JP4191153B2 - Data exchange system, data exchange method, server, management server, and data exchange program - Google Patents

Description

  The present invention relates to a data exchange system, a data exchange method, a server, a management server, and a data exchange program for exchanging data between two independent networks that are completely separated, and more particularly to directly connecting two networks. The present invention relates to a data exchange system, a data exchange method, a server, a management server, and a data exchange program that can exchange data without any problem.

  Information processing apparatuses belonging to an open network (LAN connected to another network) can easily exchange information via the network (for example, using FTP).

  However, the fact that information can be easily exchanged also means that information is easily leaked. For example, an information processing apparatus belonging to a LAN connected to the Internet can exchange data with many information processing apparatuses via the Internet. However, when information is transmitted / received via the Internet that can be accessed by an unspecified number of people, data may be stolen by a third party during transmission.

  In addition, an information processing apparatus belonging to an open network may be illegally accessed from an information processing apparatus on another network by a malicious person and information may be stolen, altered, or destroyed.

  For this reason, it is common for an information processing apparatus that stores data requiring confidentiality and security to belong to a closed network (LAN not connected to another network), not an open network.

  For example, in a company, it is common to separately construct a LAN for an in-house intranet that is a closed network and a LAN for the Internet that is an open network.

  However, an information processing device belonging to a closed network can exchange information with an information processing device belonging to the same network using a network line, but a network line can be exchanged with an information processing device not belonging to the same network. Information cannot be exchanged using it.

  As a prior art aiming at enabling an information processing apparatus belonging to a closed network to exchange data with an information processing apparatus belonging to another network, a “data exchange method, data exchange system, And program ". In the invention disclosed in Patent Document 1, each system has storage means for storing data to be transmitted to other disconnected systems (corresponding to the network in the present application) and data received from other disconnected systems. It is provided.

Further, as a conventional technology related to a bus bridge device that performs data transfer between two devices, there is a “bus bridge device and a data transfer control method” disclosed in Patent Document 2.
Japanese Patent Laid-Open No. 2004-133587 JP 2004-280640 A

  However, the invention disclosed in Patent Document 1 discloses an information recording medium (flexible disk (FD), magnetic tape (MT), etc.) in order to move data stored in a storage means of one network to a storage means of another network. , Hereinafter also referred to as “media”).

  In order to exchange data using a medium, it is necessary to write information on the medium in the information processing apparatus that is the exchange source, and to read this information in the information processing apparatus that is the exchange destination. In this case, it is necessary for the user to manually perform a cumbersome task of replacing media.

Also, as shown in FIG. 22, data may be exchanged using a tape device having two tape drives. The first server 50 is connected to the first tape drive 71, and the second server 60 is connected to the second tape drive 72. Each server can record (save) and read (restore) data from / to the MT loaded in the connected tape drive.
The MT, which is an information recording medium, is stored in the tape library 73, and the MT is transported and loaded into the tape drive in accordance with control from the tape controller 80.
For example, when data stored in the exchange data storage unit 53 of the first server 50 is moved to the second server 60, a blank MT taken out from the tape library 73 by an instruction from the tape controller 80. Is loaded into the first tape drive 71, and the data in the exchange data storage unit 53 is written to the MT in the tape drive 71. The MT in which the data has been written is transported to the second tape drive 72 and loaded according to a command from the tape controller 80. When the MT in which the data is written is loaded into the second tape drive 72, the second server 60 reads the information written in the MT and acquires it in the exchange data storage unit 63.

  As described above, in a tape device having two tape drives, a method of automating the loading of the tape is adopted. Therefore, if this is used, it is not necessary to manually replace the media, but the device itself is Expensive.

  Furthermore, even if a tape device equipped with two tape drives is used, there is no substitute for having to physically move the media on which the data is recorded, and the data to be exchanged is not transferred immediately, which improves real-time performance. There was a problem of lacking.

  In addition, data transfer from the open network side to the closed network side is performed by the tape control device 80 controlling each unit in response to a request from the first server 50 on the open network side. For this reason, when the first server 50 is occupied by a malicious person, the transfer of unauthorized data is accepted by the tape controller 80 as a legitimate request, and the unauthorized data is received on the closed network side. May be transferred to the second server 60.

  On the other hand, the invention disclosed in Patent Document 2 relates to a so-called built-in storage device and does not assume data transfer between mutually independent LANs. Therefore, if the invention disclosed in Patent Document 2 is applied to data transfer between mutually independent LANs, there is a possibility that the confidentiality of information cannot be maintained.

  In addition, some information is disclosed only to some members within the same organization. For example, personnel information in a company is information that must not be disclosed to unauthorized persons (employees other than the personnel department) even if it is an employee. It is necessary to construct a dedicated network separately from the intranet.

  In such a case, it is necessary to construct a system so that data can be exchanged between the networks, but the data transfer device applied to the conventional system assumes only data exchange between the two networks. Therefore, when the number of networks is 3 or more, data cannot be exchanged between them.

  As described above, a data exchange system that can exchange data in real time and prevent unauthorized data transfer between three or more independent networks that are completely separated has been provided. Was not.

  The present invention has been made in view of such a problem, and it is possible to exchange data in real time without requiring complicated manual work between three or more completely separated independent networks, and transfer illegal data. It is an object to provide a data exchange system, a data exchange method, a server, a management server, and a data exchange program that can be prevented.

To achieve the above object, according to a first aspect of the present invention, there is provided a data exchange system for exchanging data between an information processing apparatus belonging to an independent network and an information processing apparatus belonging to another network. The servers belonging to each network and the management server independent of any network are a server storage area accessible only from each server and a plurality of storage servers accessible only from the management server and corresponding to each server storage area. Information processing apparatus that is connected to a storage apparatus having a management server storage area via a fiber channel, and that each server transmits data to be transmitted to an information processing apparatus belonging to a network different from the own apparatus. And store it in a server storage area that can only be accessed from its own device. It means, and means for executing a process to replicate the data stored in the server storage area to the management server storage area corresponding to the server storage area in the storage device, corresponding to the observed accessible server storage area from the own apparatus Means for monitoring that data has been copied from the management server storage area, and means for transmitting data acquired from the server storage area accessible only from the own apparatus to an information processing apparatus that is a delivery destination belonging to the same network as the own apparatus has the door, the management server, only a means for monitoring that only one of the servers data is replicated to the management server storage area corresponding thereto from a server accessible storage area, either server the data is replicated to the management server storage area corresponding to the server storage area from the server accessible storage area, Means for copying to other management server storage area corresponding to viewing a server accessible storage area from the server, the process of replicating the server storage area corresponding to the management server storage area of the copy destination the copied data to the storage device And a means for executing the data exchange system.

  In the first aspect of the present invention, each server includes a first transmission data storage unit and a server that are individually associated with each information processing apparatus belonging to the same network as the own apparatus in which data to be transmitted to another network is written. Second transmission data storage means for storing data to be stored in the storage area, and data is written to the first transmission data storage means from each information processing device at an arbitrary timing. The data in the storage means is preferably copied to the second transmission data storage means at a predetermined timing.

  In the first aspect of the present invention, each server receives data received from the first received data storage means for storing data obtained from the server storage area and an information processing apparatus belonging to the same network as the own apparatus. For each destination information processing apparatus, and the data stored in the first received data storage means is copied to the second received data storage means at a predetermined timing. The data stored in the second received data storage means is preferably transmitted at an arbitrary timing for each destination information processing apparatus.

In either configuration of the first aspect of the present invention, the storage device, rather is preferably be a disk array system, in addition to this, the server is to look accessible server storage area from the own apparatus After the data is replicated from the corresponding management server storage area, the disk that forms the server storage area that can be accessed only from its own device is disconnected from the disk that forms the management server storage area corresponding to that server storage area. monitoring, after confirming that these disks is disconnected, have more preferable to obtain data from the look accessible server storage area from the own apparatus. Further, the management server, only predetermined format data among the data is replicated in the management server storage area, it is preferable to copy the management server storage area corresponding to the other server storage area. The management server preferably has means for detecting whether or not a computer virus is included in data stored in a server storage area accessible only by that server by any server. Moreover, it is preferable that at least one of each network is an open network.

