establishing a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server side;
确定接入装置侧对应的各个网络传输单元;Determining respective network transmission units corresponding to the access device side;
在接收到接入装置的上行数据包后,对数据包进行VPN解封,并发送至第二传输虚拟网络设备。 After receiving the uplink data packet of the access device, the data packet is VPN decapsulated and sent to the second transmission virtual network device.
第六方面,本发明实施例提供了一种数据传输装置,包括:In a sixth aspect, an embodiment of the present invention provides a data transmission apparatus, including:
建立单元,用于建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道;a establishing unit, configured to establish a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server end;
确定单元,用于确定接入装置侧对应的各个网络传输单元;a determining unit, configured to determine each network transmission unit corresponding to the access device side;
处理单元,用于在接收到接入装置的上行数据包后,对数据包进行VPN解封,并发送至第二传输虚拟网络设备。The processing unit is configured to perform VPN decapsulation on the data packet after receiving the uplink data packet of the access device, and send the data packet to the second transmission virtual network device.
第七方面,本发明实施例提供了一种电子设备,所述电子设备包括:In a seventh aspect, an embodiment of the present invention provides an electronic device, where the electronic device includes:
存储器,一个或多个处理器;以及一个或多个模块,所述一个或多个模块被存储在所述存储器中,并被配置成由所述一个或多个处理器执行,所述一个或多个模块包括用于执行第五方面所述方法中各个步骤的指令。a memory, one or more processors; and one or more modules, the one or more modules being stored in the memory and configured to be executed by the one or more processors, the one or The plurality of modules includes instructions for performing the various steps of the method of the fifth aspect.
第八方面,本发明实施例提供了一种与包括显示器的电子设备结合使用的计算机程序产品,所述计算机程序产品包括计算机可读的存储介质和内嵌于其中的计算机程序机制,所述计算机程序机制包括用于执行第五方面所述方法中所述方法中各个步骤的指令。In an eighth aspect, an embodiment of the present invention provides a computer program product for use in conjunction with an electronic device including a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer The program mechanism includes instructions for performing the various steps of the methods described in the method of the fifth aspect.
有益效果如下:The benefits are as follows:
本发明实施例提供的方法可以根据网络传输单元选择策略选择一个网络传输单元,并将上行数据通过选择的网络传输单元传输,实现根据发送的数据灵活选择网络传输单元,进而合理利用网络传输单元。The method provided by the embodiment of the present invention may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit, so as to flexibly select the network transmission unit according to the transmitted data, and thereby utilize the network transmission unit reasonably.
附图说明DRAWINGS
下面将参照附图描述本发明的具体实施例,其中:Specific embodiments of the present invention will be described below with reference to the accompanying drawings, in which:
图1为现有技术中数据传输示意图;1 is a schematic diagram of data transmission in the prior art;
图2为本发明实施例中的一种数据传输系统结构示意图;2 is a schematic structural diagram of a data transmission system according to an embodiment of the present invention;
图3为本发明实施例中的一种VPN隧道建立流程示意图;3 is a schematic flowchart of a VPN tunnel establishment process according to an embodiment of the present invention;
图4为本发明实施例中的一种数据传输方法流程示意图;4 is a schematic flowchart of a data transmission method according to an embodiment of the present invention;
图5为本发明实施例中的另一种数据传输方法流程示意图; FIG. 5 is a schematic flowchart of another data transmission method according to an embodiment of the present invention;
图6为本发明实施例中的一种数据传输装置结构示意图;6 is a schematic structural diagram of a data transmission apparatus according to an embodiment of the present invention;
图7为本发明实施例中的一种电子设备结构示意图;FIG. 7 is a schematic structural diagram of an electronic device according to an embodiment of the present invention;
图8为本发明实施例中的另一种数据传输装置结构示意图;FIG. 8 is a schematic structural diagram of another data transmission apparatus according to an embodiment of the present invention; FIG.
图9为本发明实施例中的另一种电子设备结构示意图。FIG. 9 is a schematic structural diagram of another electronic device according to an embodiment of the present invention.
具体实施方式detailed description
为了使本发明的技术方案及优点更加清楚明白,以下结合附图对本发明的示例性实施例进行进一步详细的说明,显然,所描述的实施例仅是本发明的一部分实施例,而不是所有实施例的穷举。并且在不冲突的情况下,本发明中的实施例及实施例中的特征可以互相结合。The embodiments of the present invention are further described in detail with reference to the accompanying drawings, in which FIG. An exhaustive example. And in the case of no conflict, the embodiments of the present invention and the features in the embodiments can be combined with each other.
发明人在发明过程中注意到:The inventor noticed during the invention:
目前数据传输方法为:第一终端预先通过网络传输单元(如无线路由器,或者,无线数据终端)与第二终端建立传输路径。当第一终端发送数据时,通过预先建立的传输路径将其数据传输至第二终端。而网络传输单元对应的带宽是固定的,但通过该方法传输的数据量不稳定,若通过该方法传输的数据量较大,则每个数据可用的带宽较少,对于单个数据,会出现可用带宽不能满足该数据的传输需求情况,造成该数据的传输时间延长,传输质量下降。The current data transmission method is: the first terminal establishes a transmission path with the second terminal in advance through a network transmission unit (such as a wireless router or a wireless data terminal). When the first terminal transmits data, its data is transmitted to the second terminal through a pre-established transmission path. The bandwidth corresponding to the network transmission unit is fixed, but the amount of data transmitted by the method is unstable. If the amount of data transmitted by the method is large, the available bandwidth of each data is small, and available for a single data. The bandwidth cannot meet the transmission requirement of the data, causing the transmission time of the data to be prolonged and the transmission quality to be degraded.
基于此,本发明提供了一种数据传输方法,该数据传输方法可以根据网络传输单元选择策略选择一个网络传输单元,并将上行数据通过选择的网络传输单元传输,实现根据发送的数据灵活选择网络传输单元,进而合理利用网络传输单元,提升数据传输质量。Based on this, the present invention provides a data transmission method, which can select a network transmission unit according to a network transmission unit selection policy, and transmit uplink data through a selected network transmission unit, thereby implementing flexible selection of a network according to the transmitted data. The transmission unit, and then the network transmission unit is rationally utilized to improve the data transmission quality.
本发明提供的数据传输方法可以应用于由接入装置和VPN服务器组成的数据传输系统中。如图2所示,数据传输系统包括:接入装置202和VPN服务器203。除此之外,还可以包括数据产生端——第一终端201和数据最 终接收端——第二终端204。The data transmission method provided by the present invention can be applied to a data transmission system composed of an access device and a VPN server. As shown in FIG. 2, the data transmission system includes an access device 202 and a VPN server 203. In addition, it can also include a data generating end - the first terminal 201 and the data most The final receiving end - the second terminal 204.
其中,接入装置202可以位于第一终端201中(如图2(a))。接入装置202也可以位于第一终端201外,且接入装置202与第一终端201连接(如图2(b))。The access device 202 can be located in the first terminal 201 (as shown in FIG. 2( a )). The access device 202 can also be located outside the first terminal 201, and the access device 202 is connected to the first terminal 201 (as shown in FIG. 2(b)).
接入装置202同时连接n个网络传输单元,其中,n个网络传输单元可以为n个无线终端,也可以为n个线网络传输单元,还可以为,m个无线终端和n-m个线网络传输单元,m为大于0的正整数且m小于n。The access device 202 is connected to n network transmission units at the same time, wherein the n network transmission units may be n wireless terminals, or may be n line network transmission units, or may be, m wireless terminals and nm line network transmissions. Unit, m is a positive integer greater than 0 and m is less than n.
其中,n个无线终端,可以为n个无线路由器,或者,n个无线数据终端,或者,t个网络传输单元和n-t个无线数据终端,t为大于0的正整数且m小于n。m个无线终端,可以为m个无线路由器,或者,m个无线数据终端,或者,i个网络传输单元和m-i个无线数据终端,i为大于0的正整数且m小于n。The n wireless terminals may be n wireless routers, or n wireless data terminals, or t network transmission units and n-t wireless data terminals, where t is a positive integer greater than 0 and m is less than n. m wireless terminals, which may be m wireless routers, or m wireless data terminals, or i network transmission units and m-i wireless data terminals, i being a positive integer greater than 0 and m being less than n.
同时,对于接入装置202同时连接多个无线终端的情况,为各无线终端提供服务的可以为相同运营商,也可以为不同运营商。In the meantime, for the case where the access device 202 is connected to multiple wireless terminals at the same time, the services provided for each wireless terminal may be the same operator or different operators.
另外,在执行本实施例提供的数据传输方法传输数据前,接入装置202会预先与VPN服务器203之间建立1条VPN(Virtual Private Network,虚拟专用网络)隧道。具体建立过程为:接入装置202确定满足开启条件后,建立接入装置202侧的第一传输虚拟网络设备与VPN服务器端203的第二传输虚拟网络设备之间的VPN隧道,并修改接入装置的路由规则。In addition, before performing the data transmission method provided by the embodiment, the access device 202 establishes a VPN (Virtual Private Network) tunnel in advance with the VPN server 203. The specific establishment process is: after the access device 202 determines that the open condition is met, the VPN tunnel between the first transmission virtual network device on the access device 202 side and the second transmission virtual network device on the VPN server end 203 is established, and the access is modified. The routing rules of the device.
