Network access control method, network system using the method and apparatuses configuring the system
First Claim
1. A network access control method for a network system comprising:
- network apparatuses having packet filtering functions;
a service server connected with an IP network via the network apparatus, providing a service to a user;
a user terminal connected with the IP network via the network apparatus, for the user to utilize therethrough the service provided by said service server;
a reception server connected with the IP network via the network apparatus, receiving an access from the user for said service server; and
an access control server controlling the network apparatus, said method comprising the steps of;
a) said reception server receiving access request information from said user terminal, and holding it; and
b) said access controlling server performing traffic control such as to extract, based on a processing capability of said service server and a traffic amount for said service server, such an amount of the access request information held by said reception server as that which said service server can optimally deal with, so as to allow the access for said service server.
2 Assignments
0 Petitions
Accused Products
Abstract
A network access control method for a network system comprising network apparatuses having a packet filtering function, a service server connected with an IP network via the network apparatus, providing a service to a user, a user terminal connected with the IP network via the network apparatus, for the user to utilize the service provided by the service server, a reception server connected with the IP network via the network apparatus, receiving an access from the user for the service server, and an access control server controlling the network apparatuses. The method comprising the steps of a) the reception server receiving access request information from the user terminal, and holding it, and b) the access controlling server performing traffic control such as to extract, based on processing capability of the service server and a traffic amount for the service server, such an amount of the access request information as that the service server can optimally deal with, so as to allow the access for the service server.
65 Citations
12 Claims
-
1. A network access control method for a network system comprising:
-
network apparatuses having packet filtering functions;
a service server connected with an IP network via the network apparatus, providing a service to a user;
a user terminal connected with the IP network via the network apparatus, for the user to utilize therethrough the service provided by said service server;
a reception server connected with the IP network via the network apparatus, receiving an access from the user for said service server; and
an access control server controlling the network apparatus, said method comprising the steps of;
a) said reception server receiving access request information from said user terminal, and holding it; and
b) said access controlling server performing traffic control such as to extract, based on a processing capability of said service server and a traffic amount for said service server, such an amount of the access request information held by said reception server as that which said service server can optimally deal with, so as to allow the access for said service server.
-
-
2. A network system comprising:
-
network apparatuses having packet filtering function;
a service server connected with an IP network via the network apparatus, providing a service to a user;
a user terminal connected with the IP network via the network apparatus, for the user to utilize the service provided by said service server;
a reception server connected with the IP network via the network apparatus, receiving an access from the user for said service server; and
an access control server controlling the network apparatuses, said reception server having an access registering part which receives access request information from said user terminal, and holds it; and
said access controlling server having a filtering optimizing part which performs traffic control such as to extract, based on a processing capability of said service server and a traffic amount for said service server, such an amount of the access request information held in said access registering part as that said service server can optimally deal with, so as to allow the access for said service server.
-
-
3. A reception server comprising:
-
an access list holding access request information from a user terminal;
a user profile holding user information including a user class for each user;
an access receiving part receiving an access from the user terminal;
an access registering part registering access request information received via said access receiving part into said access list in order of the reception;
a user class extracting part extracting an IP address from the received access request information, and identifying the user by using the extracted IP address so as to extract the user class from said user profile; and
a by-user-class registering part registering the access request information received via said access receiving part into said access list based on the user class extracted through said user class extracting part. - View Dependent Claims (4, 5, 11, 12)
-
-
6. An access control server comprising:
-
a access information database holding information concerning a processing capability of a service server and a maximum permissible access number calculated based on the processing capability of the service server;
a traffic control part controlling a network apparatus;
a static permissible access number calculating part calculating the maximum permissible access number based on the information concerning the processing capability of the service server; and
a filtering optimizing part reading such an amount of access request information from an access list holding the access request information from user terminals in a reception server, from the top, as that for the maximum permissible access number, producing packet filtering setting information for the users making access requests to be able to access to the service server, and setting the produced information in the network apparatus via said traffic control part. - View Dependent Claims (7, 8, 9)
-
-
10. A service server connected with an IP network via a network apparatus and providing a service to a user, comprising:
-
a session finish determining part determining that a session performed with a user terminal has finished; and
a session finish reporting part reporting to an access control server that the session performed with the user terminal has finished.
-
Specification