In order to achieve the above object, the present invention provides, as a second aspect, an information processing device belonging to the first network, an information processing device belonging to the second network, an information processing device belonging to the third network, 4 is a data exchange system for exchanging data with an information processing apparatus belonging to a network of 4, a first server connected to the first network and a second server connected to the second network. A server, a third server connected to a third network, a fourth server connected to a fourth network, and independent of any of the first, second, third and fourth networks The management server is a first storage area accessible only from the first server, a second storage area accessible only from the second server, and accessed only from the third server. A third storage area that can be accessed only from the fourth server, and a first, second, third, and fourth storage area that can be accessed only from the management server. 5, 6th, 7th and 8th storage areas are connected to each of the storage devices via fiber channels, and the first server sends data to be transmitted to information processing devices belonging to other networks to the first Means for receiving from an information processing apparatus belonging to the network of the first and storing it in the first storage area; means for causing the storage apparatus to execute processing for copying the data stored in the first storage area to the fifth storage area ; means for monitoring the data from the fifth memory area is copied in the first memory area, the information processing apparatus belonging to the first network data obtained from the first storage area is delivered destination Means for receiving the data from the information processing apparatus belonging to the second network and storing the data in the second storage area. Means for causing the storage apparatus to execute processing for copying data stored in the second storage area to the sixth storage area, and monitoring that data has been copied from the sixth storage area to the second storage area Means and a means for transmitting data acquired from the second storage area to an information processing apparatus belonging to the second network as a delivery destination, and the third server sends the information processing apparatus belonging to another network to the information processing apparatus Means for receiving data to be output from an information processing apparatus belonging to the third network and storing the data in the third storage area; and copying the data stored in the third storage area to the seventh storage area Means for causing the storage device to execute processing to be performed, means for monitoring that data has been copied from the seventh storage area to the third storage area, and data obtained from the third storage area is the destination And a fourth server receives data from the information processing apparatus belonging to the fourth network and outputs data to the information processing apparatus belonging to the other network. Means for storing in the storage area, means for causing the storage apparatus to execute processing for copying the data stored in the fourth storage area to the eighth storage area, and the eighth storage area from the eighth storage area. comprising means for monitoring that the data has been replicated, and means for transmitting to the fourth of the fourth information processing apparatus belonging to the network is delivering destination data acquired from the storage area, the management Over Bas, first, second, fifth forming it with pair from either the third or fourth storage areas, sixth, means that the data in the storage area of the seventh or eighth monitors that have been replicated And means for copying the data replicated in any of the fifth, sixth, seventh and eighth storage areas to any of the other storage areas, and the fifth, sixth, sixth Processing for copying data copied to either the seventh storage area or the eighth storage area to any one of the first, second, third, and fourth storage areas paired with the copy destination storage area. And a means for executing the data exchange system.

  In the second aspect of the present invention described above, the first server has a separate first information processing device belonging to the first network in which data to be transmitted to the second, third, or fourth network is written. Transmission data storage means and second transmission data storage means for storing data to be stored in the first storage area, and each information processing apparatus belonging to the first network is connected to the first transmission data storage means It is preferable that data is written at an arbitrary timing, and the data in the first transmission data storage means is copied to the second transmission data storage means at a predetermined timing. In addition, the second server includes a third transmission data storage unit that is individually stored in each of the information processing apparatuses belonging to the second network in which data to be transmitted to the first, third, or fourth network is written. And a fourth transmission data storage means for storing data to be stored in the storage area, and data is written to the third transmission data storage means from each information processing device belonging to the second network at an arbitrary timing. Thus, it is preferable that the data in the third transmission data storage means is copied to the fourth transmission data storage means at a predetermined timing. In addition, the third server includes a fifth transmission data storage unit that is individually associated with each of the information processing apparatuses belonging to the third network in which data to be transmitted to the first, second, or fourth network is written. And a sixth transmission data storage means for storing data to be stored in the storage area, and data is written to the fifth transmission data storage means from each information processing device belonging to the third network at an arbitrary timing. It is preferable that the data in the fifth transmission data storage means is copied to the sixth transmission data storage means at a predetermined timing. In addition, the fourth server includes a seventh transmission data storage unit individually for each of the information processing apparatuses belonging to the fourth network in which data to be transmitted to the first, second, or third network is written. And an eighth transmission data storage means for storing data to be stored in the storage area, and data is written to the seventh transmission data storage means from each information processing device belonging to the fourth network at an arbitrary timing. Thus, it is preferable that the data in the seventh transmission data storage means is copied to the eighth transmission data storage means at a predetermined timing.

  In any of the above configurations of the second aspect of the present invention, the first server includes first received data storage means for storing data obtained from the first storage area, and information belonging to the first network. And second received data storage means for storing data to be delivered to the processing apparatus for each destination information processing apparatus, and the data stored in the first received data storage means is received at a predetermined timing. The data copied to the data storage means and stored in the second received data storage means is preferably transmitted at an arbitrary timing for each information processing apparatus as the destination. In addition, the second server stores, for each destination information processing device, third received data storage means for storing data obtained from the second storage area and data to be delivered to the information processing device belonging to the second network. 4th received data storage means for storing, and the data stored in the 3rd received data storage means is copied to the 4th received data storage means at a predetermined timing and stored in the 4th received data storage means It is preferable that the data stored in is transmitted at an arbitrary timing for each information processing apparatus as a destination. In addition, the third server stores, for each destination information processing device, fifth received data storage means for storing data obtained from the third storage area and data to be delivered to the information processing device belonging to the third network. 6th received data storage means for storing, and the data stored in the 5th received data storage means is copied to the 6th received data storage means at a predetermined timing and stored in the 6th received data storage means It is preferable that the data stored in is transmitted at an arbitrary timing for each information processing apparatus as a destination. In addition, the fourth server stores, for each destination information processing device, seventh received data storage means for storing data obtained from the fourth storage area and data to be delivered to the information processing device belonging to the fourth network. Data stored in the seventh received data storage means are copied to the eighth received data storage means at a predetermined timing, and stored in the eighth received data storage means. It is preferable that the data stored in is transmitted at an arbitrary timing for each information processing apparatus as a destination.

In either configuration of the second aspect of the present invention, the storage device, rather is preferably be a disk array system, in addition to this, first, second, third and fourth server From a disk that forms a storage area that is paired with a disk that forms a storage area that is accessible only from its own device after data is copied from the storage area that is paired with the storage area that is accessible only from its own device watching the decoupled is for, after confirming that these disks is disconnected, it is not more preferable to obtain data from the look accessible storage area from the own apparatus. In addition, the management server stores only the data in a predetermined format among the data copied to any of the fifth, sixth, seventh, and eighth storage areas, the fifth, sixth, seventh, and eighth. It is preferable to copy to one of the other storage areas. The management server preferably includes means for detecting whether or not a computer virus is included in data stored in a storage area accessible only by that server. Moreover, it is preferable that at least one of each network is an open network.

In order to achieve the above object, according to a third aspect of the present invention, there is provided a data exchange method for exchanging data between an information processing apparatus belonging to an independent network and an information processing apparatus belonging to another network. The server belonging to each network and the management server independent of any network can be accessed only from each server and the management server can be accessed only by each server storage area. An information processing apparatus that is connected to a storage apparatus having a plurality of management server storage areas via a fiber channel, and that each server transmits data to be transmitted to an information processing apparatus that belongs to a network different from the own apparatus. And store it in a server storage area that is accessible only from the local device. The process of replicating stored in the storage area data to the management server storage area corresponding to the server storage area to execute the storage device, management server, only one of the servers corresponding to the server accessible storage area monitors that data to the management server storage area is duplicated, either the data copied to the management server storage area corresponding to the server storage area from the servers storage area, accessible only from other servers Copy the copied data to another management server storage area corresponding to the server storage area and copy the copied data to the server storage area corresponding to the copy destination management server storage area. That the data was copied from the corresponding management server storage area to a server storage area accessible only from Vision, and transmission server device itself data to a server accessible storage area is duplicated to obtain the data from the servers storage area, to the information processing apparatus is a delivery destination belonging to the same network as the own device The present invention provides a method for exchanging data.

In the third aspect of the present invention, each server includes a first transmission data storage unit individually stored in each of the information processing apparatuses belonging to the first network in which data to be transmitted to a network different from the own apparatus is written. And a second transmission data storage means for storing data to be stored in the first storage area, and from each information processing device belonging to the same network as the own apparatus to the first transmission data storage means at an arbitrary timing. It is preferable to copy the written data to the second transmission data storage means at a predetermined timing. Each server also receives first received data storage means for storing data obtained from a server storage area accessible to the own device, and data to be delivered to an information processing device belonging to the same network as the own device. Second received data storage means for storing each processing device, the data stored in the first received data storage means is copied to the second received data storage means at a predetermined timing, and the second received data It is preferable to transmit the data stored in the storage means at an arbitrary timing for each information processing apparatus as a destination. The storage device is a disk array device, and the server stores server storage that can be accessed only from its own device after data is copied from the corresponding management server storage region to the server storage region that can be accessed only from its own device. A server that can be accessed only from its own device after monitoring that the disk that forms the area is disconnected from the disk that forms the management server storage area corresponding to the server storage area, and confirming that these disks have been disconnected It is preferable to acquire data from the storage area.

In order to achieve the above object, the present invention provides, as a fourth aspect, an information processing device belonging to the first network, an information processing device belonging to the second network, an information processing device belonging to the third network, 4 is a data exchange method for exchanging data with an information processing apparatus belonging to a network of 4, a first server connected to the first network and a second server connected to the second network. A server, a third server connected to a third network, a fourth server connected to a fourth network, and independent of any of the first, second, third and fourth networks The management server is accessible only from the first server, the first storage area accessible only from the first server, the second storage area accessible only from the second server, and the third server. A third storage area, a fourth storage area that can be accessed only from the fourth server, and a fifth storage area that can be accessed only from the management server and that is paired with the first, second, third, and fourth storage areas , 6th, 7th, and 8th storage areas connected to each other via fiber channel, and any of the first, second, third, and fourth servers belongs to another network The data to be transmitted to the processing device is received from the information processing device belonging to the same network as the own device, stored in the first, second, third or fourth storage area, and the first, second, third or fourth The storage server executes a process of copying the data stored in the storage area to the fifth, sixth, seventh, or eighth storage area that is paired therewith, and the management server executes the first, second, third Or a fifth paired with it from any of the fourth storage areas 6, the storage area of the seventh or eighth monitors that the data has been replicated, fifth, sixth, seventh and eighth replicated data in any of the storage area of the data delivery destination In the fifth, sixth, seventh or eighth storage area paired with the first, second, third or fourth storage area accessible only from the server connected to the network to which the information processing apparatus belongs. A process for copying data copied to the fifth, sixth, seventh, or eighth storage area to the first, second, third, or fourth storage area that is paired with the data is performed on the storage apparatus. is executed, the server monitors the data from the storage area constituting the same pair can be accessed only storage area from the own apparatus has been replicated, the data the device itself accessible storage area is duplicated The server retrieves data from the first, second, third or fourth storage area. Thus , the present invention provides a data exchange method characterized by transmitting to an information processing apparatus that is a delivery destination belonging to the same network as the own apparatus.

