COMMUNICATION DEVICE, COMMUNICATION METHOD, AND COMMUNICATION SYSTEM
A communication device is connected to first and second networks. The communication device includes a processor executing a process including relaying communication between the first and second networks; and confirming connection to a first device connected to the first network or a second device connected to the second network, based on a device list registered in advance. The confirming includes blocking the relaying when the confirmation of the connection to the first device is unsuccessful; enabling the relaying when the confirmation of the connection to the first device is successful and when the second device is not registered in the device list; enabling the relaying when the confirmation of the connections to the first and second devices is successful; and blocking the relaying when the confirmation of the connection to the first device is successful and when the confirmation of the connection to the second device is unsuccessful.
Latest Ricoh Company, Ltd. Patents:
- COMMUNICATION MANAGEMENT SYSTEM, COMMUNICATION SYSTEM, COMMUNICATION MANAGEMENT DEVICE, IMAGE PROCESSING METHOD, AND NON-TRANSITORY COMPUTER-READABLE MEDIUM
- IMAGE PROCESSING DEVICE, IMAGE FORMING APPARATUS, AND EDGE DETECTION METHOD
- IMAGE FORMING APPARATUS
- IMAGE READING DEVICE, IMAGE FORMING APPARATUS, AND IMAGE READING METHOD
- PRINT MANAGEMENT SYSTEM, PRINT MANAGEMENT METHOD, AND NON-TRANSITORY COMPUTER-EXECUTABLE MEDIUM
The present application claims priority under 35 U.S.C. § 119 to Japanese Patent Application No. 2017-063268, filed on Mar. 28, 2017, the contents of which are incorporated herein by reference in their entirety.
BACKGROUND OF THE INVENTION 1. Field of the InventionThe present invention relates to a communication device, a communication method, and a communication system.
2. Description of the Related ArtIn government offices or hospitals, there are cases where a plurality of networks are used, including a network handling information to be kept confidential such as personal information, and a network requiring less confidentiality than the aforementioned network. Also, in a general company, even when a plurality of departments share the same floor, the networks used by the respective departments may be different. When a plurality of networks are operated, and a multifunction peripheral or a printer is installed for each network, the management cost increases and the occupied area increases. Thus, it is required to consolidate the number of multifunction peripherals or printers. However, when one multifunction peripheral or one printer processes packets from a plurality of networks, in the rout control by Transmission Control Protocol/Internet Protocol (TCP/IP), problems in security may occur, such as erroneous transmission and leakage of packets to other networks (for example, communication from a terminal having the same Internet Protocol (IP) address that is disguised, etc.), etc. There is already known a configuration of providing an image processing apparatus capable of automatically enabling communication, when it is necessary to perform communication between the image processing apparatus and another device, even when the network interface of the image processing apparatus belongs to a particular network address, and the other device that is a communication partner of the image processing apparatus belongs to a network address different from the particular network address (for example, Patent Document 1).
Patent Document 1: Japanese Unexamined Patent Application Publication No. 2005-229332
SUMMARY OF THE INVENTIONAn aspect of the present invention provides a communication device, a communication method, and a communication system, in which one or more of the disadvantages of the related art are reduced.
According to one aspect of the present invention, there is provided a communication device connected to a first network and a second network, the communication device including a processor, in communication with a memory, executing a process including relaying communication between the first network and the second network via a network interface included in the communication device; and confirming connection to a first device connected to the first network or a second device connected to the second network, based on a device list stored in advance in a storage device included in the communication device, the connection to the first device or the second device being made via a port included in the communication device, wherein the confirming includes blocking the relaying upon determining that the confirmation of the connection to the first device connected to the first network is unsuccessful based on the device list; enabling the relaying upon determining that the confirmation of the connection to the first device connected to the first network is successful based on the device list and upon determining that the second device connected to the second network is not registered in the device list; enabling the relaying upon determining that the confirmation of the connection to the first device connected to the first network is successful based on the device list and upon determining that the confirmation of the connection to the second device connected to the second network is successful based on the device list; and blocking the relaying upon determining that the confirmation of the connection to the first device connected to the first network is successful based on the device list and upon determining that the confirmation of the connection to the second device connected to the second network is unsuccessful based on the device list.