其中,修改的路由规则可以使上行数据包被接入装置202的路由单元路由至第一传输虚拟网络设备,源地址IP为接入装置202所对应的网络传输单元的IP(Internet Protocol,网络之间互连的协议)地址,且目标IP为VPN服务器203端的数据包被接入装置202的路由单元路由至该网络传输单元对应的网络传输单元的网关。在具体实施时,为了使上行数据包被接入装置202的路由单元路由至第一传输虚拟网络设备,可以使路由单元的 下一跳指向该网络传输单元;另外为了使目标IP为VPN服务器203端的数据包被接入装置202的路由单元路由至该网络传输单元对应的网络传输单元的网关,可以增加N条策略路由和N个路由表,(N等于网络传输单元的个数),也就是给每一个网络传输单元增加一个策略路由和一个路由表。策略路由内容为源地址为该网络传输单元的IP地址,目的IP地址为VPN服务器IP地址的数据包查询该网络传输单元的路由表,路由表的内容为缺省网关为该网络传输单元的网关。The modified routing rule may enable the uplink data packet to be routed by the routing unit of the access device 202 to the first transmission virtual network device, where the source address IP is the IP of the network transmission unit corresponding to the access device 202. The inter-connected protocol) address, and the packet whose destination IP is the VPN server 203 is routed by the routing unit of the access device 202 to the gateway of the network transmission unit corresponding to the network transmission unit. In a specific implementation, in order for the uplink data packet to be routed by the routing unit of the access device 202 to the first transmission virtual network device, the routing unit may be The next hop is directed to the network transmission unit; in addition, in order to enable the destination IP to be the data packet of the VPN server 203 to be routed by the routing unit of the access device 202 to the gateway of the network transmission unit corresponding to the network transmission unit, N policy routes and N routing tables, (N is equal to the number of network transmission units), that is, adding a policy route and a routing table to each network transmission unit. The policy routing content is that the source address is the IP address of the network transmission unit, and the destination IP address is the data packet of the VPN server IP address, and the routing table of the network transmission unit is queried. The content of the routing table is the default gateway is the gateway of the network transmission unit. .
另外,开启条件包括:监测到预设按钮被用户触发;和/或,实时网络传输参数不满足传输需求。In addition, the opening condition includes: monitoring that the preset button is triggered by the user; and/or, the real-time network transmission parameter does not satisfy the transmission requirement.
图3示出了建立接入装置202侧的第一传输虚拟网络设备与VPN服务器端203的第二传输虚拟网络设备之间的VPN隧道,并修改接入装置的路由规则的具体实现方法,参见图3,该方法包括:FIG. 3 shows a specific implementation method for establishing a VPN tunnel between the first transmission virtual network device on the access device 202 side and the second transmission virtual network device of the VPN server 203, and modifying the routing rules of the access device. Figure 3. The method includes:
301,接入装置202将各网络传输单元的类型信息发送至VPN服务器203。301. The access device 202 sends the type information of each network transmission unit to the VPN server 203.
为了让VPN服务器203确定更合理的网络传输单元选择策略,接入装置202需要将其接入的各网络传输单元的类型信息发送至VPN服务器203。In order for the VPN server 203 to determine a more reasonable network transmission unit selection policy, the access device 202 needs to transmit the type information of each network transmission unit it accesses to the VPN server 203.
302,VPN服务器203根据各网络传输单元的信息确定网络传输单元选择策略,创建第二传输虚拟网络设备,分配VPN隧道建立资源,并将第二路由规则中的下一跳更改为第二传输虚拟网络设备。302. The VPN server 203 determines a network transmission unit selection policy according to information of each network transmission unit, creates a second transmission virtual network device, allocates a VPN tunnel establishment resource, and changes a next hop in the second routing rule to a second transmission virtual Internet equipment.
VPN服务器203创建第二传输虚拟网络设备的方式可为现有方式,例如,通过Linux虚拟网卡建立TUN(点对点设备)类型的第二传输虚拟网络设备,或者,通过Linux虚拟网卡建立TAP(以太网设备)类型的第二传输虚拟网络设备。The manner in which the VPN server 203 creates the second transmission virtual network device may be an existing manner, for example, establishing a TUN (point-to-point device) type second transmission virtual network device through a Linux virtual network card, or establishing a TAP through a Linux virtual network card (Ethernet) Device) type of second transmission virtual network device.
VPN服务器203根据实时网络传输参数获取对应的网络传输单元选择策略。其中,网络传输单元选择策略可以为负载均衡的选择策略,也可以 为带宽聚合的选择策略。The VPN server 203 acquires a corresponding network transmission unit selection policy according to the real-time network transmission parameters. Wherein, the network transmission unit selection strategy may be a load balancing selection strategy, or A selection strategy for bandwidth aggregation.
为了使建立的第二传输虚拟网络设备可以处理VPN服务器203接收到的数据,并将其路由至数据的接收端第二终端204,VPN服务器203根据各网络传输单元的信息确定网络传输单元选择策略,创建第二传输虚拟网络设备,分配VPN隧道建立资源后,还会将第二路由规则中的下一跳更改为第二传输虚拟网络设备,进而根据第二路由规则将VPN服务器203接收到的数据路由至第二传输虚拟网络设备。In order for the established second transmission virtual network device to process the data received by the VPN server 203 and route it to the receiving terminal second terminal 204 of the data, the VPN server 203 determines the network transmission unit selection policy according to the information of each network transmission unit. After the second transmission virtual network device is created, the next hop in the second routing rule is changed to the second transmission virtual network device, and the VPN server 203 is received according to the second routing rule. The data is routed to the second transport virtual network device.
303,VPN服务器203将网络传输单元选择策略、第二传输虚拟网络设备的类型和VPN隧道建立资源发送至接入装置202。303. The VPN server 203 sends the network transmission unit selection policy, the type of the second transmission virtual network device, and the VPN tunnel establishment resource to the access device 202.
其中,第二传输虚拟网络设备的类型为TUN,或者,第二传输虚拟网络设备的类型为TAP。The type of the second transmission virtual network device is TUN, or the type of the second transmission virtual network device is TAP.
除此之外,VPN服务器203还会根据实时网络传输参数确定可用的网络传输单元,将可用的网络传输单元以第一信息的形式返回接入装置202。In addition, the VPN server 203 also determines available network transmission units based on real-time network transmission parameters, and returns the available network transmission units to the access device 202 in the form of first information.
304,接入装置202接收网络传输单元选择策略、第二传输虚拟网络设备的类型和VPN隧道建立资源。304. The access device 202 receives the network transmission unit selection policy, the type of the second transmission virtual network device, and the VPN tunnel establishment resource.
若步骤302中,VPN服务器203将可用的网络传输单元以第一信息的形式返回接入装置202,则此步骤,接入装置202还会接收第一信息。If the VPN server 203 returns the available network transmission unit to the access device 202 in the form of the first information in step 302, the access device 202 also receives the first information.
另外,接入装置202还会主动接收网络传输单元选择策略。例如,接入装置202监测到预设按钮被用户触发时,获取对应的网络传输单元选择策略;或者,接入装置202根据实时网络传输参数获取对应的网络传输单元选择策略。In addition, the access device 202 also actively receives the network transmission unit selection policy. For example, when the access device 202 detects that the preset button is triggered by the user, the corresponding network transmission unit selection policy is acquired; or the access device 202 acquires the corresponding network transmission unit selection policy according to the real-time network transmission parameter.
305,接入装置202创建与第二传输虚拟网络设备相同类型的第一传输虚拟网络设备,并根据VPN隧道建立资源建立1个VPN隧道。305. The access device 202 creates a first transmission virtual network device of the same type as the second transmission virtual network device, and establishes one VPN tunnel according to the VPN tunnel establishment resource.
306,接入装置202接入装置将第一路由规则中的下一跳更改为第一传输虚拟网络设备。 306. The access device 202 access device changes the next hop in the first routing rule to the first transmission virtual network device.
通过步骤301至步骤306,接入装置202与VPN服务器203之间会建立1个VPN隧道,第一传输虚拟网络设备可以根据网络传输单元选择策略从同时连接接入装置202的多个网络传输单元中,选择一个网络传输单元,将数据通过选择的网络传输单元,经VPN隧道传输至VPN服务器203,VPN服务器203中的第二传输虚拟网络设备再将该数据路由至第二终端204。这样,基于该VPN隧道,每个网络传输单元都具备了独立的网络访问能力,每个网络传输单元均可利用其独立的网络访问能力,将数据通过VPN隧道传输至VPN服务器203,实现网络传输单元的灵活选择以及合理的利用,提升数据传输质量。Through steps 301 to 306, a VPN tunnel is established between the access device 202 and the VPN server 203, and the first transmission virtual network device can simultaneously connect multiple network transmission units of the access device 202 according to the network transmission unit selection policy. The network transmission unit is selected to transmit data to the VPN server 203 via the VPN tunnel through the selected network transmission unit, and the second transmission virtual network device in the VPN server 203 routes the data to the second terminal 204. In this way, based on the VPN tunnel, each network transmission unit has independent network access capability, and each network transmission unit can use its independent network access capability to transmit data to the VPN server 203 through the VPN tunnel to implement network transmission. Flexible selection of units and rational use to improve data transmission quality.
通过图3所述的方法,接入装置202与VPN服务器203之间建立1个VPN隧道之后,第一终端201就可以从同时连接接入装置的多个网络传输单元中,选择一个网络传输单元,将数据通过选择的网络传输单元,经VPN隧道传输至VPN服务器203,VPN服务器203中的第二传输虚拟网络设备再将该数据路由至第二终端204,具体过程参见图4。After the VPN device establishes a VPN tunnel between the access device 202 and the VPN server 203, the first terminal 201 can select a network transmission unit from among multiple network transmission units that simultaneously connect the access device. The data is transmitted to the VPN server 203 through the VPN tunnel through the selected network transmission unit. The second transmission virtual network device in the VPN server 203 then routes the data to the second terminal 204. For details, refer to FIG. 4.
401,接入装置202获取上行数据。401. The access device 202 acquires uplink data.
其中,上行数据可以为第一终端201中的第一数据。The uplink data may be the first data in the first terminal 201.
