Contents
Preface
I wanted to write this article a long time ago, but it involves too many knowledge points. The most critical points are non-technical content, such as the internal operation logic of the Ministry of Industry and Information Technology's filing system (hereinafter referred to as the filing system), the roles and relationships between the roles, the standards for being "walled", etc. Although this article is written from a technical perspective, the logic flow chart includes some of the above content and cannot be avoided. I didn't know anything before (and I'm not much better now). The only knowledge I knew about building a website was: "You need an "index.html", which can be obtained by downloading a free template", so website filing is an unrealistic concept for me. I know its macro purpose, but I am confused when it comes to micro-implementation.
As for why I have been wanting to write this article, the most direct reason should be the professional habit of a professional technician, similar to the reaction when I can't watch online videos at work due to Internet behavior management: "Why can't I watch it? How to achieve it? xxxxx?", but now it has become "I can't build a website without filing." Generally, when encountering such a situation, I am used to writing a plan to sort out my thoughts, but the plan usually starts with the "project introduction" and "existing problems sorting" part, but I don't even have a project, let alone any existing problems, what should I do?
In the spirit of "if there are difficulties, we must do it; if there are no difficulties, we must create difficulties and do it", it just so happened that I was just worried about "I didn't record the process before, so I had to study it again every time", so the project of "building a personal blog" was established. After the blog was built, it had to be published in China using port 443, which would involve filing according to normal logic, so it was connected. In the spirit of "if you want to take it, you must first give it", "you can't catch the wolf without sacrificing the lamb", "the Buddha cut his flesh to feed the eagle", etc., I chose to join the game in person: to file a personal record (of course, a small part of the reason was that I didn't know cloudflare at the time).
How to complete personal filing efficiently
What is the essence of filing from a management perspective? In one sentence, "the domain name and the registrant are tied to each other. If the website under this domain name commits a crime, the registrant will be directly arrested." To put it bluntly, it is the "legal representative" of the domain name.
The current filing system now implements a three-level architecture: the MIIT system, the provincial communications administration system, and the access supplier enterprise-side filing system. According to regulations, when users file, they must submit filing information through the access supplier enterprise-side system, and then transmit relevant information to the provincial and ministerial systems through the enterprise-side system (after the filing review is passed, the provincial and ministerial systems will also feed back data from the enterprise-side system based on the same principle, so why it takes several working days to file now is because of this process). The access suppliers we are most familiar with are Alibaba Cloud and Tencent Cloud.
If you want to file a record as an individual, the simplest and most efficient steps are as follows:
1. Choose an access provider and buy a cheap cloud server (there are many options for new users at 99 for the first year). This is mainly to obtain a "registration authorization code" (this is what Tencent calls it, and Alibaba calls it a "registration service code"):
No matter what the name is, the original intention of this step is to circle the location of your website. There is a regulation that "the currently resolved IP address of the registered domain name is the node server IP of the access service provider in the mainland", which is convenient for subsequent supervision. However, because of the CDN technology, this regulation is in name only: currently, as long as the domain name is registered, you can choose the CDN service provided by any domestic CDN manufacturer at will~, so no one has been dealt with because of "the resolved IP is not the server IP when the domain name is registered".
2. Use the filing system provided by the access provider to file
To be honest, it is very convenient to register with this solution, because you have already purchased the server of the access supplier, have the registration authorization code (or other codes), and there is not much information to fill in. The most painful thing is to name the website. You are not allowed to use words with clear references, such as blogs, clothing, movies, etc., so I ended up with a very strange name that makes people have no idea what your website is:
The photo for record must meet the following requirements:
If you already have a registered domain name under your personal account, when you need to register another domain name, you need to ensure that all the www websites of the previously registered domain names can be opened and comply with the precautions mentioned in the next section, otherwise:
However, there are also advantages. When you don't understand something, there will be someone to serve you (either by phone or online) and teach you step by step. Isn't this better than going out and spending a lot of money to find someone to register you?
After completing the information submission, someone from the supplier registration department will call you. After confirmation, they will submit it to the provincial communications administration bureau and start the process we mentioned earlier.