The network device of the related art can separate a plurality of networks that are not permitted to communicate with each other. On the other hand, a particular network (a network to which a multifunction peripheral, etc., which is desired to be commonly used, is connected) can communicate with each of the plurality of networks that are not permitted to communicate with each other. Therefore, there has been a problem that when a Local Area Network (LAN) cable is physically inserted by mistake, communicate will be enabled between the networks that are not supposed to be permitted to communicate with each other.
A problem to be solved by an embodiment of the present invention is to prevent communication in a combination of networks for which communication is not permitted, when a plurality of networks are separated.
Embodiments of the present invention will be described by referring to the accompanying drawings.
The relay device 100 includes a plurality of physical Local Area Network (LAN) ports and relays communication between a plurality of networks. The plurality of networks may have different network addresses or may have the same network address. In the configuration example illustrated in
The GW 110 and the GW 120 are gateways. For example, when a device transmits a packet to an Internet Protocol (IP) address other than the network address to which the device belongs, the gateway receives the packet from the device and transmits the received packet to another network. The GW 110 is connected to Net_1 and has an IP address of 172.16.1.1 and a Media Access Control (MAC) address of uu:vv:ww:xx:yy:zz. The GW 120 is connected to Net_2, and has an IP address of 172.16.2.1 and a MAC address of 1a:2b:3c:4d:5e:6f.
The PC 111, the PC 121, and the confidential information management PC 132 are personal computers (PCs). The PC 111 is connected to Net_1, the PC 121 is connected to Net_2, and the confidential information management PC 132 is connected to Net_3.
The confidential server 131 is a server computer. The confidential server 131 is connected to Net_3 and has an IP address of 172.16.3.10.
The MFP 141 is a multifunction peripheral. For example, the MFP 141 has a plurality of functions such as functions of a printer and a scanner. The MFP 141 is connected to Net_MFP, and has an IP address of 192.168.0.10 and a MAC address of aa:bb:cc:dd:ee:ff.
The programs for implementing the processes by the relay device 100 are stored in the secondary storage device 1004. The secondary storage device 1004 stores installed programs and necessary files and data, etc.
The memory device 1005 reads out a program from the secondary storage device 1004 and stores the program when an instruction to activate the program is issued. The CPU 1001 implements functions relating to the relay device 100 according to a program stored in the memory device 1005.
The network interface 1002 is an interface for communicating with a device connected to a port. The port may be a wired LAN port or a port using another communication method.
The input/output interface 1003 is an interface for connecting with various input/output devices such as a Universal Serial Bus (USB) device, a hardware key, a status notification Light Emitting Diode (LED), and a liquid crystal display, etc.
Note that the GW 110, the GW 120, the PC 111, the PC 121, the confidential information management PC 132, the confidential server 131, and the MFP 141 may have the same hardware configuration as in
When a packet flows into the relay device 100 via a port, the inflow port determining unit 11 determines the port in which the packet has flowed, among the ports A to D. The relay unit 12 relays communication between the port A and the port B, the port C, or the port D. For example, at the time of activation, the connection confirming unit 13 checks whether the cable connection to the port has been set in advance. Furthermore, the connection confirming unit 13 transmits a response confirmation message to each port, and analyzes a received response message. The connection confirmation list storage unit 14 stores connection confirmation destination information used for the confirmation of connection by the connection confirming unit 13. The timekeeping unit 15 measures a predetermined time. The display unit 16 displays the operation status of the relay unit 12.
Note that each of the devices forming the GW 110, the GW 120, the PC 111, the PC 121, the confidential server 131, the confidential information management PC 132, and the MFP 141 includes at least a responding unit for receiving a response confirmation message transmitted from the relay device 100 and transmitting a response to the relay device 100, and a communication unit for the devices to communicate with each other.