获取方法有多种,若接入装置202位于第一终端201中,则可以直接从第一终端201中的第一数据存储位置读取第一数据。若接入装置202位于第一终端201外,则可以接收第一终端201发送的第一数据。There are various acquisition methods. If the access device 202 is located in the first terminal 201, the first data can be directly read from the first data storage location in the first terminal 201. If the access device 202 is located outside the first terminal 201, the first data sent by the first terminal 201 may be received.
402,接入装置202在其路由单元根据修改后的第一路由规则将上行数据包路由至第一传输虚拟网络设备后,从第一传输虚拟网络设备中获取上行数据包。402. The access device 202 obtains an uplink data packet from the first transmission virtual network device after the routing unit routes the uplink data packet to the first transmission virtual network device according to the modified first routing rule.
403,接入装置202根据预先获取的网络传输单元选择策略选择一个网络传输单元,并在对上行数据包进行VPN封装时,将VPN封装的上行数据包的源地址IP设置为所选择的网络传输单元的IP,目的IP设置为VPN 服务器的IP地址。403. The access device 202 selects a network transmission unit according to the pre-acquired network transmission unit selection policy, and sets a source address IP of the VPN encapsulated uplink data packet to the selected network transmission when performing VPN encapsulation on the uplink data packet. Unit IP, destination IP is set to VPN The IP address of the server.
其中,封装后的上行数据包的源地址IP为所选择的网络传输单元的IP,目的IP为VPN服务器的IP地址。The source IP address of the encapsulated uplink data packet is the IP of the selected network transmission unit, and the destination IP address is the IP address of the VPN server.
接入装置202根据预先获取的网络传输单元选择策略选择一个网络传输单元的具体实现过程可以为:接入装置202从第一信息指示的可用的网络传输单元中选择一个传输单元。The specific implementation process of the access device 202 selecting a network transmission unit according to the pre-acquired network transmission unit selection policy may be: the access device 202 selects one transmission unit from the available network transmission units indicated by the first information.
将上行数据包进行VPN封装的具体实现过程可以为:对上行数据包进行加密后进行VPN封装。The specific implementation process of performing the VPN encapsulation of the uplink data packet may be: encapsulating the uplink data packet and performing VPN encapsulation.
接入装置202根据网络传输单元选择策略选择一个网络传输单元,并将第一数据通过选择的网络传输单元,经VPN隧道传输至VPN服务器203。The access device 202 selects a network transmission unit according to the network transmission unit selection policy, and transmits the first data to the VPN server 203 via the VPN tunnel through the selected network transmission unit.
此外,数据通过VPN隧道传输的实现方式可为现有实现方式,例如,基于UDP(User Datagram Protocol,用户数据报协议)进行传输,此处不再赘述。In addition, the implementation of the data transmission through the VPN tunnel may be an existing implementation, for example, a UDP (User Datagram Protocol) transmission, and details are not described herein again.
404,VPN服务器203确定接入装置202侧对应的各个网络传输单元,在接收到接入装置202的上行数据包后,对数据包进行VPN解封,并发送至第二传输虚拟网络设备。404. The VPN server 203 determines, according to each network transmission unit corresponding to the access device 202, after receiving the uplink data packet of the access device 202, the VPN packet is decapsulated and sent to the second transmission virtual network device.
VPN服务器203将接入装置202发送的数据进行VPN解封后,根据更改后的第二路由规则将解封后的数据发送至第二传输虚拟网络设备。After the VPN server 203 performs VPN decapsulation on the data sent by the access device 202, the VPN server 203 sends the decapsulated data to the second transmission virtual network device according to the changed second routing rule.
若步骤403中接入装置202发送的数据是加密的,则本步骤中第二传输虚拟网络设备解密接入装置202发送数据,将解密后的数据路由至第二终端204。If the data sent by the access device 202 is encrypted in step 403, the second transmission virtual network device decrypts the access device 202 to send data in the step, and the decrypted data is routed to the second terminal 204.
通过步骤401至步骤404,第一终端201将数据发送至接入装置202,接入装置202根据网络传输单元选择策略,酌情选择一个网络传输单元,将数据通过选择的网络传输单元,经VPN隧道传输至VPN服务器203,经VPN服务器203将该数据路由至第二终端204,不仅实现了将第一终端201 中数据传输至第二终端204的目的,还可以合理利用网络传输单元,提升数据传输质量。Through steps 401 to 404, the first terminal 201 sends data to the access device 202, and the access device 202 selects a network transmission unit according to the network transmission unit selection policy, and passes the data through the selected network transmission unit through the VPN tunnel. Transfer to the VPN server 203, and route the data to the second terminal 204 via the VPN server 203, not only implementing the first terminal 201 The purpose of transmitting the data to the second terminal 204 can also reasonably utilize the network transmission unit to improve the data transmission quality.
通过图3所述的方法,接入装置202与VPN服务器203之间建立VPN隧道之后,除了可以实现上述图4所示的接入装置202选择网络传输单元,经接入装置202与VPN服务器203之间建立的VPN隧道,将数据传输至VPN服务器203的过程,还可以实现VPN服务器203将数据从与接入装置202之间建立的VPN隧道传输至接入装置202的过程,具体过程参见图5。After the VPN tunnel is established between the access device 202 and the VPN server 203, the access device 202 shown in FIG. 4 can select the network transmission unit, and the access device 202 and the VPN server 203 can be implemented. The process of transmitting the data to the VPN server 203 between the established VPN tunnels, and the process of transmitting the data from the VPN tunnel established between the VPN server 203 and the access device 202 to the access device 202 may also be implemented. 5.
501,VPN服务器203接收发往接入装置202的数据包。501. The VPN server 203 receives the data packet addressed to the access device 202.
该数据包可以为第二终端204中的第二数据。The data packet can be the second data in the second terminal 204.
502,VPN服务器203根据更改后的第二路由规则,将数据包路由至第二传输虚拟网络设备后,根据网络传输单元选择策略选择一个网络传输单元。502. The VPN server 203 routes the data packet to the second transmission virtual network device according to the changed second routing rule, and selects a network transmission unit according to the network transmission unit selection policy.
在VPN服务器203根据网络传输单元选择策略选择一个网络传输单元之前,还需要确定接入装置侧对应的各个网络传输单元。Before the VPN server 203 selects a network transmission unit according to the network transmission unit selection policy, it is also required to determine each network transmission unit corresponding to the access device side.
503,VPN服务器203对该数据包进行VPN封装并发送至公共网络。503. The VPN server 203 performs VPN encapsulation on the data packet and sends the data packet to the public network.
其中,封装后的数据包的目的地址为所选择的网络传输单元的IP地址。The destination address of the encapsulated data packet is the IP address of the selected network transmission unit.
为了保证数据包的传输安全,VPN服务器203还可以先对该数据包进行加密,再对加密后的数据包进行VPN封装并发送至公共网络。In order to ensure the security of the transmission of the data packet, the VPN server 203 may first encrypt the data packet, and then VPN encapsulate the encrypted data packet and send it to the public network.
504,接入装置202根据更改后的第一路由规则,将第二数据路由至第一传输虚拟网络设备后,从第一传输虚拟网络设备中获取加密的数据,解密加密的数据,将解密后的数据发送至接入装置202的路由模块。504. After the access device 202 routes the second data to the first transmission virtual network device according to the changed first routing rule, the encrypted data is obtained from the first transmission virtual network device, and the encrypted data is decrypted. The data is sent to the routing module of access device 202.
路由模块可以将解密后的数据路由至第一终端201。The routing module can route the decrypted data to the first terminal 201.
通过步骤501至步骤504,VPN服务器203将第二终端204中的数据传输至接入装置202,接入装置202将路由至第一终端201,不仅实现将第二终端204中数据传输至第一终端201的目的,还可以灵活选择传输数据 的方式,合理利用网络传输单元,提升数据传输质量。Through the steps 501 to 504, the VPN server 203 transmits the data in the second terminal 204 to the access device 202, and the access device 202 routes to the first terminal 201, not only to transmit the data in the second terminal 204 to the first terminal. The purpose of the terminal 201 is also to flexibly select to transmit data. The way to rationally utilize the network transmission unit to improve the quality of data transmission.
下面以智能终端将即时通信软件获取到的视频数据传输至即时通信软件对应的VPN服务器为例,对现有技术和本方案的实现方法再次进行描述。The following takes the smart terminal to transmit the video data obtained by the instant messaging software to the VPN server corresponding to the instant messaging software as an example, and describes the implementation methods of the prior art and the present solution again.
若接入装置位于智能终端中,该智能终端既包括无线路由器也包括4G终端,且该智能终端当前通过4G终端传输数据。If the access device is located in the smart terminal, the smart terminal includes both a wireless router and a 4G terminal, and the smart terminal currently transmits data through the 4G terminal.
现有技术的方法,智能终端将即时通信软件获取到的全部视频数据均通过4G终端传输至即时通信软件对应的VPN服务器。In the prior art method, the smart terminal transmits all the video data acquired by the instant communication software to the VPN server corresponding to the instant communication software through the 4G terminal.
对于现有技术的方法,若视频数据量较大,4G终端可以提供的带宽不能满足视频数据要求时,会造成视频数据的传输时间延长,视频数据传输质量下降。For the prior art method, if the amount of video data is large, and the bandwidth that the 4G terminal can provide cannot satisfy the video data requirement, the transmission time of the video data is prolonged, and the video data transmission quality is degraded.
本申请提供的方法,智能终端根据4G终端以及无线路由器对应的VPN隧道的实时情况,将即时通信软件获取到图像数据通过4G终端传输至即时通信软件对应的VPN服务器,将即时通信软件获取到语音数据通过无线路由器传输至即时通信软件对应的VPN服务器。According to the method provided by the present application, the intelligent terminal transmits the image data acquired by the instant communication software to the VPN server corresponding to the instant communication software through the 4G terminal according to the real-time situation of the VPN tunnel corresponding to the 4G terminal and the wireless router, and acquires the voice by the instant communication software. The data is transmitted to the VPN server corresponding to the instant messaging software through the wireless router.