In the fourth aspect of the present invention, each server includes a first transmission data storage unit individually stored in each of the information processing apparatuses belonging to the first network to which data to be transmitted to a network different from the own apparatus is written. , Second transmission data storage means for storing data to be stored in the first, second, third or fourth storage area, each belonging to the same network as the own device to the first transmission data storage means It is preferable to copy the data written from the information processing device at an arbitrary timing to the second transmission data storage means at a predetermined timing. Each server has first received data storage means for storing data obtained from the first, second, third or fourth storage area accessible by the own device, and information belonging to the same network as the own device. Second received data storage means for storing data to be delivered to the processing apparatus for each destination information processing apparatus, and the second received data stored at the predetermined timing is stored in the first received data storage means. It is preferable that the data copied to the storage means and stored in the second received data storage means is transmitted at an arbitrary timing for each information processing apparatus as the destination. Further, the storage device is a disk array device, and the first, second, third, and fourth servers have copied data from a storage area that is paired with a storage area that is accessible only from the own apparatus. Monitor the disk forming the storage area accessible only from its own device from the disk forming the storage area that is paired with it, and after confirming that these disks have been disconnected, only from the own device It is preferable to obtain data from an accessible storage area.

In order to achieve the above object, the present invention provides, as a fifth aspect, transferring data acquired from an information processing apparatus belonging to a network to which the own apparatus belongs to an information processing apparatus belonging to a network to which another server belongs. Server storage area that can be accessed only from each of a plurality of servers including its own device and a plurality of management server memories that can be accessed only from a management server independent of any network and that correspond to each server storage area Data that is sent to an information processing device that belongs to the same network as the local device can be received and accessed only from the local device. Means for storing in the server storage area and data stored in the server storage area; It means for executing a process of replicating the management server storage area in the storage device, and means for monitoring that the data has been replicated from the management server storage area corresponding thereto to look accessible server storage area from the own apparatus, the own The present invention provides a server comprising means for transmitting data acquired from a server storage area accessible only from the apparatus to an information processing apparatus that is a delivery destination belonging to the same network as the own apparatus.

In the fifth aspect of the present invention, a first transmission data storage means provided separately for each information processing apparatus belonging to the same network as its own apparatus, in which data to be transmitted to another network is written, and a server Second transmission data storage means for storing data to be stored in the storage area, and data is sent to each of the first transmission data storage means from each information processing apparatus belonging to the same network as the own apparatus at an arbitrary timing. It is preferable that data is written and the data in the first transmission data storage means is copied to the second transmission data storage means at a predetermined timing. In addition, a first reception data storage unit that stores data obtained from the server storage area, and a second reception that stores, for each destination information processing device, data to be delivered to an information processing device belonging to the same network as the own device. The data stored in the first received data storage means is copied to the second received data storage means at a predetermined timing, and the data stored in the second received data storage means is It is preferable that the information is transmitted at an arbitrary timing for each information processing apparatus as a destination. Further, the storage device is a disk array device, and after the data is copied from the management server storage area corresponding to the server storage area accessible only from the own apparatus, a server storage area accessible only from the own apparatus is formed. Monitoring the disk that is to be separated from the disk that forms the management server storage area corresponding to the server storage area, and after confirming that these disks have been disconnected, from the server storage area that is accessible only from the local device It is preferable to acquire data.

In order to achieve the above object, as a sixth aspect, the present invention provides a management server for mediating data exchange between an information processing apparatus belonging to an independent network and an information processing apparatus belonging to another network. A storage device having a server storage area accessible only from each server provided for each network and a plurality of management server storage areas corresponding to each server storage area that can be accessed only from the own device. are connected by fiber channel, and means for monitoring that only one of the servers data to the management server storage area corresponding thereto from a server accessible storage area is duplicated, only one of servers is accessible the data is replicated to the management server storage area corresponding to the server storage area from the server storage area, other servers It means for copying the management server storage area corresponding to the observed accessible server storage area from, and means for executing a process to replicate the server storage area corresponding to the management server storage area of the copy destination the copied data to the storage device The management server characterized by having this.

In a sixth aspect of the present invention, only a predetermined type of data among the data is replicated in the management server storage area, it is preferable to copy the management server storage area corresponding to the other server storage area. Moreover, it is preferable to have a means for detecting whether or not a computer virus is included in data stored in a server storage area that can be accessed only by that server.

In order to achieve the above object, as a seventh aspect of the present invention, the server storage area accessible only from each of a plurality of servers including its own device and the management server independent from any network can be accessed only . Data acquired from an information processing device belonging to the network to which the device belongs to a substantive computer that controls a server connected by a fiber channel to a storage device having a plurality of management server storage regions corresponding to each server storage region Is a data exchange program for performing processing to transfer information to an information processing device belonging to a network to which another server belongs, and is a data exchange program for transmitting a substantial computer to an information processing device belonging to a network different from the own device Received from an information processing device belonging to the same network as its own device. And means for storing the Okaranomi server accessible storage area, and means for executing a process to replicate the data stored in the server storage area to the management server storage area corresponding to the server storage area in the storage device, the own device Means for monitoring that data has been copied from the management server storage area corresponding to the server storage area to the server storage area accessible only from the server, and the data acquired from the server storage area accessible only from the own apparatus The data exchange program is characterized by functioning as a means for transmitting to an information processing apparatus that is a delivery destination belonging to the same network.

In the seventh aspect of the present invention, the storage device is a disk array device,
A disk that forms a server storage area that can be accessed only from its own apparatus after data is copied from the corresponding management server storage area to a server storage area that can be accessed only from its own apparatus. Data is acquired from the server storage area that can be accessed only from the own device after confirming that these disks have been disconnected and means for monitoring the separation from the disks forming the management server storage area corresponding to the area It is preferable to function as a means.

To achieve the above object, the present invention provides, as an eighth aspect, in the server storage area accessible only from its own device and can be accessed only server storage area from each of the server provided for each network An information processing apparatus belonging to an independent network and an information processing apparatus belonging to another network, to a substantial computer that controls a management server connected by a fiber channel to a storage apparatus having a plurality of corresponding management server storage areas; Management program corresponding to a server storage area from a server storage area that can be accessed only by any one of the servers means for monitoring the data to the storage area is duplicated, one of server Migaa The data is replicated to the management server storage area corresponding to the server storage area from Seth a server storage area, and means for copying to other management server storage area corresponding to the observed accessible server storage area from another server An object of the present invention is to provide a data exchange program that causes a storage device to execute a process of copying copied data to a server storage area corresponding to a copy destination management server storage area .

  According to the present invention, a data exchange system and data exchange capable of exchanging data in real time and preventing unauthorized data transfer between two completely separated independent networks without requiring complicated manual work. A method, a server, a management server, and a data exchange program can be provided.

[Principle of the Invention]
In the present invention, a storage apparatus is provided between an information processing apparatus belonging to an open network and an information processing apparatus belonging to each of two or more closed networks. The storage device is provided with a storage area accessible only from an information processing device belonging to an open network and a storage area accessible only from each information processing device belonging to each closed network, and these are physically separated, Disables communication between protocols between networks. Data transfer between the storage areas is controlled by a control device independent of any network.

  As a result, even if a malicious person occupies an information processing apparatus belonging to an open network, it is impossible to illegally write data in a storage area accessible only from an information processing apparatus belonging to a closed network. That is, illegal data is not transferred from an open network to a closed network.

  Hereinafter, a preferred embodiment of the present invention based on the above principle will be described.

[First Embodiment]
A first embodiment in which the present invention is suitably implemented will be described. FIG. 1 shows a configuration of a data transmission system according to the present embodiment. The data transmission system includes a first server 10, a second server 20, a third server 30, a fourth server 40, a storage device 50, and a management server 60. Each server is connected to the storage apparatus 50 via a fiber channel.
The first server 10 is connected to the Internet LAN 100, and the second server 20 is connected to the in-house intranet LAN 200. The third server is connected to the Internet 2 LAN, and the fourth server is connected to the special business LAN. The LAN 100 for the Internet and the LAN 300 for the Internet 2 are open networks that can be accessed by an unspecified number of people from the outside, and the LAN 200 for in-house intranets and the LAN 400 for special businesses are closed networks that cannot be accessed from the outside. .

FIG. 2 shows the configuration of the first server 10. The first server 10 includes a data transfer control unit 11, a LAN communication unit 12, a transmission data storage unit 13, a reception data storage unit 14, and a fiber channel communication unit 15.
The data transfer control unit 11 is a substantial computer that controls operations related to data transfer in the first server 10. The data transfer control unit 11 is realized by the CPU or MPU developing control software stored in the ROM on the RAM and executing it. The LAN communication unit 12 is a functional unit for transmitting and receiving information via the Internet LAN 100. The transmission data storage unit 13 stores data to be transmitted to the second server 20. The reception data storage unit 14 stores data transmitted from the second server 20. The fiber channel communication unit 15 is a functional unit for transmitting and receiving information to and from the storage apparatus 50 via the fiber channel.