In step S101, the connection confirming unit 13 transmits a list request to the connection confirmation list storage unit 14. Subsequently, the connection confirmation list storage unit 14 transmits a list response to the connection confirming unit 13 (step S102). Table 1 is an example of the connection confirmation list stored in the connection confirmation list storage unit 14.
As indicated in Table 1, for each device, “LAN port”, “label”, “IP address”, and “MAC address” are stored in association with each other. (Essential) or (optional) described in the column “IP address” indicates whether the IP address is essential in the list. For example, for “LAN port A”, it is indicated that a device for which “label” is “MFP”, “IP address” is “192.168.0.10”, and the MAC address is “aa:bb:cc:dd:ee:ff” is a device for which relay of communication by the relay device 100 is permitted. Similarly, for “LAN port B”, it is indicated that a device for which “label” is “GW 1”, “IP address” is “172.16.1.1”, and the MAC address is “uu:vv:ww:xx:yy:zz” is a device for which relay of communication by the relay device 100 is permitted. Similarly, for “LAN port C”, it is indicated that a device for which “label” is “GW 2”, “IP address” is “172.16.2.1”, and the MAC address is “1a:2b:3c:4d:5e:6f” is a device for which relay of communication by the relay device 100 is permitted. Note that for “LAN port D”, the descriptions of the label, the IP address, and the MAC address are blank, indicating that a device connected to the LAN port D is a device for which relay of communication by the relay device 100 is permitted in advance.
In step S103, the connection confirming unit 13 transmits an MFP confirmation request to the LAN port A based on the connection confirmation list received in step S102. Subsequently, a response confirmation message is transmitted from the LAN port A to the MFP 141 (step S104). Subsequently, the MFP 141 transmits, via the LAN port A (step S105), a response message to the connection confirming unit 13 (step S106).
In step S107, the connection confirming unit 13 compares the MAC address included in the response message with the MAC address “aa:bb:cc:dd:ee:ff” associated with the label “MFP” for the LAN port A included in the connection confirmation list. When the MAC addresses match, the process proceeds to step S108. Conversely, when the MAC addresses do not match, or when no response message is received, the communication relating to the LAN port A is blocked. At this time, the relay device 100 may abort the sequence illustrated in
In step S108, the connection confirming unit 13 transmits a relay permission to the relay unit 12. Subsequently, the relay unit 12 enables the communication between the LAN port A and the LAN port D (step S109). In step S110, the connection confirming unit 13 transmits a display instruction to the display unit 16. Subsequently, the display unit 16 changes the display (step S111).
As indicated in Table 2, communication between LAN port A and LAN port B, communication between LAN port A and LAN port C, and communication between LAN port A and LAN port D are not relayed. The state indicated in Table 2 is, for example, the initial state of the relay device 100. That is, at the time of step S101 illustrated in
Table 3 is a table indicating a state of a display example 2 illustrated in
The display example 2 illustrated in
Table 4 is a table indicating the state of a display example 3 illustrated in
The display example 3 illustrated in
Table 5 is a table indicating the state of a display example 4 illustrated in
A display example 4 illustrated in
Referring back to
In step S112, the connection confirming unit 13 transmits a GW 110 confirmation request to the LAN port B based on the connection confirmation list received in step S102. Subsequently, a response confirmation message is transmitted from the LAN port B to the GW 110 (step S113). Subsequently, the GW 110 transmits, via the LAN port B (step S114), a response message to the connection confirming unit 13 (step S115).