对于本申请提供的方法,虽然视频数据量较大,4G终端可以提供的带宽不能满足视频数据要求,但是4G终端可以提供的带宽可以满足语音数据的传输要求,通过将视频数据中的图像数据和语音数据分开,语音数据通过4G终端传输,图像数据通过无线路由器传输,不会造成视频数据的传输时间延长,视频数据传输质量下降。For the method provided by the present application, although the amount of video data is large, the bandwidth that the 4G terminal can provide cannot satisfy the video data requirement, but the bandwidth that the 4G terminal can provide can meet the transmission requirement of the voice data by using the image data in the video data and The voice data is separated, the voice data is transmitted through the 4G terminal, and the image data is transmitted through the wireless router, which does not cause the transmission time of the video data to be prolonged, and the quality of the video data transmission is degraded.
为了对本申请提供的数据传输方法进行灵活控制,接入装置202在确定开启条件被满足后,还会持续确定关闭条件是否被满足,若接入装置202确定关闭条件被满足,则终止上述数据传输过程,断开VPN隧道,并将路由规则恢复至修改前。In order to flexibly control the data transmission method provided by the present application, the access device 202 continues to determine whether the shutdown condition is satisfied after determining that the ON condition is satisfied, and terminates the data transmission if the access device 202 determines that the shutdown condition is satisfied. Process, disconnect the VPN tunnel, and restore the routing rules to the pre-modification.
例如,接入装置202向VPN服务器203发送VPN隧道断开指令,将更改后的第一路由规则中的下一跳恢复为更改前的下一跳;VPN服务器 203VPN服务器根据VPN隧道断开指令释放VPN隧道建立资源,并将更改后的第二路由规则中的下一跳恢复为更改前的下一跳。For example, the access device 202 sends a VPN tunnel disconnection instruction to the VPN server 203, and restores the next hop in the changed first routing rule to the next hop before the change; the VPN server The 203 VPN server releases the VPN tunnel establishment resource according to the VPN tunnel disconnection command, and restores the next hop in the changed second routing rule to the next hop before the change.
对于获取预设的关闭控制信号的具体实现方式为,当监测到预设按钮被用户触发后,接入装置202确定关闭条件被满足;或者,根据当前获取的网络传输单元选择策略确定仅适用一个网络传输单元进行传输,接入装置202确定关闭条件被满足。The specific implementation manner of obtaining the preset shutdown control signal is: when the preset button is detected to be triggered by the user, the access device 202 determines that the shutdown condition is satisfied; or, according to the currently acquired network transmission unit selection policy, only one application is determined. The network transmission unit transmits, and the access device 202 determines that the shutdown condition is satisfied.
有益效果:Beneficial effects:
本发明实施例提供的方法可以根据网络传输单元选择策略选择一个网络传输单元,并将上行数据通过选择的网络传输单元传输,实现根据发送的数据灵活选择网络传输单元,进而合理利用网络传输单元。The method provided by the embodiment of the present invention may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit, so as to flexibly select the network transmission unit according to the transmitted data, and thereby utilize the network transmission unit reasonably.
另外,通过控制信号可以对本申请提供的方法进行灵活控制。In addition, the method provided by the present application can be flexibly controlled by the control signal.
需要指出的是,虽然上述的各个实施例中,是以网络传输单元为无线网络终端进行的说明,但是在实际应用中,网络传输单元也可以是有线网口。It should be noted that, in the above embodiments, the network transmission unit is a wireless network terminal, but in practical applications, the network transmission unit may also be a wired network port.
基于同一发明构思,本实施例提供了一种数据传输装置,该数据传输装置解决问题的原理与图3至图5所示一种数据传输方法中接入装置所执行的方法相似,因此该传输端的实施可以参见图3至图5接入装置所执行的方法的实施,重复之处不再赘述。Based on the same inventive concept, the present embodiment provides a data transmission apparatus, and the principle of solving the problem by the data transmission apparatus is similar to the method performed by the access apparatus in the data transmission method shown in FIG. 3 to FIG. 5, and thus the transmission is performed. For the implementation of the terminal, reference may be made to the implementation of the method performed by the access device in FIG. 3 to FIG. 5, and the repeated description is not repeated.
参见图6,该数据传输装置,包括:Referring to FIG. 6, the data transmission device includes:
建立单元601,用于建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道;The establishing unit 601 is configured to establish a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server end;
修改单元602,用于修改接入装置的路由规则;修改的路由规则使得上行数据包被接入装置的路由单元路由至第一传输虚拟网络设备,使得源地址IP为接入装置所对应的网络传输单元的IP地址且目标IP为VPN服务器端的数据包被接入装置的路由单元路由至该网络传输单元对应的网络传输 单元的网关;The modifying unit 602 is configured to modify the routing rule of the access device. The modified routing rule is configured to route the uplink data packet by the routing unit of the access device to the first transmission virtual network device, so that the source address IP is the network corresponding to the access device. The IP address of the transmission unit and the destination IP address of the VPN server are routed by the routing unit of the access device to the network transmission corresponding to the network transmission unit. The gateway of the unit;
第一获取单元603,用于在接入装置的路由单元根据修改后的路由规则将上行数据包路由至第一传输虚拟网络设备后,从第一传输虚拟网络设备中获取上行数据包;The first obtaining unit 603 is configured to: after the routing unit of the access device routes the uplink data packet to the first transmission virtual network device according to the modified routing rule, obtain the uplink data packet from the first transmission virtual network device;
选择单元604,用于根据预先获取的网络传输单元选择策略选择一个网络传输单元;并在对上行数据包进行VPN封装时,将VPN封装的上行数据包的源地址IP设置为所选择的网络传输单元的IP,目的IP设置为VPN服务器的IP地址。The selecting unit 604 is configured to select a network transmission unit according to the pre-acquired network transmission unit selection policy, and set the source address IP of the VPN encapsulated uplink data packet to the selected network transmission when performing VPN encapsulation on the uplink data packet. The IP address of the unit and the destination IP address are set to the IP address of the VPN server.
可选地,网络传输单元选择策略为负载均衡的选择策略;或者,带宽聚合的选择策略。Optionally, the network transmission unit selection policy is a load balancing selection policy; or a bandwidth aggregation selection policy.
可选地,数据传输装置还包括:Optionally, the data transmission device further includes:
第二发送单元,用于将各网络传输单元的类型信息发送至VPN服务器;a second sending unit, configured to send type information of each network transmission unit to a VPN server;
第一接收单元,用于接收VPN服务器返回的第一信息;第一信息用于指示可用的网络传输单元;a first receiving unit, configured to receive first information returned by the VPN server; the first information is used to indicate an available network transmission unit;
选择单元604,包括:The selecting unit 604 includes:
从第一信息指示的可用的网络传输单元中选择一个传输单元。A transmission unit is selected from available network transmission units indicated by the first information.
可选地,数据传输装置还包括:Optionally, the data transmission device further includes:
第二接收单元,用于接收VPN服务器返回的网络传输单元选择策略。The second receiving unit is configured to receive a network transmission unit selection policy returned by the VPN server.
可选地,选择单元604,用于对上行数据包进行加密后进行VPN封装。Optionally, the selecting unit 604 is configured to encrypt the uplink data packet and perform VPN encapsulation.
可选地,数据传输装置还包括:Optionally, the data transmission device further includes:
第二获取单元,用于从第一传输虚拟网络设备中获取加密的下行数据;a second acquiring unit, configured to obtain encrypted downlink data from the first transmission virtual network device;
解密单元,用于解密加密的下行数据;a decryption unit for decrypting encrypted downlink data;
第三发送单元,用于将解密后的下行数据发送至接入装置的路由模块。And a third sending unit, configured to send the decrypted downlink data to a routing module of the access device.
可选地,建立单元601,用于确定开启条件被满足时,建立VPN隧道;Optionally, the establishing unit 601 is configured to establish a VPN tunnel when the opening condition is met;
开启条件包括: Opening conditions include:
监测到预设按钮被用户触发;和/或,Monitoring that the preset button is triggered by the user; and/or,
实时网络传输参数不满足传输需求。Real-time network transmission parameters do not meet the transmission requirements.
可选地,数据传输装置还包括:Optionally, the data transmission device further includes:
断开单元,用于确定关闭条件被满足后,断开VPN隧道,并将路由规则恢复至修改前。The disconnect unit is used to determine that the shutdown condition is met, disconnect the VPN tunnel, and restore the routing rule to the pre-modification.
可选地,数据传输装置还包括:Optionally, the data transmission device further includes:
确定单元,用于当监测到预设按钮被用户触发后,确定关闭条件被满足;或,根据当前获取的网络传输单元选择策略确定仅适用一个网络传输单元进行传输,确定关闭条件被满足。a determining unit, configured to determine that the closing condition is satisfied after detecting that the preset button is triggered by the user; or determining, according to the currently acquired network transmission unit selection policy, that only one network transmission unit is used for transmission, and determining that the closing condition is satisfied.
可选地,数据传输装置还包括:Optionally, the data transmission device further includes:
第三获取单元,用于监测到预设按钮被用户触发时,获取对应的网络传输单元选择策略;或,根据实时网络传输参数获取对应的网络传输单元选择策略。The third acquiring unit is configured to: when the preset button is triggered by the user, obtain a corresponding network transmission unit selection policy; or obtain a corresponding network transmission unit selection policy according to the real-time network transmission parameter.