FIG. 3 shows the configuration of the second server 20. The second server 20 includes a data transfer control unit 21, a LAN communication unit 22, a transmission data storage unit 23, a reception data storage unit 24, and a fiber channel communication unit 25.
The data transfer control unit 21 is a substantial computer that controls operations related to data transfer in the second server 20. The data transfer control unit 21 is realized by the CPU or MPU developing control software stored in the ROM on the RAM and executing it. The LAN communication unit 22 is a functional unit for transmitting and receiving information via the in-house intranet LAN 200. The transmission data storage unit 23 stores data to be transmitted to the first server 10. The received data storage unit 24 stores data transmitted from the first server 10. The fiber channel communication unit 25 is a functional unit for transmitting and receiving information to and from the storage apparatus 50 via the fiber channel.

FIG. 4 shows the configuration of the third server 30. The third server 30 includes a data transfer control unit 31, a LAN communication unit 32, a transmission data storage unit 33, a reception data storage unit 34, and a fiber channel communication unit 35.
The data transfer control unit 31 is a substantial computer that controls operations related to data transfer in the third server 30. The data transfer control unit 31 is realized by the CPU or MPU developing control software stored in the ROM on the RAM and executing it. The LAN communication unit 32 is a functional unit for transmitting and receiving information via the Internet 2 LAN 300. The transmission data storage unit 33 stores data to be transmitted to the fourth server 40. The reception data storage unit 34 stores data transmitted from the fourth server 40. The fiber channel communication unit 35 is a functional unit for transmitting and receiving information to and from the storage apparatus 50 via the fiber channel.

FIG. 5 shows the configuration of the fourth server 40. The fourth server 40 includes a data transfer control unit 41, a LAN communication unit 42, a transmission data storage unit 43, a reception data storage unit 44, and a fiber channel communication unit 45.
The data transfer control unit 41 is a substantial computer that controls operations related to data transfer in the second server 40. The data transfer control unit 41 is realized by the CPU or MPU developing control software stored in the ROM on the RAM and executing it. The LAN communication unit 42 is a functional unit for transmitting and receiving information via the special business LAN 400 . The transmission data storage unit 43 stores data to be transmitted to the third server 10. The reception data storage unit 44 stores data transmitted from the third server 30. The fiber channel communication unit 25 is a functional unit for transmitting and receiving information to and from the storage apparatus 50 via the fiber channel.

FIG. 6 shows the configuration of the storage device 50 and the management server 60. The storage device 50 includes first to sixteenth disk array devices 501 to 516 and fiber channel communication units 59a to 59e. In the first disk array device 501, the information transferred from the first server 10 via the fiber channel is written. In the second disk array device 502, data stored in the first disk array device 501 is replicated in accordance with control from the first server 10. In the third disk array device 503, the data stored in the second disk array device 502 is copied by the management server 60. In the fourth disk array device 504, data stored in the third disk array device 503 is replicated according to control from the management server 60 . In the fifth disk array device 505, information transferred from the second server 20 via the fiber channel is written. In the sixth disk array device 506, the data stored in the fifth disk array device 505 is replicated according to the control from the second server 20. In the seventh disk array device 507, the data stored in the sixth disk array device 506 is copied by the management server 60. In the eighth disk array device 508, data stored in the seventh disk array device 507 is replicated in accordance with control from the management server 60 .
In the ninth disk array device 509, information transferred from the third server 30 via the fiber channel is written. In the tenth disk array device 510, the data stored in the ninth disk array device 509 is replicated according to the control from the third server 30. In the eleventh disk array device 511, the data stored in the tenth disk array device 510 is copied by the management server 60. In the twelfth disk array device 512, data stored in the eleventh disk array device 511 is replicated in accordance with control from the management server 60 . In the thirteenth disk array device 513, information transferred from the fourth server 40 via the fiber channel is written. In the fourteenth disk array device 514, data stored in the thirteenth disk array device 513 is replicated in accordance with control from the fourth server 40. In the fifteenth disk array device 515, data stored in the fourteenth disk array device 514 is copied by the management server 60. In the sixteenth disk array device 516, the data stored in the fifteenth disk array device 515 is replicated in accordance with control from the management server 60 .

  The fiber channel communication units 59a to 59e are functional units for communicating with each of the first server 10, the second server 20, the third server 30, the fourth server 40, and the management server 60 via the fiber channel. It is.

The management server 60 includes the data transfer control unit 61, the 及 beauty Fiber Channel communication unit 63.
The data transfer control unit 61 is a substantial computer that controls operations related to data transfer in the management server 60. The data transfer control unit 61 is realized by the CPU or MPU developing control software stored in the ROM on the RAM and executing it. The fiber channel communication unit 63 is a functional unit for transmitting and receiving data and control commands to and from the storage apparatus 30 via the fiber channel.

  Access restriction is applied to each of the first to sixteenth disk array devices 501 to 516, and only the first server 10 is in the first disk array device 501 and the eighth disk array device 508. The second, third, sixth, seventh, tenth, eleventh, fourteenth and fifteenth disk array devices 502, 503, 506, 507, 510, 511, 514 and 515 are only the management server 60. The fourth disk array device 504 and the fifth disk array device 505 are only the second server 20, and the ninth disk array device 509 and the sixteenth disk array device 516 are only the third server 30. Only the fourth server 40 can access the twelfth disk array device 512 and the thirteenth disk array device 513.

  Further, the first disk array device 501 and the second disk array device 502 constitute a pair, the first disk array device 501 is a master volume (MV), the second disk array device 502 is a replication volume ( RV). Similarly, the third disk array device 503 and the fourth disk array device 504 form a pair, where the third disk array device 503 is MV and the fourth disk array device 504 is RV. The fifth disk array device 505 and the sixth disk array device 506 are a pair in which the fifth disk array device 505 is MV and the sixth disk array device 506 is RV. The seventh disk array device 507 and the eighth disk array device 508 are a pair in which the seventh disk array device 507 is MV and the eighth disk array device 508 is RV. Similarly, the ninth disk array device 509 and the tenth disk array device 510 are a pair in which the ninth disk array device 509 is MV and the tenth disk array device 510 is RV. The eleventh disk array device 511 and the twelfth disk array device 512 are a pair in which the eleventh disk array device 511 is MV and the twelfth disk array device 512 is RV. The thirteenth disk array device 513 and the fourteenth disk array device 514 are a pair in which the thirteenth disk array device 513 is MV and the fourteenth disk array device 514 is RV. The fifteenth disk array device 515 and the sixteenth disk array device 516 are a pair in which the fifteenth disk array device 515 is MV and the sixteenth disk array device 516 is RV.

The operation of the data exchange system will be described by taking as an example the case where data transmitted from an information processing terminal on the Internet (not shown) is sent to an information processing device (not shown) on the in-house intranet LAN 200 . 7 to 10 show the operation flow of the data exchange system. FIG. 11 shows an example of the setting state of the first server of the data exchange system according to the present embodiment.

The data transfer control unit 11 of the first server 10 stores a setting file. The configuration file includes a “network ID” that uniquely indicates the network to which the server belongs, a “transmission drive” that indicates in which storage area data to be transferred to another server is written, and the same network as the server "Reception drive" indicating from which storage area of the storage device 30 the data addressed to the information processing terminal belongs to. In the illustrated example, the network ID of the Internet LAN 100 is “INTERNET1”, and the first server 10 is assigned a drive with a volume label “P” as a transmission drive and a drive with a volume label “Q” as a reception drive. ing.
The data transfer control unit 11 stores a parameter group for specifying the type and destination of data to be transferred to another server. The parameter group includes a “data ID” uniquely indicating a data transfer condition, a “path” indicating a data recording position (directory) in the transmission data storage unit 13, and a data recording location in the destination server. The “destination path” shown is included. For example, the transfer condition of DATA_A is that the data existing in the directory specified by the path “D \ DataEx \ send_a” in the transmission data storage unit 13 is transferred by the path “D \ DataEx \ recv_a” of the server on the receiving side. Indicates transfer to the specified directory.

FIG. 12 shows the setting state of the management server 60. The data transfer control unit 61 of the management server 60 is transferred from each network with “storage information” indicating how each disk array device of the storage device 50 is allocated to each network. "Relay information" indicating to which network the data is transferred is stored.
The storage information includes a “reception drive” that represents an area in which data acquired from a server belonging to each network is written, and a “transmission drive” that records data to be output to the server belonging to each network. For example, data acquired from a network having a network ID of “INTERNET1” (that is, from the first server 10) is written to a disk array device having a volume label of P, and to this network (that is, the first server 10). F) The output data is written to the disk array device with the volume label Q.
The relay information represents a correspondence between a combination of a network ID and a data ID of a network serving as a data transmission source and a network ID of a network serving as a data reception destination.
For example, if the network ID of the network that is the data transmission source is “INTERNET1” and the data ID is “DATA_A”, the network ID is transferred to the network that is “INTRA1”.

  Data from an information processing terminal (not shown) belonging to the Internet LAN 100 is stored in the transmission data storage unit 13 according to the data ID. At this time, the data transfer control unit 11 outputs “destination path” to the working directory (TEMP) below the directory indicated by “path”. Further, the data transfer control unit 11 copies the data in the transmission data storage unit 13 to the work directory.

