我有一个存储IP地址掩码的表,用于验证是否允许用户根据其IP地址访问资源。为了让我根据他们的IP地址进行验证,我将他们的地址和掩码分成八位字节并进行比较。我有一种方法可行,但它并不适合我,因为它对字符串操作似乎过于沉重,这在T-SQL中很慢。这让我觉得它是一种“蛮力”的方法,而且一点也不优雅。我希望有人可以提供一些改进,同时保持相同的输出。
一些样本掩码如下:
要解析这些,我宣布一个临时表:
DECLARE @Rights TABLE(
IPAddr char(15)
, octet1 char(7)
, octet1max char(3)
, octet2 char(7)
, octet2max char(3)
, octet3 char(7)
, octet3max char(3)
, octet4 char(7)
, octet4max char(3)
, dot int
, tlen int
, tempaddr char(15)
)
我首先将数据库表中的记录插入临时表:
INSERT @Rights(IPAddress, dot, tlen, tempaddr)
SELECT IPAddress, CHARINDEX('.',IPAddress), LEN(IPAddress), IPAddress
FROM IPAccessRights_Info
然后,我对这个临时表运行4 UPDATE
个语句:
UPDATE @Rights
SET octet1 = SUBSTRING(tempaddr, 0, dot)
, tempaddr = SUBSTRING(tempaddr, dot+1, LEN(tempaddr)-dot)
, dot = CHARINDEX('.', SUBSTRING(tempaddr, dot+1, LEN(tempaddr)-dot))
, tlen = LEN(SUBSTRING(tempaddr, dot+1, LEN(tempaddr)-dot))
UPDATE @Rights
SET octet2 = SUBSTRING(tempaddr, 0, dot)
, tempaddr = SUBSTRING(tempaddr, dot+1, LEN(tempaddr)-dot)
, dot = CHARINDEX('.', SUBSTRING(tempaddr, dot+1, LEN(tempaddr)-dot))
, tlen = LEN(SUBSTRING(tempaddr, dot+1, LEN(tempaddr)-dot))
UPDATE @Rights
SET octet3 = SUBSTRING(tempaddr, 0, dot)
, octet4 = SUBSTRING(tempaddr, dot+1, LEN(tempaddr)-dot)
, dot = NULL
, tlen = LEN(IPAddr)
, tempaddr = NULL
-- Parse out any ranges
UPDATE @Rights
SET octet1 = CASE WHEN CHARINDEX('-', octet1) > 0 THEN SUBSTRING(octet1, 0, CHARINDEX('-', octet1)) ELSE octet1 END
, octet1max = CASE WHEN CHARINDEX('-', octet1) > 0 THEN SUBSTRING(octet1, CHARINDEX('-', octet1)+1, LEN(octet1)) ELSE NULL END
, octet2 = CASE WHEN CHARINDEX('-', octet2) > 0 THEN SUBSTRING(octet2, 0, CHARINDEX('-', octet2)) ELSE octet2 END
, octet2max = CASE WHEN CHARINDEX('-', octet2) > 0 THEN SUBSTRING(octet2, CHARINDEX('-', octet2)+1, LEN(octet2)) ELSE NULL END
, octet3 = CASE WHEN CHARINDEX('-', octet3) > 0 THEN SUBSTRING(octet3, 0, CHARINDEX('-', octet3)) ELSE octet3 END
, octet3max = CASE WHEN CHARINDEX('-', octet3) > 0 THEN SUBSTRING(octet3, CHARINDEX('-', octet3)+1, LEN(octet3)) ELSE NULL END
, octet4 = CASE WHEN CHARINDEX('-', octet4) > 0 THEN SUBSTRING(octet4, 0, CHARINDEX('-', octet4)) ELSE octet4 END
, octet4max = CASE WHEN CHARINDEX('-', octet4) > 0 THEN SUBSTRING(octet4, CHARINDEX('-', octet4)+1, LEN(octet4)) ELSE NULL END
当我完成后,我可以使用octet1-octet4和octet1max-octet4max中的值来匹配我的IP地址。
当然,当我们都去IPv6时,那将是一个完全不同的蠕虫......