In step S116, the connection confirming unit 13 compares the MAC address included in the response message with the MAC address “uu:vv:ww:xx:yy:zz” associated with the label “GW 1” for the LAN port B included in the connection confirmation list. When the MAC addresses match, the connection confirming unit 13 determines that the connection confirmation has been successful, and proceeds to step S117. Conversely, when the MAC addresses do not match, or when a response message is not received, the connection confirming unit 13 determines that the connection confirmation has been unsuccessful and blocks the communication relating to the LAN port B. At this time, the relay device 100 may abort the sequence illustrated in
In step S117, the connection confirming unit 13 transmits a relay permission to the relay unit 12. Subsequently, the relay unit 12 enables the communication between the LAN port A and the LAN port B (step S118). In step S119, the connection confirming unit 13 transmits a display instruction to the display unit 16. Subsequently, the display unit 16 changes the display from the display example 2 to the display example 3 illustrated in
In step S121, the connection confirming unit 13 transmits a GW 120 confirmation request to the LAN port B based on the connection confirmation list received in step S102. Subsequently, a response confirmation message is transmitted from the LAN port C to the GW 120 (step S122). Subsequently, the GW 120 transmits, via the LAN port C (step S123), a response message to the connection confirming unit 13 (step S124).
In step S125, the connection confirming unit 13 compares the MAC address included in the response message with the MAC address “1a:2b:3c:4d:5e:6f” associated with the label “GW 2” for the LAN port C included in the connection confirmation list. When the MAC addresses match, the connection confirming unit 13 determines that the connection confirmation has been successful, and proceeds to step S126. Conversely, when the MAC addresses do not match, or when a response message is not received, the connection confirming unit 13 determines that the connection confirmation has been unsuccessful and blocks the communication relating to the LAN port C. At this time, the relay device 100 may abort the sequence illustrated in
In step S126, the connection confirming unit 13 transmits a relay permission to the relay unit 12. Subsequently, the relay unit 12 enables communication between the LAN port A and the LAN port C (step S127). In step S128, the connection confirming unit 13 transmits a display instruction to the display unit 16. Subsequently, the display unit 16 changes the display from the display example 3 to the display example 4 illustrated in
In step S130, the connection confirming unit 13 transmits a timekeeping instruction to the timekeeping unit 15. Subsequently, the timekeeping unit 15 starts timekeeping (step S131). Upon the elapse of a predetermined time after starting the timekeeping, a time elapse report is transmitted to the connection confirming unit 13 (step S132).
In step S133, the connection confirming unit 13 proceeds to step S101 in order to start the confirmation procedure again. That is, when a predetermined time has elapsed after the execution of the confirmation procedure, the confirmation procedure is executed again. Furthermore, the confirmation procedure may be repeated at regular time intervals. By the above steps, the confirmation procedure executed by the relay device 100 is completed.
Note that in the sequence illustrated in
As indicated in Table 6, when the connection confirmation method is “ping response confirmation”, “ICMP echo request” is used as the response confirmation message and “ICMP echo response” is used as the response message. The connection confirming unit 13 determines whether the echo response is normal.
As indicated in Table 6, when the connection confirmation method is “MAC address vendor part match”, “arp request” is used as the response confirmation message and “arp reply” is used as the response message. The connection confirming unit 13 determines whether the leading three bytes of the MAC address included in arp reply are of a particular vendor. That is, the relay device 100 can permit relaying with respect to a device of a particular vendor.
As indicated in Table 6, when the connection confirmation method is “MAC address complete matching”, “acp request” is used as the response confirmation message and “arp reply” is used as the response message. The connection confirming unit 13 determines whether the MAC address completely matches the MAC address set in advance in the connection confirmation list indicated in Table 1.
As indicated in Table 6, when the connection confirmation method is “acquire extended MIB”, “Simple Network Management Protocol (SNMP) Get-Request” is used as the response confirmation message and “SNMP Get-response” is used as the response message. The connection confirming unit 13 determines whether an Object Identifier (OID) of a particular vender exists among the OIDs included in the SNMP Get-Response. That is, the relay device 100 can permit relaying with respect to a device of a particular vendor. Furthermore, the OID is setting information set in the device in advance, and the possibility of a change in the OID is relatively low compared to a MAC address.
As indicated in Table 6, when the connection confirmation method is “port scanning”, “connection request” is used as the response confirmation message, and “connection response (permit/reject)” is used as the response message. The connection confirming unit 13 determines whether a particular port is open. The “connection request” may be a Transmission Control Protocol (TCP) packet or a User Datagram Protocol (UDP) packet.