First, the part controlled by the first server 10 in the data transfer operation will be described. FIG. 7 shows a flow of operations controlled by the first server 10 among the data transfer operations.
The data transfer control unit 11 accesses the storage apparatus 50 using the fiber channel communication unit 15 at predetermined time intervals (Yes in step S101), and connects the first server 10 to the first disk array apparatus 501 ( Mount) (step S102). When the connection between the first server and the first disk array device 501 is established, the data transfer control unit 11 transfers (saves) the data stored in the transmission data storage unit 13 to the first disk array device 501. Then, an archive file is created (step S103). As shown in FIG. 13, the data ID and the creation date / time are assigned as the file name to the archive file created at this time. By including the creation date and time in the file name, even if untransferred data remains in the first disk array device, the data is not overwritten with other data and lost.

Next, the data transfer control device 11 sends an instruction to the first disk array device 501 and the second disk array device 502, and the data stored in the first disk array device 501 is sent to the second disk array device 501. to the array device 502 Ru is duplicated (replicated) (step S104). Next, the data transfer control unit 11 writes the memory information of the first server 10 and releases (unmounts) the connection between the first server 10 and the first disk array device 501 (step S105). Further, the data transfer control unit 11 separates (separates) the first disk array device 501 and the second disk array device 502 (step S106).
The data replicated to the second disk array device 502 is restored (restored) to another storage area in the second disk array device 505.

An operation controlled by the management server 60 among the data transfer operations will be described. 8 and 9 show the flow of operations controlled by the management server 60 among the data transfer operations.
The data transfer control unit 61 monitors the data stored in the first disk array device 501 being replicated to the second disk array device 502 (step S201). When it is confirmed that the data stored in the first disk array device 501 has been copied to the second disk array device 502 (Yes in step S201), the data transfer control unit 61 determines that the first disk array device 501 And the second disk array device 502 are monitored (step S202). When the first disk array device 501 and the second disk array device 502 are disconnected (step S202 / Yes), the data transfer control unit 61 connects (mounts) the second disk array device 502 and the management server 60. (Step S203).

When the mounting with the second disk array device 502 is completed, the management server 50 refers to the data restored to another storage area in the second disk array device 502, and specifies the data transfer destination network. (Step S204). Thereby, as shown in FIG. 14, the copy destination of the data from the second disk array device can be determined as any one of the third, eleventh and fifteenth disk arrays. Here, since the transmission source network ID is “INTERNET1” and the data ID is “DATA_A”, “INTRA1” is acquired as the transmission destination network ID by referring to the relay information based on these, and the transfer destination network Is identified as the LAN 200 for in-house intranet. In the following description, it is assumed that the data transfer destination is the in-house intranet LAN 200 (in other words, the second server 20 ).

  Thereafter, the data transfer control unit 61 connects (mounts) the management server 60 and the third disk array device 503 (step S205). The data transfer control unit 61 copies the data in the second disk array device 502 to the third disk array device 503 (step S206).

When the data stored in the second disk array device 502 has been copied to the third disk array device 503, the data transfer control unit 61 writes out the memory information of the management server 60 and the management server 60 and the second disk array device 503. The disk array device 502 is disconnected (unmounted) (step S207). When the connection between the management server 60 and the second disk array device 502 is disconnected, the data transfer control unit 61 sends an instruction to the third disk array device 503 and the fourth disk array device 504 to send the third disk replicating the information stored in the array device 503 in the fourth disk array device 504 causes (replicates) (step S208).
Once the fourth replicate the completion of data to the disk array device 504, the data transfer control unit 61, writes the memory information in the management server 60, disconnect the management server 60 and the third disk array device 50 3 ( Unmount) (step S209). The management server 60 and the After third Unmount the disk array device 50 3, the data transfer control unit 61 includes a third disk array device 503 disconnects the fourth disk array device 504 (separate) (Step S210) .

Of the data transfer operations, operations performed under the control of the second server 20 will be described. FIG. 10 shows a flow of an operation performed by the control of the second server 20 in the data transfer operation.
In the second server, the data transfer control unit 21 monitors the data of the third disk array device 503 being replicated to the fourth disk array device 504 (step S301). When the data stored in the third disk array device 503 is replicated to the fourth disk array device 504 (Yes in step S301), the data transfer control unit 21 connects the third disk array device 503 and the fourth disk array device 503 to the fourth disk array device 504. It is monitored that the disk array device 504 is disconnected (step S302).
When the third disk array device 503 and the fourth disk array device 504 are disconnected (step S302 / Yes), the data transfer control unit 21 writes the memory information, and the second server 20 and the fourth disk The connection with the array device 504 is released (step S303). After releasing the connection between the second server 20 and the fourth disk array device 504, the data transfer control unit 21 connects (mounts) the second server 20 and the fourth disk array device 504 (step). S304). Thereafter, the data stored in the fourth disk array device 504 is restored on a memory (not shown) to obtain the “destination path” in the archive file. Then, as shown in FIG. 15, the archive file is restored to the directory indicated by the destination path in the received data storage unit 24 (step S305). Further, the data transfer control unit 21 writes the memory information and disconnects (unmounts) the second server 20 and the fourth disk array device 504 (step S306).

  The data transfer control unit 21 sends the data stored in the received data storage unit 24 to the in-house intranet LAN 200 using the LAN communication unit 22. Thus, the data is sent to the destination information processing terminal based on the header information.

When data sent from an information processing terminal (not shown) on the in-house intranet LAN 200 is sent to an information processing terminal on the Internet (not shown), the fifth to eighth disk array devices 505 to 508 are used. The reverse operation is performed.
Similarly, when data transmitted from an information processing terminal belonging to the LAN 2 for the Internet 2 is transferred to an information processing terminal belonging to the LAN 400 for special business, the above-described ninth to twelfth disk array devices 509 to 512 are used. A similar operation is performed.
Further, when transferring data transmitted from the information processing terminal belonging to the special business LAN 400 to the information processing terminal belonging to the Internet 2 LAN 300, the above-described operations are performed using the thirteenth to sixteenth disk array devices 513 to 516. The reverse operation is performed.
As described above, the data transfer control unit 61 assigns the data of which disk array device to which disk array according to the network to which the information processing terminal as the data transfer source belongs and the network to which the information processing terminal as the data transfer destination belongs. Change whether to copy to the device.

As shown in FIG. 16, the first server 10 may include a transmission data individual storage unit 13a and a reception data individual storage unit 14a. In the transmission data individual storage unit 13a, data transmitted from each information processing apparatus belonging to the Internet LAN 100 to the information processing apparatus belonging to the in-house intranet LAN 200 is stored for each information processing apparatus that is a transmission source. The data stored in the transmission data individual storage unit 13a is copied to the transmission data storage unit 13 at individual timings in each information processing apparatus. In addition, in the received data individual storage unit 14a, data transmitted from each information processing device belonging to the in-house intranet LAN 200 to the information processing device belonging to the Internet LAN 100 is stored for each information processing device that is a destination. The data stored in the reception data storage unit 14 is copied to the reception data individual storage unit 14a at individual timings in each information processing apparatus.
With such a configuration, data can be transferred to each information processing apparatus from the Internet LAN 100 side to the in-house intranet LAN 200 side at an individual timing.
Here, the first server 10 has a configuration including the transmission data individual storage unit 13a and the reception data individual storage unit 14a as an example, but a configuration including only one of them is also possible. Needless to say, the second server 20 may have the same configuration.

  The data exchange system according to the present embodiment is between an information processing apparatus on an open network (Internet LAN 100 or Internet 2 LAN 300) and an information processing apparatus on a closed network (in-house intranet LAN 200 or special business LAN 400). Data can be exchanged promptly without human intervention. That is, since the data exchange system according to the present embodiment is excellent in real-time data exchange, the data received from the outside via the open network is transferred to the closed network side and received by the information processing terminal on the closed network. Is possible.

  A storage device, which is an intermediate device between an open network and a closed network, is connected to an information processing device belonging to each network by a direct connection method such as Fiber Channel, and communication between the information processing device and the storage device does not use IP. Do. Thereby, it is possible to prevent an information processing apparatus on the open network from being illegally accessed by the information processing apparatus on the closed network.

  In addition, data movement between the disk array device accessible from the open network side and the disk array device accessible only from the closed network side is performed by a management server physically independent from the open network. For this reason, even if the information processing apparatus on the open network side is occupied by a malicious one, the disk array apparatus on the closed network side cannot be accessed. In addition, data cannot be copied to the disk array device on the closed network side. That is, it is possible to prevent data stored in the information processing apparatus belonging to the closed network from being falsified.

  A management device that controls data copying between an information storage area accessible from an information processing apparatus belonging to an open network and an information storage area accessible from an information processing apparatus belonging to a closed network is independent of any network. Therefore, it is impossible for a malicious person to illegally occupy this via an open network.

  In addition, since data can be transferred from a closed network to another closed network without going through an open network, it is possible to safely transfer confidential data.

[Second Embodiment]
A second embodiment in which the present invention is suitably implemented will be described. The configuration of the data transfer system according to this embodiment is the same as that of the first embodiment shown in FIG. However, in the present embodiment, the configuration of the management server 60 is different.

  FIG. 17 shows the configuration of the management server 60. In the present embodiment, the management server 60 further includes anti-virus software 62. The antivirus software 62 is stored in the data stored in the second disk array device 502, the sixth disk array device 506, the orange 10 disk array device 510 or the fourteenth disk array device 514 in the storage device 50. Is monitored using the fiber channel communication unit 63. If a computer virus is included, the antivirus software 62 deletes the data.