有益效果:Beneficial effects:
本发明实施例提供的数据传输装置可以根据网络传输单元选择策略选择一个网络传输单元,并将上行数据通过选择的网络传输单元传输,实现根据发送的数据灵活选择网络传输单元,进而合理利用网络传输单元。The data transmission apparatus provided by the embodiment of the present invention may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit, thereby flexibly selecting a network transmission unit according to the transmitted data, and thereby rationally utilizing the network transmission. unit.
基于同一发明构思,本实施例提供了一种电子设备,参见图7,该电子设备包括存储器701,一个或多个处理器702;以及一个或多个模块703,所述一个或多个模块703被存储在所述存储器701中,并被配置成由所述一个或多个处理器702执行,所述一个或多个模块703包括用于执行图3至图5中接入装置所执行的方法中各个步骤的指令。Based on the same inventive concept, the present embodiment provides an electronic device. Referring to FIG. 7, the electronic device includes a memory 701, one or more processors 702, and one or more modules 703, the one or more modules 703. Stored in the memory 701 and configured to be executed by the one or more processors 702, the one or more modules 703 including methods for performing the operations performed by the access devices of Figures 3-5 The instructions in each step.
有益效果:Beneficial effects:
本发明实施例提供的电子设备可以根据网络传输单元选择策略选择一个网络传输单元,并将上行数据通过选择的网络传输单元传输,实现根据 发送的数据灵活选择网络传输单元,进而合理利用网络传输单元。The electronic device provided by the embodiment of the present invention may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit to implement the The transmitted data flexibly selects the network transmission unit to make reasonable use of the network transmission unit.
基于同一发明构思,本实施例提供了一种与包括显示器的电子设备结合使用的计算机程序产品,所述计算机程序产品包括计算机可读的存储介质和内嵌于其中的计算机程序机制,所述计算机程序机制包括用于执行图3至图5中接入装置所执行的方法中各个步骤的指令。Based on the same inventive concept, the present embodiment provides a computer program product for use in conjunction with an electronic device including a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer The program mechanism includes instructions for performing the various steps in the method performed by the access device of Figures 3 through 5.
有益效果:Beneficial effects:
本发明实施例提供的计算机程序产品可以根据网络传输单元选择策略选择一个网络传输单元,并将上行数据通过选择的网络传输单元传输,实现根据发送的数据灵活选择网络传输单元,进而合理利用网络传输单元。The computer program product provided by the embodiment of the present invention may select a network transmission unit according to a network transmission unit selection policy, and transmit the uplink data through the selected network transmission unit, thereby flexibly selecting a network transmission unit according to the transmitted data, thereby appropriately utilizing the network transmission. unit.
基于同一发明构思,本实施例提供了一种数据传输装置,该数据传输装置解决问题的原理与图3至图5所示一种数据传输方法中VPN服务器所执行的方法相似,因此该传输端的实施可以参见图3至图5VPN服务器所执行的方法的实施,重复之处不再赘述。Based on the same inventive concept, the present embodiment provides a data transmission apparatus. The principle of solving the problem by the data transmission apparatus is similar to the method performed by the VPN server in the data transmission method shown in FIG. 3 to FIG. 5, and thus the transmission end is For the implementation, refer to the implementation of the method performed by the VPN server in FIG. 3 to FIG. 5, and the repeated description is not repeated.
参见图8,该数据传输装置,包括:Referring to FIG. 8, the data transmission device includes:
建立单元801,用于建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道;The establishing unit 801 is configured to establish a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server end;
确定单元802,用于确定接入装置侧对应的各个网络传输单元;a determining unit 802, configured to determine each network transmission unit corresponding to the access device side;
处理单元803,用于在接收到接入装置的上行数据包后,对数据包进行VPN解封,并发送至第二传输虚拟网络设备。The processing unit 803 is configured to perform VPN decapsulation on the data packet after receiving the uplink data packet of the access device, and send the data packet to the second transmission virtual network device.
可选地,数据传输装置还包括:Optionally, the data transmission device further includes:
获取单元,用于根据实时网络传输参数获取对应的网络传输单元选择策略。The obtaining unit is configured to obtain a corresponding network transmission unit selection policy according to the real-time network transmission parameter.
有益效果:Beneficial effects:
本发明实施例提供的数据传输装置通过根据网络传输单元选择策略选 择一个网络传输单元接收数据,实现根据发送的数据灵活选择网络传输单元,进而合理利用网络传输单元。The data transmission apparatus provided by the embodiment of the present invention selects a policy according to a network transmission unit selection policy. Selecting a network transmission unit to receive data, and flexibly selecting a network transmission unit according to the transmitted data, thereby rationally utilizing the network transmission unit.
基于同一发明构思,本实施例提供了一种电子设备,参见图9,该电子设备包括存储器901,一个或多个处理器902;以及一个或多个模块903,所述一个或多个模块903被存储在所述存储器901中,并被配置成由所述一个或多个处理器902执行,所述一个或多个模块903包括用于执行图3至图5中VPN服务器所执行的方法中各个步骤的指令。Based on the same inventive concept, the present embodiment provides an electronic device. Referring to FIG. 9, the electronic device includes a memory 901, one or more processors 902, and one or more modules 903, the one or more modules 903 Stored in the memory 901 and configured to be executed by the one or more processors 902, the one or more modules 903 comprising methods for performing the VPN server of Figures 3 through 5 Instructions for each step.
有益效果:Beneficial effects:
本发明实施例提供的电子设备通过根据网络传输单元选择策略选择一个网络传输单元接收数据,实现根据发送的数据灵活选择网络传输单元,进而合理利用网络传输单元。The electronic device provided by the embodiment of the present invention selects a network transmission unit to receive data according to a network transmission unit selection policy, and implements flexible selection of a network transmission unit according to the transmitted data, thereby appropriately utilizing the network transmission unit.
基于同一发明构思,本实施例提供了一种与包括显示器的电子设备结合使用的计算机程序产品,所述计算机程序产品包括计算机可读的存储介质和内嵌于其中的计算机程序机制,所述计算机程序机制包括用于执行图3至图5中VPN服务器所执行的方法中各个步骤的指令。Based on the same inventive concept, the present embodiment provides a computer program product for use in conjunction with an electronic device including a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer The program mechanism includes instructions for performing the various steps in the method performed by the VPN server of Figures 3 through 5.
有益效果:Beneficial effects:
本发明实施例提供的计算机程序产品通过根据网络传输单元选择策略选择一个网络传输单元接收数据,实现根据发送的数据灵活选择网络传输单元,进而合理利用网络传输单元。The computer program product provided by the embodiment of the present invention selects a network transmission unit to receive data according to a network transmission unit selection policy, and implements flexible selection of a network transmission unit according to the transmitted data, thereby appropriately utilizing the network transmission unit.
本领域内的技术人员应明白,本发明的实施例可提供为方法、系统、或计算机程序产品。因此,本发明可采用完全硬件实施例、完全软件实施例、或结合软件和硬件方面的实施例的形式。而且,本发明可采用在一个或多个其中包含有计算机可用程序代码的计算机可用存储介质(包括但不 限于磁盘存储器、CD-ROM、光学存储器等)上实施的计算机程序产品的形式。Those skilled in the art will appreciate that embodiments of the present invention can be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment, or a combination of software and hardware. Moreover, the present invention may employ computer usable storage media (including but not included) in one or more of the computer usable program code embodied therein. It is limited to the form of a computer program product implemented on a disk storage, a CD-ROM, an optical storage, or the like.
本发明是参照根据本发明实施例的方法、设备(系统)、和计算机程序产品的流程图和/或方框图来描述的。应理解可由计算机程序指令实现流程图和/或方框图中的每一流程和/或方框、以及流程图和/或方框图中的流程和/或方框的结合。可提供这些计算机程序指令到通用计算机、专用计算机、嵌入式处理机或其他可编程数据处理设备的处理器以产生一个机器,使得通过计算机或其他可编程数据处理设备的处理器执行的指令产生用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的装置。The present invention has been described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (system), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flowchart illustrations and/or FIG. These computer program instructions can be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing device to produce a machine for the execution of instructions for execution by a processor of a computer or other programmable data processing device. Means for implementing the functions specified in one or more of the flow or in a block or blocks of the flow chart.
这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理设备以特定方式工作的计算机可读存储器中,使得存储在该计算机可读存储器中的指令产生包括指令装置的制造品,该指令装置实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能。The computer program instructions can also be stored in a computer readable memory that can direct a computer or other programmable data processing device to operate in a particular manner, such that the instructions stored in the computer readable memory produce an article of manufacture comprising the instruction device. The apparatus implements the functions specified in one or more blocks of a flow or a flow and/or block diagram of the flowchart.
这些计算机程序指令也可装载到计算机或其他可编程数据处理设备上,使得在计算机或其他可编程设备上执行一系列操作步骤以产生计算机实现的处理,从而在计算机或其他可编程设备上执行的指令提供用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的步骤。These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device. The instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram.
尽管已描述了本发明的优选实施例,但本领域内的技术人员一旦得知了基本创造性概念,则可对这些实施例作出另外的变更和修改。所以,所附权利要求意欲解释为包括优选实施例以及落入本发明范围的所有变更和修改。 While the preferred embodiment of the invention has been described, it will be understood that Therefore, the appended claims are intended to be interpreted as including the preferred embodiments and the modifications and