答案 0 :(得分:2)
此Tip-of-the-day(and this one)介绍如何使用T-SQL PARSENAME function 分隔IP地址以及4部分数据库对象名称。
DECLARE @IPAddresses TABLE ( [IPAddress] VARCHAR(20))
INSERT INTO @IPAddresses VALUES ('10.0.0.1')
INSERT INTO @IPAddresses VALUES ('255.255.255.255')
INSERT INTO @IPAddresses VALUES ('192.123.545.12')
INSERT INTO @IPAddresses VALUES ('1.2.3.4')
SELECT * FROM @IPAddresses
ORDER BY CAST(PARSENAME([IPAddress], 4) AS INT),
CAST(PARSENAME([IPAddress], 3) AS INT),
CAST(PARSENAME([IPAddress], 2) AS INT),
CAST(PARSENAME([IPAddress], 1) AS INT)
IPAddress
----------------
1.2.3.4
10.0.0.1
192.123.545.12
255.255.255.255
答案 1 :(得分:0)
也许我完全不在这里,但我可以想象你的原始餐桌不适合使用。
如果要像这样定义表IPAccessRights_Info
:
CREATE TABLE [dbo].[IPAccessRights_Info](
[Id] [int] NOT NULL,
[IpAddress] [nvarchar](15) NOT NULL,
[Octet1Min] [int] NOT NULL,
[Octet1Max] [int] NOT NULL,
[Octet2Min] [int] NOT NULL,
[Octet2Max] [int] NOT NULL,
[Octet3Min] [int] NOT NULL,
[Octet3Max] [int] NOT NULL,
[Octet4Min] [int] NOT NULL,
[Octet4Max] [int] NOT NULL,
CONSTRAINT [PK_IPAccessRights_Info] PRIMARY KEY CLUSTERED
(
[Id] ASC
)WITH (ALLOW_ROW_LOCKS = ON, ALLOW_PAGE_LOCKS = ON) ON [PRIMARY]
) ON [PRIMARY]
当你从你的管理应用程序插入IpAddress权限时(我假设你有一些管理层)你做了一个讨厌的工作,分裂八位字节的IpAddress的值,要查询的任务更容易。
我认为你只需要一个OctetMin和OctetMax列。翻译自你的例子:
*.*.*.* => Octet1Min = 0, Octet1Max = 255, Octet2Min = 0, etc.
172.16.*.* => Octet1Min = 172, Octet1Max = 172, etc.
172.16.0-10.* => Octet3Min = 0, Octet3Max = 10, etc.
172.16.99.10 => Octet4Min = 10, Octet4Max = 10, etc.
您可以对此进行查询,如下所示:
INSERT INTO dbo.IPAccessRights_Info VALUES (4,'172.16.9-10.*',172,172,16,16,9,10,0,255)
-- IpAddress to check
DECLARE @IpAddress nvarchar(15) = '172.16.10.5'
DECLARE @octet1 nvarchar(3) = SUBSTRING(@IpAddress, 0, CHARINDEX('.', @IpAddress))
SET @IpAddress = RIGHT(@IpAddress, LEN(@IpAddress)-LEN(@octet1) - 1)
DECLARE @octet2 nvarchar(3) = SUBSTRING(@IpAddress, 0, CHARINDEX('.', @IpAddress))
SET @IpAddress = RIGHT(@IpAddress, LEN(@IpAddress)-LEN(@octet2) - 1)
DECLARE @octet3 nvarchar(3) = SUBSTRING(@IpAddress, 0, CHARINDEX('.', @IpAddress))
SET @IpAddress = RIGHT(@IpAddress, LEN(@IpAddress)-LEN(@octet3) - 1)
DECLARE @octet4 nvarchar(3) = @IpAddress
SELECT Id
FROM dbo.IPAccessRights_Info
WHERE Octet1Min <= CAST(@octet1 AS int)
AND Octet1Max >= CAST(@octet1 AS int)
AND Octet2Min <= CAST(@octet2 AS int)
AND Octet2Max >= CAST(@octet2 AS int)
AND Octet3Min <= CAST(@octet3 AS int)
AND Octet3Max >= CAST(@octet3 AS int)
AND Octet4Min <= CAST(@octet4 AS int)
AND Octet4Max >= CAST(@octet4 AS int)
-- Results:
1
2
4