A flow of data transfer operation in the data transfer system according to the present embodiment will be described.
The control operation by the first server 10 is the same as that of the first embodiment.
The flow of the data transfer control operation by the management server 60 in this embodiment is shown in FIG. In this embodiment, after the management server 60 and the second disk array device 502 are mounted (after step S204), the data replicated in the second disk array device 502 is restored to another area (step S211). Then, it is checked using the antivirus SW 62 whether or not the computer virus is included in the data replicated from the first disk array device 501 (step S212). After confirming that the archive file stored in the second disk array device 502 does not contain a computer virus, the data transfer control unit 61 writes out memory information in the management server 60 and manages it. The connection between the server 60 and the third disk array device 503 is released (unmounted) (step S205).
Since the subsequent control of the data transfer operation by the management server 60 and the control of the data transfer operation by the second server 20 are the same as those in the first embodiment, the description thereof is omitted.

As in the data transfer system according to the first embodiment, the data transfer system according to the present embodiment prevents information from being illegally transferred from an open network to a closed network, and information belonging to the closed network. Data stored in the processing device can be prevented from being falsified.
Furthermore, even if data including a computer virus is transferred from an information processing apparatus on the open network side operated by a non-malicious person, it can be prevented from entering the closed network side.

[Third Embodiment]
A third embodiment in which the present invention is preferably implemented will be described. The configuration of the data transfer system according to this embodiment is the same as that of the first embodiment shown in FIG. The configuration of the management server 40 is the same as that of the second embodiment.
However, as shown in FIG. 19, the transfer condition stored in the transfer control unit 11 of the first server 10 includes a parameter “selected file” indicating the type of data to be transferred.
As in the first embodiment, data from an information processing terminal (not shown) belonging to the Internet LAN 100 is stored in the transmission data storage unit 13 in accordance with the data ID. “Destination path” is output to the working directory (TEMP) below the directory indicated by. The data transfer control unit 11 writes only the data specified by the “selected file” in the working directory.

  As shown in FIG. 20, the “relay information” stored in the management server 60 also includes a parameter “selected file”. FIG. 21 shows a flow of data transfer control operation by the management server 60 in the present embodiment. The flow of this operation is almost the same as that in the second embodiment, but when the data stored in the second disk array device 502 is copied to the third disk array device 503, the data transfer control unit 61 Copies only the data with the extension “.dir” or “.txt” based on the relay information that meets the conditions of the source network ID = “INTERNET1” and the data ID = “DATA_A” (step S207). ').

  In this embodiment, since the management device monitors the type of data transferred from the closed network to the open network, data that is prohibited from being transferred (such as confidential data) will not flow out to the open network side. Absent. Since the management device is independent of any network, it is not possible for a malicious person to illegally access this via a closed network and to illegally transfer data that would otherwise be prohibited. Is possible.

In addition, the said embodiment is an example of suitable implementation of this invention, and this invention is not limited to this.
For example, in the above-described embodiment, the configuration in which the server on the open network side and the server on the closed network side and the storage device are connected by the fiber channel has been described as an example. However, these are always in compliance with the fiber channel standard. There is no need.
Further, the storage device is not limited to the disk array device, and any information storage device can be applied.
As described above, the present invention can be variously modified.

It is a figure which shows the structure of the data exchange system concerning 1st Embodiment which implemented this invention suitably. It is a figure which shows the structure of the 1st server of the data exchange system concerning 1st Embodiment. It is a figure which shows the structure of the 2nd server of the data exchange system concerning 1st Embodiment. It is a figure which shows the structure of the 3rd server of the data exchange system concerning 1st Embodiment. It is a figure which shows the structure of the 4th server of the data exchange system concerning 1st Embodiment. It is a figure which shows the structure of the storage apparatus and management server of the data exchange system which concern on 1st Embodiment. It is a flowchart which shows the flow of the data transfer operation | movement by the 1st server of the data exchange system which concerns on 1st Embodiment. It is a figure which shows the flow of the data transfer operation | movement by the management server of the data exchange system which concerns on 1st Embodiment. It is a figure which shows the flow of the data transfer operation | movement by the management server of the data exchange system which concerns on 1st Embodiment. It is a figure which shows the flow of the data transfer operation | movement by the 2nd server of the data exchange system which concerns on 1st Embodiment. It is a figure which shows the flow of the data in the 1st server of the data exchange system concerning 1st Embodiment. It is a figure which shows the setting of the management server of the data exchange system concerning 1st Embodiment. It is a figure which shows the flow of the data inside the storage apparatus of the data exchange system concerning 1st Embodiment. It is a figure which shows the flow of the data inside the storage apparatus of the data exchange system concerning 1st Embodiment. It is a figure which shows the flow of the data inside the 2nd server of the data exchange system concerning 1st Embodiment. It is a figure which shows another example of a structure of the 1st server applied to the data exchange system concerning 1st Embodiment. It is a figure which shows the structure of the management server of the data exchange system concerning 2nd Embodiment which implemented this invention suitably. It is a flowchart which shows the flow of the data transfer operation | movement by the management server of the data exchange system concerning 2nd Embodiment. It is a figure which shows the setting of the 1st server of the data exchange system concerning 3rd Embodiment which implemented this invention suitably. It is a figure which shows the setting of the management server of the data exchange system concerning 3rd Embodiment. It is a flowchart which shows the flow of the data transfer operation | movement by the management server of the data exchange system concerning 3rd Embodiment which implemented this invention suitably. It is a figure which shows the structure of the conventional data exchange system using a tape apparatus.

Explanation of symbols

10 First server 11, 21, 31, 41, 61 Data transfer control unit 12, 22, 32, 42 LAN communication unit 13, 23, 33, 43 Transmission data storage unit 14, 24, 34, 44 Reception data storage unit 15, 25, 35, 45, 59a, 59b, 59c, 59d, 59e Fiber Channel communication unit 20 Second server 30 Third server 40 Fourth server 50 Storage device 60 Management server 62 Antivirus software 100 Internet LAN
200 Intranet LAN
300 LAN for Internet 2
400 Special business LAN
501 First disk array device 502 Second disk array device 503 Third disk array device 504 Fourth disk array device 505 Fifth disk array device 506 Sixth disk array device 507 Seventh disk array device 508 Eighth disk array device 509 Ninth disk array device 510 Tenth disk array device 511 Eleventh disk array device 512 Twelfth disk array device 513 Thirteenth disk array device 514 Fourteenth disk array device 515 First 15 disk array devices 516 16th disk array device

Claims (40)