Claims (28)

  1. 一种数据传输方法,其特征在于,所述方法应用于接入装置,所述方法包括:A data transmission method, characterized in that the method is applied to an access device, the method comprising:
    建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道,并修改接入装置的路由规则;修改的路由规则使得上行数据包被接入装置的路由单元路由至第一传输虚拟网络设备,使得源地址IP为接入装置所对应的网络传输单元的IP地址且目标IP为VPN服务器端的数据包被接入装置的路由单元路由至该网络传输单元对应的网络传输单元的网关;Establishing a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server side, and modifying a routing rule of the access device; the modified routing rule is such that the uplink data packet is accessed by the access device. The routing unit routes to the first transmission virtual network device, so that the source address IP is the IP address of the network transmission unit corresponding to the access device, and the data packet whose destination IP is the VPN server is routed to the network transmission unit by the routing unit of the access device. a gateway of the corresponding network transmission unit;
    在所述接入装置的路由单元根据修改后的路由规则将上行数据包路由至第一传输虚拟网络设备后,从所述第一传输虚拟网络设备中获取上行数据包;After the routing unit of the access device routes the uplink data packet to the first transmission virtual network device according to the modified routing rule, acquiring the uplink data packet from the first transmission virtual network device;
    根据预先获取的网络传输单元选择策略选择一个网络传输单元,并在对上行数据包进行VPN封装时,将VPN封装的上行数据包的源地址IP设置为所选择的网络传输单元的IP,目的IP设置为VPN服务器的IP地址。Selecting a network transmission unit according to the pre-acquired network transmission unit selection policy, and when performing VPN encapsulation on the uplink data packet, setting the source address IP of the VPN encapsulated uplink data packet to the IP of the selected network transmission unit, destination IP Set to the IP address of the VPN server.
  2. 根据权利要求1所述的方法,其特征在于,所述网络传输单元选择策略为负载均衡的选择策略;或者,带宽聚合的选择策略。The method according to claim 1, wherein the network transmission unit selection policy is a load balancing selection policy; or a bandwidth aggregation selection policy.
  3. 根据权利要求1所述的方法,其特征在于,所述方法还包括:The method of claim 1 further comprising:
    将各网络传输单元的类型信息发送至VPN服务器;Sending type information of each network transmission unit to the VPN server;
    接收所述VPN服务器返回的第一信息;所述第一信息用于指示可用的网络传输单元;Receiving first information returned by the VPN server; the first information is used to indicate an available network transmission unit;
    所述根据预先获取的网络传输单元选择策略选择一个网络传输单元,包括:The selecting a network transmission unit according to the pre-acquired network transmission unit selection policy includes:
    从第一信息指示的可用的网络传输单元中选择一个传输单元。A transmission unit is selected from available network transmission units indicated by the first information.
  4. 根据权利要求1所述的方法,其特征在于,所述方法还包括:接收所 述VPN服务器返回的网络传输单元选择策略。The method of claim 1 further comprising: receiving the location The network transmission unit selection policy returned by the VPN server.
  5. 根据权利要求1所述的方法,其特征在于,将上行数据包进行VPN封装,包括:对上行数据包进行加密后进行VPN封装。The method according to claim 1, wherein the performing the VPN encapsulation of the uplink data packet comprises: encrypting the uplink data packet and performing VPN encapsulation.
  6. 根据权利要求1所述的方法,其特征在于,所述方法还包括:The method of claim 1 further comprising:
    从所述第一传输虚拟网络设备中获取加密的下行数据,解密所述加密的下行数据,将解密后的下行数据发送至接入装置的路由模块。Obtaining encrypted downlink data from the first transmission virtual network device, decrypting the encrypted downlink data, and transmitting the decrypted downlink data to a routing module of the access device.
  7. 根据权利要求1所述的方法,其特征在于,所述建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道,是指:确定开启条件被满足时,建立所述VPN隧道;The method according to claim 1, wherein the establishing a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server side means: determining that the opening condition is When satisfied, the VPN tunnel is established;
    所述开启条件包括:The opening conditions include:
    监测到预设按钮被用户触发;和/或,Monitoring that the preset button is triggered by the user; and/or,
    实时网络传输参数不满足传输需求。Real-time network transmission parameters do not meet the transmission requirements.
  8. 根据权利要求1所述的方法,其特征在于,在建立VPN隧道之后,所述方法还包括:The method according to claim 1, wherein after the VPN tunnel is established, the method further includes:
    确定关闭条件被满足后,断开所述VPN隧道,并将路由规则恢复至修改前。After determining that the shutdown condition is met, disconnect the VPN tunnel and restore the routing rules to the pre-modification.
  9. 根据权利要求8所述的方法,其特征在于,所述方法还包括:当监测到预设按钮被用户触发后,确定关闭条件被满足;或,根据当前获取的网络传输单元选择策略确定仅适用一个网络传输单元进行传输,确定关闭条件被满足。The method according to claim 8, wherein the method further comprises: determining that the shutdown condition is satisfied after detecting that the preset button is triggered by the user; or determining that the network transmission unit selection policy is only applicable according to the currently acquired network transmission unit selection policy; A network transmission unit transmits and determines that the shutdown condition is satisfied.
  10. 根据权利要求1所述的方法,其特征在于,还包括:监测到预设按钮被用户触发时,获取对应的网络传输单元选择策略;或,根据实时网络传输参数获取对应的网络传输单元选择策略。The method according to claim 1, further comprising: when detecting that the preset button is triggered by the user, acquiring a corresponding network transmission unit selection policy; or acquiring a corresponding network transmission unit selection strategy according to the real-time network transmission parameter; .
  11. 一种数据传输装置,其特征在于,包括:A data transmission device, comprising:
    建立单元,用于建立接入装置侧的第一传输虚拟网络设备与VPN服务 器端的第二传输虚拟网络设备之间的VPN隧道;Establishing a unit for establishing a first transmission virtual network device and a VPN service on the access device side The second transmission of the VPN tunnel between the virtual network devices;
    修改单元,用于修改接入装置的路由规则;修改的路由规则使得上行数据包被接入装置的路由单元路由至第一传输虚拟网络设备,使得源地址IP为接入装置所对应的网络传输单元的IP地址且目标IP为VPN服务器端的数据包被接入装置的路由单元路由至该网络传输单元对应的网络传输单元的网关;a modifying unit, configured to modify a routing rule of the access device; the modified routing rule causes the uplink data packet to be routed by the routing unit of the access device to the first transmission virtual network device, so that the source address IP is a network transmission corresponding to the access device The IP address of the unit and the destination IP address of the VPN server are routed by the routing unit of the access device to the gateway of the network transmission unit corresponding to the network transmission unit;
    第一获取单元,用于在所述接入装置的路由单元根据修改后的路由规则将上行数据包路由至第一传输虚拟网络设备后,从所述第一传输虚拟网络设备中获取上行数据包;a first acquiring unit, configured to acquire an uplink data packet from the first transmission virtual network device after the routing unit of the access device routes the uplink data packet to the first transmission virtual network device according to the modified routing rule ;
    选择单元,用于根据预先获取的网络传输单元选择策略选择一个网络传输单元;并在对上行数据包进行VPN封装时,将VPN封装的上行数据包的源地址IP设置为所选择的网络传输单元的IP,目的IP设置为VPN服务器的IP地址。a selecting unit, configured to select a network transmission unit according to a pre-acquired network transmission unit selection policy; and when performing VPN encapsulation on the uplink data packet, setting a source address IP of the VPN encapsulated uplink data packet to the selected network transmission unit IP, destination IP is set to the IP address of the VPN server.
  12. 根据权利要求11所述的数据传输装置,其特征在于,所述网络传输单元选择策略为负载均衡的选择策略;或者,带宽聚合的选择策略。The data transmission apparatus according to claim 11, wherein the network transmission unit selection policy is a load balancing selection policy; or a bandwidth aggregation selection policy.
  13. 根据权利要求11所述的数据传输装置,其特征在于,所述数据传输装置还包括:The data transmission device according to claim 11, wherein the data transmission device further comprises:
