Urban Hotspot University Campus network user and traffic management scheme includes dr.com Campus network broadband authentication billing solution and dr.com Network protocol analysis and flow control system. According to network complexity and application complexity requires high availability solutions, urban hotspot to this end, n+1 multi-machine hot standby, load balance to achieve a high availability of Certified billing gateway, database server and data storage of highly available scenarios users from service (WEB) server high Availability scenarios Access record server high availability scenarios.
Dr.com certification billing has the characteristics of high performance, high availability and high stability.
Flexible and diverse authentication strategy: Support pppoe\802.1x\web\dr.com client and other authentication methods, support Ipv4/ipv6 double stack NEW, support full 802.1X access authentication mode, provide 802.1x+ gateway authentication scheme; Provide group users can bind More flexible teaching area and student dormitory area roaming control.
Rich billing function: Support on time long, by flow, by day, monthly and other billing parameters; Support the term users, stored-value card users, contract users, temporary users, monthly subscribers five major billing strategies, and support a variety of billing packages, support the domestic and international traffic charges separately, support IPV4, IPV6 flow Billing , support a variety of preferential strategies, support for summer and winter downtime and other strategies, support the release of stored-value cards, campus network card, the transfer of bank cards, such as charging mode, effectively reduce the Campus network Network Center charging pressure.
Fit Campus Network application: To prevent users from private access; Campus Network interface: Support for RDA, New Cape, 39, new middle and new, neusoft, such as a card interface; Support e-mail, fast passenger and other e-mail interface, RADIUS\LDAP support Unified identity Authentication Center interface; user-based bandwidth and Peer-to-peer flow control (billing Flow-control Interface)
At the same time can be based on account bandwidth and peer-to-peer traffic management.
According to the IPV6 network in the domestic development situation, the reasons for the rise of IPV6 network are as follows: IPV4 network address resources are limited, IPV4 network security vulnerabilities. 2003 Next Generation Network project launched, 2005 Cernet 2 officially opened, 2008 Cernet 2 by the Government special funds to support the target of 1 million active users, the February 2009 government formally the next generation of network as an opportunity to revitalize China's electronics industry, 2009 operators began to build IPV6 test network.
The characteristic of the urban hot-spot stand-alone scheme is that the equipment of the whole campus network has been upgraded IPV4/V6 double stack, including the access layer switch, the core switch, the firewall and the export router, and the B-ras package is managed by a dr.com 2166 ipv4/v6 double stack ipv4/v6. Certification and billing.
The characteristics of the multi-machine scheme The original IPV4 exit firewall and router and authentication gateway unchanged, add a dr.com ipv4/v6 dual stack B-ras Gateway, officers transferred Guevara within the IPV6 server cluster can be deployed behind the gateway, users can access through authentication, and through access to Cernet2.
According to the new characteristics of IPV6, the Urban Hotspot University Campus network user and traffic management scheme features:
A certification, the whole network through: Users can use the Web and the client login to any one of the Ipv4/v6 Gateway, after certification, access to other exports without the need to sign in again authentication.
Bandwidth control strategy based on IPV6: Because of the rich bandwidth of IPv6, the bandwidth control strategy of accessing IPV6 resources can be configured individually, and the control precision is 8kb/s.
Based on the IPV6 flowmeter fee strategy: can separate the IPv6 flow rate of separate allocation;
IPV6 based Network policy: for IPV6 routing, Port Mapping, NAT retention configuration
Based on the IPV6 access control strategy: the IPV6 target address can be directly through, without landing configuration, based on the source address, the target Address control strategy (ACL);
IPV6 Access records: Separate records for IPV6 access addresses, and client-bound user IPv6 IP addresses based on IPV6 address security features.