A data exchange system for exchanging data between an information processing device belonging to an independent network and an information processing device belonging to another network,
The servers belonging to each of the networks and the management server independent of any network are a server storage area accessible only from each of the servers and an access from only the management server to the server storage areas. It is connected to a storage device with a plurality of corresponding management server storage areas via Fiber Channel,
Each server receives data to be transmitted to an information processing device belonging to a network different from the own device from an information processing device belonging to the same network as the own device, and stores the data in a server storage area accessible only from the own device; Means for causing the storage apparatus to execute processing for copying the data stored in the server storage area to the management server storage area corresponding to the server storage area, and corresponding to the server storage area accessible only from the own apparatus Means for monitoring that data has been replicated from the management server storage area, and the data acquired from the server storage area accessible only from the own apparatus to an information processing apparatus as a delivery destination belonging to the same network as the own apparatus Means for transmitting,
The management server, the management server to the storage area and means for monitoring that the data has been replicated, either the server only server access to only one the server of the corresponding from a server accessible storage area the management server stores the replicated data to the area, means for copying to another of the management server storage area corresponding to the observed accessible server storage area from another server corresponding to the server storage area from a server storage area And a means for causing the storage apparatus to execute a process of copying the copied data to the server storage area corresponding to the copy destination management server storage area . Each of the servers includes a first transmission data storage unit that is individual to each of the information processing apparatuses belonging to the same network as the own apparatus in which data to be transmitted to another network is written,
Second transmission data storage means for storing data to be stored in the server storage area,
Data is written into the first transmission data storage means from each information processing device at an arbitrary timing, and the data in the first transmission data storage means is sent to the second transmission data storage means at a predetermined timing. The data exchange system according to claim 1, wherein the data exchange system is copied. Each server stores, for each destination information processing device, first received data storage means for storing data obtained from the server storage area and data to be delivered to an information processing device belonging to the same network as the own device. Second received data storage means;
The data stored in the first received data storage means is copied to the second received data storage means at a predetermined timing, and the data stored in the second received data storage means is the destination information. 3. The data exchange system according to claim 1, wherein the data exchange system is transmitted at an arbitrary timing for each processing device.   4. The data exchange system according to claim 1, wherein the storage device is a disk array device. The server has a disk that forms the server storage area accessible only from the own apparatus after data is copied from the management server storage area corresponding to the server storage area accessible only from the own apparatus. Monitors the detachment from the disks forming the management server storage area corresponding to the storage area, and after confirming that these disks have been disconnected, obtains data from the server storage area accessible only from the local device 5. The data exchange system according to claim 4, wherein The management server according to claim 1, characterized in that copy only predetermined format data of the replicated data before SL management server storage area, the management server storage area corresponding to the other of the server storage area 6. The data exchange system according to any one of items 1 to 5 . The said management server has a means to detect whether the computer virus is contained in the data memorize | stored in the server storage area which only the server can access by any of the said servers. The data exchange system according to any one of claims 1 to 6 . At least one of said each network, any one data exchange system as claimed in claim 1 7, characterized in that the open network. Data for exchanging data among information processing devices belonging to the first network, information processing devices belonging to the second network, information processing devices belonging to the third network, and information processing devices belonging to the fourth network An exchange system,
A first server connected to the first network; a second server connected to the second network; a third server connected to the third network; and the fourth network. A fourth server connected to the management server and a management server independent of any of the first, second, third and fourth networks are a first storage area accessible only from the first server A second storage area accessible only from the second server, a third storage area accessible only from the third server, and a fourth storage accessible only from the fourth server A storage apparatus comprising: an area; and fifth, sixth, seventh, and eighth storage areas that are accessible only from the management server and that are paired with the first, second, third, and fourth storage areas Each fiber channel Are connected to Le,
The first server receives data to be transmitted to an information processing apparatus belonging to another network from the information processing apparatus belonging to the first network and stores the data in the first storage area; and the first storage Means for causing the storage apparatus to execute processing for copying data stored in the area to the fifth storage area, and monitoring that data has been copied from the fifth storage area to the first storage area a means and, a pre-Symbol first means for transmitting data acquired from the storage area to the information processing apparatus belonging to the first network is a delivery destination,
The second server receives data from the information processing apparatus belonging to the second network and stores the data to be output to the information processing apparatus belonging to another network in the second storage area; and the second storage Means for causing the storage device to execute processing for copying data stored in the area to the sixth storage area, and monitoring that data has been copied from the sixth storage area to the second storage area a means and, a front Stories second means for transmitting data acquired from the storage area to the information processing apparatus belonging to the second network is a delivery destination,
The third server receives data from the information processing apparatus belonging to the third network and stores the data to be output to the information processing apparatus belonging to another network in the third storage area; and the third storage Means for causing the storage apparatus to execute processing for copying data stored in the area to the seventh storage area, and monitoring that data has been copied from the seventh storage area to the third storage area and means for transmitting and means, Previous Symbol third the third data obtained from the storage area is a delivery destination of the information processing apparatus belonging to the network,
The fourth server includes means for receiving data to be output to an information processing apparatus belonging to another network from the information processing apparatus belonging to the fourth network and storing the data in the fourth storage area; and the fourth storage Means for causing the storage apparatus to execute processing for copying data stored in the area to the eighth storage area, and monitoring that data has been copied from the eighth storage area to the fourth storage area a means and, a pre-Symbol fourth means for transmitting the data obtained from the storage area to the information processing apparatus belonging to the fourth network is delivered destination,
The management server confirms that data has been copied from any of the first, second, third, or fourth storage areas to the fifth, sixth, seventh, or eighth storage areas that are paired therewith. means for monitoring, prior Symbol fifth, sixth, the replicated data in any storage area of the seventh and eighth means for copying to another one of the storage areas of these, the first Data copied to any of the fifth, sixth, seventh, and eighth storage areas is transferred to any one of the first, second, third, and fourth storage areas that form a pair with the copy destination storage area. A data exchange system comprising: means for causing the storage apparatus to execute a process for copying . The first server includes individual first transmission data storage means for each of the information processing apparatuses belonging to the first network to which data to be transmitted to the second, third, or fourth network is written;
Second transmission data storage means for storing data to be stored in the first storage area;
Data is written to the first transmission data storage means from each information processing device belonging to the first network at an arbitrary timing, and the data in the first transmission data storage means is the second data at a predetermined timing. 10. The data exchange system according to claim 9 , wherein said data exchange system is copied to said transmission data storage means. The second server includes a third transmission data storage unit individually stored in each of the information processing apparatuses belonging to the second network to which data to be transmitted to the first, third, or fourth network is written.
And fourth transmission data storage means for storing data to be stored in the second storage area,
Data is written to the third transmission data storage means from each information processing device belonging to the second network at an arbitrary timing, and the data in the third transmission data storage means is the fourth data at a predetermined timing. data exchange system according to claim 9 or 10, wherein copied it into the transmission data storage means. The third server includes a fifth transmission data storage unit individually stored in each of the information processing apparatuses belonging to the third network in which data to be transmitted to the first, second, or fourth network is written.
Sixth transmission data storage means for storing data to be stored in the third storage area;
Data is written to the fifth transmission data storage means from each information processing device belonging to the third network at an arbitrary timing, and the data in the fifth transmission data storage means is written to the sixth transmission data at a predetermined timing. The data exchange system according to any one of claims 9 to 11 , wherein the data exchange system is copied to the transmission data storage means. The fourth server includes a seventh transmission data storage unit individually stored in each of the information processing apparatuses belonging to the fourth network in which data to be transmitted to the first, second, or third network is written.
And eighth transmission data storage means for storing data to be stored in the fourth storage area,
Data is written to the seventh transmission data storage means from each information processing apparatus belonging to the fourth network at an arbitrary timing, and the data in the seventh transmission data storage means is the eighth transmission data at a predetermined timing. The data exchange system according to any one of claims 9 to 12 , wherein the data exchange system is copied to the transmission data storage means. The first server includes a first received data storage means for storing data obtained from the first storage area, and data to be delivered to an information processing apparatus belonging to the first network. Second received data storage means for storing each
The data stored in the first received data storage means is copied to the second received data storage means at a predetermined timing, and the data stored in the second received data storage means is the destination information. The data exchange system according to any one of claims 9 to 13 , wherein the data exchange system is transmitted at an arbitrary timing for each processing device. The second server includes third received data storage means for storing data obtained from the second storage area, and data to be delivered to an information processing apparatus belonging to the second network for each destination information processing apparatus. And fourth received data storage means for storing
The data stored in the third received data storage means is copied to the fourth received data storage means at a predetermined timing, and the data stored in the fourth received data storage means is the destination information. The data exchange system according to any one of claims 9 to 14 , wherein the data exchange system is transmitted at an arbitrary timing for each processing device. The third server includes fifth received data storage means for storing data obtained from the third storage area, and data to be delivered to an information processing apparatus belonging to the third network for each destination information processing apparatus. And sixth received data storage means for storing
The data stored in the fifth received data storage means is copied to the sixth received data storage means at a predetermined timing, and the data stored in the sixth received data storage means is the destination information. The data exchange system according to any one of claims 9 to 15 , wherein the data exchange system is transmitted at an arbitrary timing for each processing device. The fourth server includes seventh received data storage means for storing data obtained from the fourth storage area, and data to be delivered to the information processing apparatus belonging to the fourth network for each destination information processing apparatus. And 8th received data storage means for storing
The data stored in the seventh received data storage means is copied to the eighth received data storage means at a predetermined timing, and the data stored in the eighth received data storage means is the destination information. The data exchange system according to any one of claims 9 to 16 , wherein the data exchange system is transmitted at an arbitrary timing for each processing device. Wherein the storage device, the data exchange system according to any one of claims 9 to 17, characterized in that it is a disk array device. The first server, the second server, the third server, and the fourth server store a storage area that is accessible only from the own apparatus after data is copied from the storage area that is paired with the storage area that is accessible only from the own apparatus. Monitor the disk that is to be separated from the disk that forms the storage area that is paired with it, and after confirming that these disks have been disconnected, obtain data from the storage area that is accessible only from the local device. The data exchange system according to claim 18. The management server stores only data of a predetermined format among the data copied to any of the fifth, sixth, seventh, and eighth storage areas, the fifth, sixth, seventh, and eighth. The data exchange system according to any one of claims 9 to 19 , wherein the data is copied to any one of the other storage areas. The management server claim 9, characterized in that it comprises means for detecting whether only the server is included a computer virus in the data that is to be stored in a storage area accessible by either the server 20 The data exchange system according to any one of the above. The data exchange system according to any one of claims 9 to 21 , wherein at least one of the networks is an open network. A data exchange method for exchanging data between an information processing device belonging to an independent network and an information processing device belonging to another network,
A server belonging to each of said each network, and a management server which also independent of any network, the said respective server storage area accessible only from the management server and can be accessed only server storage area from each of the servers Connect to a storage device with multiple management server storage areas with Fiber Channel,