    第二发送单元,用于将各网络传输单元的类型信息发送至VPN服务器;a second sending unit, configured to send type information of each network transmission unit to a VPN server;
    第一接收单元,用于接收所述VPN服务器返回的第一信息;所述第一信息用于指示可用的网络传输单元;a first receiving unit, configured to receive first information returned by the VPN server; the first information is used to indicate an available network transmission unit;
    所述选择单元,包括:The selecting unit includes:
    从第一信息指示的可用的网络传输单元中选择一个传输单元。A transmission unit is selected from available network transmission units indicated by the first information.
  14. 根据权利要求11所述的数据传输装置,其特征在于,所述数据传输装置还包括:The data transmission device according to claim 11, wherein the data transmission device further comprises:
    第二接收单元,用于接收所述VPN服务器返回的网络传输单元选择策 略。a second receiving unit, configured to receive a network transmission unit selection policy returned by the VPN server slightly.
  15. 根据权利要求11所述的数据传输装置,其特征在于,所述选择单元,用于对上行数据包进行加密后进行VPN封装。The data transmission device according to claim 11, wherein the selection unit is configured to encrypt the uplink data packet and perform VPN encapsulation.
  16. 根据权利要求11所述的数据传输装置,其特征在于,所述数据传输装置还包括:The data transmission device according to claim 11, wherein the data transmission device further comprises:
    第二获取单元,用于从所述第一传输虚拟网络设备中获取加密的下行数据;a second acquiring unit, configured to obtain encrypted downlink data from the first transmission virtual network device;
    解密单元,用于解密所述加密的下行数据;a decryption unit, configured to decrypt the encrypted downlink data;
    第三发送单元,用于将解密后的下行数据发送至接入装置的路由模块。And a third sending unit, configured to send the decrypted downlink data to a routing module of the access device.
  17. 根据权利要求11所述的数据传输装置,其特征在于,所述建立单元,用于确定开启条件被满足时,建立所述VPN隧道;The data transmission device according to claim 11, wherein the establishing unit is configured to establish the VPN tunnel when the opening condition is satisfied;
    所述开启条件包括:The opening conditions include:
    监测到预设按钮被用户触发;和/或,Monitoring that the preset button is triggered by the user; and/or,
    实时网络传输参数不满足传输需求。Real-time network transmission parameters do not meet the transmission requirements.
  18. 根据权利要求11所述的数据传输装置,其特征在于,所述数据传输装置还包括:The data transmission device according to claim 11, wherein the data transmission device further comprises:
    断开单元,用于确定关闭条件被满足后,断开所述VPN隧道,并将路由规则恢复至修改前。The disconnecting unit is configured to disconnect the VPN tunnel after the closing condition is satisfied, and restore the routing rule to the pre-modification.
  19. 根据权利要求18所述的数据传输装置,其特征在于,所述数据传输装置还包括:The data transmission device according to claim 18, wherein the data transmission device further comprises:
    确定单元,用于当监测到预设按钮被用户触发后,确定关闭条件被满足;或,根据当前获取的网络传输单元选择策略确定仅适用一个网络传输单元进行传输,确定关闭条件被满足。a determining unit, configured to determine that the closing condition is satisfied after detecting that the preset button is triggered by the user; or determining, according to the currently acquired network transmission unit selection policy, that only one network transmission unit is used for transmission, and determining that the closing condition is satisfied.
  20. 根据权利要求11所述的数据传输装置,其特征在于,所述数据传输装置还包括: The data transmission device according to claim 11, wherein the data transmission device further comprises:
    第三获取单元,用于监测到预设按钮被用户触发时,获取对应的网络传输单元选择策略;或,根据实时网络传输参数获取对应的网络传输单元选择策略。The third acquiring unit is configured to: when the preset button is triggered by the user, obtain a corresponding network transmission unit selection policy; or obtain a corresponding network transmission unit selection policy according to the real-time network transmission parameter.
  21. 一种电子设备,其特征在于,所述电子设备包括:An electronic device, comprising:
    存储器,一个或多个处理器;以及一个或多个模块,所述一个或多个模块被存储在所述存储器中,并被配置成由所述一个或多个处理器执行,所述一个或多个模块包括用于执行权利要求1-10中任一所述方法中各个步骤的指令。a memory, one or more processors; and one or more modules, the one or more modules being stored in the memory and configured to be executed by the one or more processors, the one or The plurality of modules includes instructions for performing the various steps of the method of any of claims 1-10.
  22. 一种与包括显示器的电子设备结合使用的计算机程序产品,所述计算机程序产品包括计算机可读的存储介质和内嵌于其中的计算机程序机制,所述计算机程序机制包括用于执行权利要求1-10中任一所述方法中各个步骤的指令。A computer program product for use with an electronic device including a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer program mechanism comprising for performing claim 1 The instructions of the various steps in any of the methods described in 10.
  23. 一种数据传输方法,其特征在于,应用于VPN服务器,所述方法包括:A data transmission method is characterized in that it is applied to a VPN server, and the method includes:
    建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道;Establishing a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server side;
    确定接入装置侧对应的各个网络传输单元;Determining respective network transmission units corresponding to the access device side;
    在接收到接入装置的上行数据包后,对数据包进行VPN解封,并发送至第二传输虚拟网络设备。After receiving the uplink data packet of the access device, the data packet is VPN decapsulated and sent to the second transmission virtual network device.
  24. 根据权利要求23所述的方法,其特征在于,所述方法还包括:根据实时网络传输参数获取对应的网络传输单元选择策略。The method according to claim 23, wherein the method further comprises: acquiring a corresponding network transmission unit selection policy according to the real-time network transmission parameter.
  25. 一种数据传输装置,其特征在于,包括:A data transmission device, comprising:
    建立单元,用于建立接入装置侧的第一传输虚拟网络设备与VPN服务器端的第二传输虚拟网络设备之间的VPN隧道;a establishing unit, configured to establish a VPN tunnel between the first transmission virtual network device on the access device side and the second transmission virtual network device on the VPN server end;
    确定单元,用于确定接入装置侧对应的各个网络传输单元; a determining unit, configured to determine each network transmission unit corresponding to the access device side;
    处理单元,用于在接收到接入装置的上行数据包后,对数据包进行VPN解封,并发送至第二传输虚拟网络设备。The processing unit is configured to perform VPN decapsulation on the data packet after receiving the uplink data packet of the access device, and send the data packet to the second transmission virtual network device.
  26. 根据权利要求25所述的数据传输装置,其特征在于,所述VPN服务器还包括:The data transmission device according to claim 25, wherein the VPN server further comprises:
    获取单元,用于根据实时网络传输参数获取对应的网络传输单元选择策略。The obtaining unit is configured to obtain a corresponding network transmission unit selection policy according to the real-time network transmission parameter.
  27. 一种电子设备,其特征在于,所述电子设备包括:An electronic device, comprising:
    存储器,一个或多个处理器;以及一个或多个模块,所述一个或多个模块被存储在所述存储器中,并被配置成由所述一个或多个处理器执行,所述一个或多个模块包括用于执行权利要求23或24所述方法中各个步骤的指令。a memory, one or more processors; and one or more modules, the one or more modules being stored in the memory and configured to be executed by the one or more processors, the one or The plurality of modules includes instructions for performing the various steps of the method of claim 23 or 24.
  28. 一种与包括显示器的电子设备结合使用的计算机程序产品,所述计算机程序产品包括计算机可读的存储介质和内嵌于其中的计算机程序机制,所述计算机程序机制包括用于执行权利要求23或24所述方法中各个步骤的指令。 A computer program product for use with an electronic device comprising a display, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer program mechanism comprising for performing claim 23 or 24 instructions for each step in the method.
PCT/CN2016/107745 2016-11-29 2016-11-29 Data transmission method, data transmission apparatus, electronic device and computer program product WO2018098633A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/CN2016/107745 WO2018098633A1 (en) 2016-11-29 2016-11-29 Data transmission method, data transmission apparatus, electronic device and computer program product
CN201680002961.3A CN106797335B (en) 2016-11-29 2016-11-29 Data transmission method, data transmission device, electronic equipment and computer program product

