In order to speed up construction of the Next Generation Internet and broadband optical network and to promote the combination of information technology and traditional industry, a distributed network access control method for large-scale campus network has been studied in this paper. With the connection-oriented features in TCP protocol, the first handshake packet and the other transport packets are sent to network control server and cut-off gate way, respectively. In order to achieve a highly efficient user access and data forwarding speed, the TCP connection packets were authenticated only in the control server.%为加快下一代互联网和宽带光纤接入网建设,推进信息技术与传统工业结合,本文针对大型园区网络的用户接入需求,研究了一种分布式的接入控制技术。该技术利用TCP面向连接的特点,把TCP创建连接数据包与负载传输数据包分别发送到控制服务器与截断网关。在控制服务器处只对创建连接数据包进行用户认证,从而实现了高效的用户接入与数据转发。
展开▼