Each server receives data to be transmitted to an information processing device belonging to a network different from the own device from an information processing device belonging to the same network as the own device, and stores the data in a server storage area accessible only from the own device. Causing the storage device to execute a process of copying the data stored in the storage area to the management server storage area corresponding to the server storage area;
The management server, one of the monitors that data to the management server storage area only server corresponding from a server accessible storage area is duplicated, the server storage from one of the servers storage area Data copied to the management server storage area corresponding to the area is copied to another management server storage area corresponding to a server storage area accessible only from other servers, and the copied data is managed as a copy destination Causing the storage apparatus to execute a process of copying to the server storage area corresponding to the server storage area;
Wherein each server, the management data from the server storage area monitors the replicated, the data the device itself to the server storage area accessible corresponding thereto into accessible only the server storage area from the own apparatus data exchange method but the server are replicated, before Symbol acquires data from the server storage area, and transmits its own device to the information processing apparatus is a delivery destination belong to the same network. A first transmission data storage means for each of the information processing devices belonging to the first network, in which data to be transmitted to each of the servers is transmitted to a network different from the own device;
Second transmission data storage means for storing data to be stored in the first storage area;
Copying data written at arbitrary timing from each information processing device belonging to the same network to the first transmission data storage means to the second transmission data storage means at a predetermined timing; 23. A data exchange method according to claim 22, wherein Each server receives a first received data storage means for storing data obtained from a server storage area accessible by the own device, and data to be sent to an information processing device belonging to the same network as the own device. Second received data storage means for storing each information processing device,
For each information processing apparatus that is a destination, the data stored in the first received data storage means is copied to the second received data storage means at a predetermined timing, and the data stored in the second received data storage means is the destination. The data exchange method according to claim 23 or 24 , wherein the data is transmitted at an arbitrary timing. The storage device is a disk array device,
The server is configured such that a disk that forms the server storage area accessible only from the own apparatus after data is copied from the management server storage area corresponding to the server storage area accessible only from the own apparatus. Monitors the detachment from the disks forming the management server storage area corresponding to the storage area, and after confirming that these disks have been disconnected, obtains data from the server storage area accessible only from the local device The data exchange method according to any one of claims 23 to 25, wherein: Data for exchanging data among information processing devices belonging to the first network, information processing devices belonging to the second network, information processing devices belonging to the third network, and information processing devices belonging to the fourth network An exchange method,
A first server connected to the first network; a second server connected to the second network; a third server connected to the third network; and the fourth network. A first storage area that can be accessed only from the first server, and a management server independent of any of the first, second, third, and fourth networks. A second storage area accessible only from the second server, a third storage area accessible only from the third server, and a fourth storage accessible only from the fourth server Storage device comprising: an area; and fifth, sixth, seventh, and eighth storage areas that are accessible only from the management server and that are paired with the first, second, third, and fourth storage areas Each with fiber optic Connected by a channel,
The first, second, third and fourth servers receive data to be transmitted to an information processing apparatus belonging to another network from the information processing apparatus belonging to the same network as the first apparatus, and receive the first and second The data stored in the second, third, or fourth storage area, and the data stored in the first, second, third, or fourth storage area is paired with the fifth, sixth, seventh, or Causing the storage device to execute a process of copying to the eighth storage area;
The management server has replicated data from any of the first, second, third, or fourth storage areas to the fifth, sixth, seventh, or eighth storage areas that are paired therewith. monitoring, prior Symbol fifth, sixth, seventh and eighth replicated data in any storage area of, accessible only from the server data delivery destination information processing apparatus is connected to the belonging network Copy to the fifth, sixth, seventh, or eighth storage area paired with the first, second, third, or fourth storage area, and the fifth, sixth, seventh, or eighth Causing the storage device to execute a process of copying the data copied to the storage area to the first, second, third, or fourth storage area paired therewith ,
Each server is the server that data from the storage area constituting only accessible storage area at the same pair monitors the replicated, the data the device itself accessible storage area is copied from the own device Acquires data from the first, second, third, or fourth storage area, and transmits the data to an information processing apparatus that is a delivery destination belonging to the same network as the own apparatus. A first transmission data storage means for each of the information processing devices belonging to the first network, in which data to be transmitted to each of the servers is transmitted to a network different from the own device;
Second transmission data storage means for storing data to be stored in the first, second, third or fourth storage area;
Copying data written at arbitrary timing from each information processing device belonging to the same network to the first transmission data storage means to the second transmission data storage means at a predetermined timing; 28. A data exchange method according to claim 27, wherein: Each server has first received data storage means for storing data obtained from the first, second, third, or fourth storage area accessible by the own device, and the same network as the own device. Second received data storage means for storing data to be delivered to the information processing apparatus to which it belongs for each destination information processing apparatus;
For each information processing apparatus that is a destination, the data stored in the first received data storage means is copied to the second received data storage means at a predetermined timing, and the data stored in the second received data storage means is the destination. 29. The data exchange method according to claim 27 or 28 , wherein the data is transmitted at an arbitrary timing. The storage device is a disk array device,
The first server, the second server, the third server, and the fourth server store a storage area that is accessible only from the own apparatus after data is copied from the storage area that is paired with the storage area that is accessible only from the own apparatus. Monitor the disk that is to be separated from the disk that forms the storage area that is paired with it, and after confirming that these disks have been disconnected, obtain data from the storage area that is accessible only from the local device. 30. The data exchange method according to any one of claims 27 to 29. A server for transferring data acquired from an information processing device belonging to a network to which the own device belongs to an information processing device belonging to a network to which another server belongs,
A server storage area accessible only from each of a plurality of servers including its own device and a plurality of management server storage areas corresponding to each server storage area that can be accessed only from a management server independent of any network Connected to the storage device via Fiber Channel,
Means for receiving data to be transmitted to an information processing apparatus belonging to a network different from the own apparatus from an information processing apparatus belonging to the same network as the own apparatus and storing the data in a server storage area accessible only from the own apparatus; Means for causing the storage apparatus to execute processing for copying the stored data to the management server storage area, and the data copied from the management server storage area corresponding to the server storage area accessible only from the own apparatus; And a server for transmitting data acquired from the server storage area accessible only from the own apparatus to an information processing apparatus that is a delivery destination belonging to the same network as the own apparatus. . A first transmission data storage means provided individually for each information processing apparatus belonging to the same network as the own apparatus, in which data to be transmitted to another network is written;
Second transmission data storage means for storing data to be stored in the server storage area,
Data is written into the first transmission data storage means from each information processing apparatus belonging to the same network as the own apparatus at an arbitrary timing, and the data in the first transmission data storage means is stored at the predetermined timing. 32. The server according to claim 31 , wherein the server is copied to two transmission data storage means. First received data storage means for storing data obtained from the server storage area, and second received data for storing data to be delivered to an information processing device belonging to the same network as its own device for each destination information processing device Storage means,
The data stored in the first received data storage means is copied to the second received data storage means at a predetermined timing, and the data stored in the second received data storage means is the destination information. The server according to claim 31 or 32 , wherein the server is transmitted at an arbitrary timing for each processing device. The storage device is a disk array device,
The disk that forms the server storage area that can be accessed only from its own device after data is copied from the corresponding management server storage area to the server storage area that can be accessed only from its own device corresponds to that server storage area Monitoring the detachment from the disks forming the management server storage area, and confirming that these disks have been detached, and then obtaining data from the server storage area accessible only from the own device The server according to any one of claims 31 to 33. A management server for mediating data exchange between an information processing device belonging to an independent network and an information processing device belonging to another network,
Fiber channel storage systems that have server storage areas accessible only from the respective servers provided for each network and a plurality of management server storage areas that can be accessed only from the own apparatus and correspond to the server storage areas. Connected,
The management server storage means for monitoring that the data has been replicated to the area, one of the only servers that a server accessible storage area only either the server corresponding to it from a server accessible storage area copying data to which the replicated to the management server storage area corresponding to the server storage area, and means for copying to the management server storage area corresponding to the observed accessible server storage area from another server, the data said copy from A management server comprising: means for causing the storage apparatus to execute a process of copying to the server storage area corresponding to the previous management server storage area . The management server of claim 35, wherein the copy only predetermined format data of the replicated data before SL management server storage area, the management server storage area corresponding to the other of the server storage area. 37. The management according to claim 35 or 36, further comprising means for detecting whether or not a computer virus is included in data stored in a server storage area accessible only by the server by any one of the servers. server. A server storage area accessible only from each of a plurality of servers including its own device and a plurality of management server storage areas corresponding to each server storage area that can be accessed only from a management server independent of any network Processing to transfer data acquired from an information processing device belonging to the network to which the server belongs to an information processing device belonging to the network to which the other server belongs to a substantial computer that controls the server connected to the storage device via Fiber Channel A data exchange program for
Said substantial computer,
Means for receiving data to be transmitted to an information processing apparatus belonging to a network different from the own apparatus from an information processing apparatus belonging to the same network as the own apparatus and storing the data in a server storage area accessible only from the own apparatus; Corresponding to the server storage area, means for causing the storage apparatus to execute processing for copying the stored data to the management server storage area corresponding to the server storage area, and the server storage area accessible only from the own apparatus Means for monitoring that data has been replicated from the management server storage area, and transmits data acquired from the server storage area accessible only from the own apparatus to an information processing apparatus that is a delivery destination belonging to the same network as the own apparatus A data exchange program characterized by functioning as a means for The storage device is a disk array device,
Said substantial computer,
The disk that forms the server storage area that can be accessed only from its own device after data is copied from the corresponding management server storage area to the server storage area that can be accessed only from its own device corresponds to that server storage area Means for monitoring being detached from the disk forming the management server storage area;
39. The data exchange program according to claim 38, wherein after confirming that these disks have been disconnected, the data exchange program is made to function as a means for acquiring data from a server storage area accessible only from its own device. Fiber channel storage systems that have server storage areas accessible only from the respective servers provided for each network and a plurality of management server storage areas that can be accessed only from the own apparatus and correspond to the server storage areas. A data exchange program for causing a substantive computer that controls a connected management server to perform processing for mediating data exchange between an information processing apparatus belonging to an independent network and an information processing apparatus belonging to another network Because
Said substantial computer,
Means for monitoring that only either the server data from a server accessible storage area to the management server storage area corresponding to the server storage area is duplicated, either only the server is accessible the management server replicated data to the storage area corresponding to the server storage area from a server storage area, and means for copying to another of the management server storage area corresponding to the observed accessible server storage area from another server A data exchange program that causes the storage apparatus to execute a process of copying the copied data to the server storage area corresponding to the copy destination management server storage area .

Images