As described above, according to an embodiment of the present invention, the relay device 100 confirms the connection of each of the devices connected to a plurality of networks, based on the connection confirmation list registered in advance, and then permits the relaying of the network. Therefore, when an unintended physical connection is made, relaying of the network is not permitted. Therefore, when a plurality of networks are separated, it is possible to prevent communication in a combination of networks for which communication is not permitted.
In the embodiment of the present invention, the network Net_MFP is an example of a first network. The network Net_1, the network Net_2, or the network Net_3 is an example of a second network. The relay device 100 is an example of a communication device. The connection confirming unit 13 is an example of a confirming unit. The connection confirmation list is an example of a device list. An IP address is an example of a logical address. The ping response is an example of an echo response. The MAC address is an example of a physical address. The leading three bytes of the MAC address indicating the vendor of the device are an example of a part of the physical address. SNMP is an example of a network management protocol. The OID is an example of an identifier on the network management protocol. The MFP 141 is an example of an image processing device. The PC 111 is an example of an information processing device.
According to one embodiment of the present invention, it is possible to prevent communication in a combination of networks for which communication is not permitted, when a plurality of networks are separated.
The communication device, the communication method, and the communication system are not limited to the specific embodiments described in the detailed description, and variations and modifications may be made without departing from the spirit and scope of the present invention.
Claims
1. A communication device connected to a first network and a second network, the communication device comprising a processor, in communication with a memory, executing a process including:
- relaying communication between the first network and the second network via a network interface included in the communication device; and
- confirming connection to a first device connected to the first network or a second device connected to the second network, based on a device list stored in advance in a storage device included in the communication device, the connection to the first device or the second device being made via a port included in the communication device, wherein
- the confirming includes: blocking the relaying upon determining that the confirmation of the connection to the first device connected to the first network is unsuccessful based on the device list; enabling the relaying upon determining that the confirmation of the connection to the first device connected to the first network is successful based on the device list and upon determining that the second device connected to the second network is not registered in the device list; enabling the relaying upon determining that the confirmation of the connection to the first device connected to the first network is successful based on the device list and upon determining that the confirmation of the connection to the second device connected to the second network is successful based on the device list; and blocking the relaying upon determining that the confirmation of the connection to the first device connected to the first network is successful based on the device list and upon determining that the confirmation of the connection to the second device connected to the second network is unsuccessful based on the device list.
2. The communication device according to claim 1, wherein
- a logical address, associated with each of the first device and the second device, is registered in the device list, and
- the confirming includes confirming the connection to the first device or the second device according to an echo response for which a transmission destination is identified by the logical address.
3. The communication device according to claim 1, wherein
- a logical address and a physical address, associated with each of the first device and the second device, are registered in the device list, and
- the confirming includes confirming the connection to the first device or the second device by acquiring, from the first device or the second device for which the confirmation is being made, the physical address based on the logical address, and matching the acquired physical address to the physical address registered in the device list.
4. The communication device according to claim 3, wherein
- a part of the physical address, associated with each of the first device and the second device, is specified in advance, and
- the confirming includes confirming the connection to the first device or the second device by matching a part of the acquired physical address to the part of the physical address specified in advance.
5. The communication device according to claim 1, wherein
- an identifier, which is on a network management protocol associated with each of the first device and the second device, is specified in advance, and
- the confirming includes confirming the connection to the first device or the second device by acquiring an identifier included in a response according to the network management protocol, and matching the acquired identifier to the identifier specified in advance.
6. The communication device according to claim 1, wherein the processor executes the process further including:
- displaying, on a display, a state of the relaying being enabled or a state of the relaying being blocked.
7. The communication device according to claim 1, wherein the confirming includes confirming again the connection to the first device connected to the first network and the connection to the second device connected to the second network, upon determining that a predetermined time has elapsed from a time point when the relaying has been enabled or blocked.