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2016/107745 WO2018098633A1 (en) 2016-11-29 2016-11-29 Data transmission method, data transmission apparatus, electronic device and computer program product

Publications (1)

Publication Number Publication Date
WO2018098633A1 true WO2018098633A1 (en) 2018-06-07

Family

ID=58952992

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/107745 WO2018098633A1 (en) 2016-11-29 2016-11-29 Data transmission method, data transmission apparatus, electronic device and computer program product

Country Status (2)

Country Link
CN (1) CN106797335B (en)
WO (1) WO2018098633A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113709052A (en) * 2020-05-21 2021-11-26 中移(苏州)软件技术有限公司 Network message processing method and device, electronic equipment and storage medium
CN114157534A (en) * 2021-12-14 2022-03-08 福达新创通讯科技(厦门)有限公司 Multi-branch-flow VPN communication, system and storage medium based on distribution
WO2025002137A1 (en) * 2023-06-26 2025-01-02 北京罗克维尔斯科技有限公司 Data transmission method and apparatus, data channel switching method and apparatus, and vehicle, device and medium

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109088953B (en) * 2017-06-14 2022-02-25 中兴通讯股份有限公司 Method and device for Linux gateway proxy to convert IP
CN109861924B (en) * 2017-11-30 2022-06-21 中兴通讯股份有限公司 Message sending and processing method and device, PE node and node
CN111131043B (en) * 2018-10-30 2022-04-29 深信服科技股份有限公司 UDP (user Datagram protocol) data packet transmission method and system and related components
CN109495461B (en) * 2018-11-01 2021-07-23 北京车和家信息技术有限公司 Data access request processing method and device and vehicle-mounted central control system
WO2022016406A1 (en) * 2020-07-22 2022-01-27 北京小米移动软件有限公司 Information transmission method and apparatus, and communication device
CN113938293A (en) * 2021-09-23 2022-01-14 深圳市柔宇科技股份有限公司 VPN network sharing method, storage medium and terminal device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101958822A (en) * 2009-07-17 2011-01-26 株式会社日立制作所 Encrypted communication system and gateway device
CN102752149A (en) * 2012-07-18 2012-10-24 贝尔特物联技术无锡有限公司 4G (The Fourth Generation Telecommunication) network management system
CN102801695A (en) * 2011-05-27 2012-11-28 华耀(中国)科技有限公司 Virtual private network communication device and data packet transmission method thereof
CN102843292A (en) * 2012-08-20 2012-12-26 成都卫士通信息产业股份有限公司 VPN (Virtual Private Network) data processing method and device of across-operator network

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1143662B1 (en) * 1999-06-10 2006-05-17 Alcatel Internetworking, Inc. Virtual private network having automatic updating of client reachability information
CN100438476C (en) * 2003-11-04 2008-11-26 深圳市深信服电子科技有限公司 Connecting method for multiplex VPN tunnel
CN101136778A (en) * 2006-08-02 2008-03-05 美国凹凸微系有限公司 Policy based vpn configuration for firewall/vpn security gateway appliance
US8638794B1 (en) * 2010-04-15 2014-01-28 Cellco Partnership Method and system for routing traffic across multiple interfaces via VPN traffic selectors and local policies
US9300570B2 (en) * 2012-05-22 2016-03-29 Harris Corporation Multi-tunnel virtual private network
CN102938734A (en) * 2012-11-26 2013-02-20 杭州华三通信技术有限公司 Tunnel selection method and PE (Provider Edge) in MPLS (Multiprotocol Label Switching) network
CN103067290B (en) * 2012-11-30 2016-06-01 成都卫士通信息产业股份有限公司 The VPN tunnel implementation of load balancing network is adapted to based on virtual network interface card
CN104426732A (en) * 2013-08-19 2015-03-18 华耀(中国)科技有限公司 A method and system for realizing a high-speed transmission tunnel
US9531565B2 (en) * 2013-12-20 2016-12-27 Pismo Labs Technology Limited Methods and systems for transmitting and receiving packets

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101958822A (en) * 2009-07-17 2011-01-26 株式会社日立制作所 Encrypted communication system and gateway device
CN102801695A (en) * 2011-05-27 2012-11-28 华耀(中国)科技有限公司 Virtual private network communication device and data packet transmission method thereof
CN102752149A (en) * 2012-07-18 2012-10-24 贝尔特物联技术无锡有限公司 4G (The Fourth Generation Telecommunication) network management system
CN102843292A (en) * 2012-08-20 2012-12-26 成都卫士通信息产业股份有限公司 VPN (Virtual Private Network) data processing method and device of across-operator network

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113709052A (en) * 2020-05-21 2021-11-26 中移(苏州)软件技术有限公司 Network message processing method and device, electronic equipment and storage medium
CN113709052B (en) * 2020-05-21 2024-02-27 中移(苏州)软件技术有限公司 Processing method and device of network message, electronic equipment and storage medium
CN114157534A (en) * 2021-12-14 2022-03-08 福达新创通讯科技(厦门)有限公司 Multi-branch-flow VPN communication, system and storage medium based on distribution
WO2025002137A1 (en) * 2023-06-26 2025-01-02 北京罗克维尔斯科技有限公司 Data transmission method and apparatus, data channel switching method and apparatus, and vehicle, device and medium

Also Published As

Publication number Publication date
CN106797335B (en) 2020-04-07
CN106797335A (en) 2017-05-31

Similar Documents

Publication Publication Date Title
WO2018098633A1 (en) Data transmission method, data transmission apparatus, electronic device and computer program product
US9712504B2 (en) Method and apparatus for avoiding double-encryption in site-to-site IPsec VPN connections
US8713305B2 (en) Packet transmission method, apparatus, and network system
US9317712B2 (en) Providing secure communication and/or sharing of personal data via a broadband gateway
CN106878138B (en) A kind of message transmitting method and device
EP3309993A1 (en) Method, device and system for processing vxlan packet
WO2015158168A1 (en) Method and apparatus for communication between mobile terminal and pos terminal, and pos terminal
CN111093198A (en) Wireless local area network data transmission method and device
CN103905284B (en) A kind of flow load sharing method and apparatus based on EVI networks
US20240323170A1 (en) Secure frame encryption as a service
CN110858822A (en) Media access control security protocol message transmission method and related device
CN103067290A (en) Virtual Private Network (VPN) tunnel implementation method based on virtual network adapter adaptable load balancing network
CN107196834B (en) Message processing method and device
CN114500176A (en) Multi-stream load balancing method, device and system for VPN and storage medium
EP3293933A1 (en) Communication content protection
CN105337954A (en) Method and device for encryption and decryption of IP message in satellite communication
CN107819685A (en) The method and the network equipment of a kind of data processing
CN105471827A (en) Message transmission method and device
WO2022007749A1 (en) Data transmission method and apparatus
CN101283554B (en) Relay unit, communication terminal and communication method
CN106209401B (en) A kind of transmission method and device
WO2017131767A1 (en) Mobile virtual private network configuration
US20240357423A1 (en) Methods and apparatus for reducing communications delay
CN108243082B (en) Data transmission method and equipment
KR20130032879A (en) Switch route exploring method, system and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16922886

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205 DATED 30/09/2019)

122 Ep: pct application non-entry in european phase

Ref document number: 16922886

Country of ref document: EP

Kind code of ref document: A1