8. A communication method executed by a computer included in communication device connected to a first network and a second network, the communication method comprising:
- relaying communication between the first network and the second network via a network interface included in the communication device; and
- confirming connection to a first device connected to the first network or a second device connected to the second network, based on a device list stored in advance in a storage device included in the communication device, the connection to the first device or the second device being made via a port included in the communication device, wherein
- the confirming includes: blocking the relaying upon determining that the confirmation of the connection to the first device connected to the first network is unsuccessful based on the device list; enabling the relaying upon determining that the confirmation of the connection to the first device connected to the first network is successful based on the device list and upon determining that the second device connected to the second network is not registered in the device list; enabling the relaying upon determining that the confirmation of the connection to the first device connected to the first network is successful based on the device list and upon determining that the confirmation of the connection to the second device connected to the second network is successful based on the device list; and blocking the relaying upon determining that the confirmation of the connection to the first device connected to the first network is successful based on the device list and upon determining that the confirmation of the connection to the second device connected to the second network is unsuccessful based on the device list.
9. The communication method according to claim 8, wherein
- a logical address, associated with each of the first device and the second device, is registered in the device list, and
- the confirming includes confirming the connection to the first device or the second device according to an echo response for which a transmission destination is identified by the logical address.
10. The communication method according to claim 8, wherein
- a logical address and a physical address, associated with each of the first device and the second device, are registered in the device list, and
- the confirming includes confirming the connection to the first device or the second device by acquiring, from the first device or the second device for which the confirmation is being made, the physical address based on the logical address, and matching the acquired physical address to the physical address registered in the device list.
11. The communication method according to claim 10, wherein
- a part of the physical address, associated with each of the first device and the second device, is specified in advance, and
- the confirming includes confirming the connection to the first device or the second device by matching a part of the acquired physical address to the part of the physical address specified in advance.
12. The communication method according to claim 8, wherein
- an identifier, which is on a network management protocol associated with each of the first device and the second device, is specified in advance, and
- the confirming includes confirming the connection to the first device or the second device by acquiring an identifier included in a response according to the network management protocol, and matching the acquired identifier to the identifier specified in advance.
13. The communication device according to claim 8, further comprising:
- displaying, on a display, a state of the relaying being enabled or a state of the relaying being blocked.
14. The communication method according to claim 8, wherein the confirming includes confirming again the connection to the first device connected to the first network and the connection to the second device connected to the second network, upon determining that a predetermined time has elapsed from a time point when the relaying has been enabled or blocked.
15. A communication system comprising:
- a communication device connected to a first network and a second network;
- an image processing device connected to the first network; and
- an information processing device connected to the second network,
- wherein the image processing device includes a first processor, in communication with a first memory, executing a first process including:
- responding to a connection confirmation transmitted from the communication device; and
- communicating with the information processing device,
- wherein information processing device includes a second processor, in communication with a second memory, executing a second process including:
- responding to a connection confirmation transmitted from the communication device; and
- communicating with the image processing device, and
- wherein the communication device includes a third processor, in communication with a third memory, executing a third process including:
- relaying communication between the image processing device and the information processing device via a network interface included in the communication device; and
- confirming connection to the image processing device or the information processing device, based on a device list stored in advance in a storage device included in the communication device, the connection to the image processing device or the information processing device being made via a port included in the communication device, wherein
- the confirming includes: blocking the relaying upon determining that the confirmation of the connection to the image processing device is unsuccessful based on the device list; enabling the relaying upon determining that the confirmation of the connection to the image processing device is successful based on the device list and upon determining that the information processing device is not registered in the device list; enabling the relaying upon determining that the confirmation of the connection to the image processing device is successful based on the device list and upon determining that the confirmation of the connection to the information processing device is successful based on the device list; and blocking the relaying upon determining that the confirmation of the connection to the image processing device is successful based on the device list and upon determining that the confirmation of the connection to the information processing device is unsuccessful based on the device list.
Type: Application
Filed: Mar 12, 2018
Publication Date: Oct 4, 2018
Applicant: Ricoh Company, Ltd. (Tokyo)
Inventor: Ryusuke MAYUZUMI (Kanagawa)
Application Number: 15/918,041