Note: Under normal circumstances, the filing will definitely be approved. After all, it is called filing. It is just a record to make it easier to catch you if you commit a crime in the future.
Daily matters needing attention after filing
As I mentioned before, the filing is mainly to bind the "legal representative" corresponding to the domain name, just to keep a record, there are not many restrictions, and the regular routine inspection of these domain names is handed over to the relevant departments of the access provider, including the following inspection items:
1. Can the website corresponding to the www host name be opened normally?
Take the domain name "example.com" as an example. When regular checks are required,http(s)://www.example.comIt can be opened normally. This is to prevent the bad behavior of "occupying the toilet without doing anything". After all, the registered domain name is on the whitelist that can be accessed normally in China, so we can't be careless.
How to deal with it: Be open-minded and don't make it difficult for the inspectors. Just make a page, point the parsing result of www to it, and then ensure that this page can always be accessed (otherwise why would I write this article:The home data center series uses Tencent Cloud COS+CDN to achieve cost-effective static page hosting (domain name registration required)? ).
2. Display specifications for pages corresponding to www
a. Label display name
Simply put, the display name of the web page label is the same as the website name filled in when filing, as follows:
Because I didn't know anything at the time, the girl who called me said there was a problem with the display name of the label, but I didn't know what it meant. She also said that the girl was unprofessional, which made her very anxious. Later I realized that it was my own comprehension that was problematic.
b. The registration number at the bottom is displayed
The registration number needs to be displayed in the center at the bottom of the page and must be a link pointing to
https://beian.miit.gov.cn, it should be able to be opened directly by clicking.
3. IP address of www page resolution
As we said before, although this resolved IP theoretically needs to point to the server IP address associated with the registration authorization code (or any other code), it can actually be changed by using the services of any domestic CDN supplier, so the requirements are not that strict. However, it is limited to the IPs of domestic CDN manufacturers. For example, when I started to directly resolve to cloudflare, the patrol girl notified me to make corrections within a limited time. So, we should be honest and at least use a domestic CDN. As for the source station pointing, it is not that strict. I used to point directly to nginx in my home data center (I also tried to point to cloudflare, but later felt it was not appropriate, so I changed it to point to my home). It was only a few days ago that I pointed the CDN directly to Tencent Cloud's COS.
Note: Only the pages corresponding to www must have the registration number written on them. Websites corresponding to other third-level domain names are normally not managed by anyone, at least not within the scope of routine inspections by inspection personnel. However, you should still try to keep a low profile, such as if you have already registered.
After filing is completed, do I need to renew the cloud server when it expires?
Let me first state the conclusion: theoretically, no. The essence of purchasing a cloud server is to obtain a filing authorization code (or some other code) to fulfill the prerequisite for successful filing from the access supplier. Once the filing is successful, it is normally useless (mainly because the resolution IP must be the access supplier server IP, which is not effective), so as long as the filing number www page can pass the daily inspection, it will be fine (otherwise why would I writeThe home data center series uses Tencent Cloud COS+CDN to achieve cost-effective static page hosting (domain name registration required)This article? It is to prepare for not renewing Tencent Cloud Lightweight Server in the future. After all, 29.77 a year is much cheaper than renewing the cheapest Tencent Cloud Lightweight Server. In this way, even if I want to check the expiration of the server associated with the registered authorization code, I may be given a break if I see that my source site is pointing to my own COS).
However, I don’t know if there will be stricter and more abnormal regulations in the future. For example, when a registered domain name uses CDN, the source site must point to the server IP at the time of registration. If there is such a regulation, then the cloud server really needs to be renewed.
Afterword
I finally finished writing it. This article made me so tired. It took me at least 8 months from conception, entry, attempts, various studies, sorting out to the final writing. But I finally sorted out the whole process basically, and the obsessive-compulsive disorder can finally put down the huge stone in my heart.
Now, my .com domain name has been hosted on cloudflare, and all websites are built based on cloudflare. The previously registered domain name has completed its historical mission and is in idle status. However, it is still very good for others to visit emby at home. After all, it is also a domain name in the whitelist and has a regular identity. It just so happens that now China Telecom has begun to carry out the so-called rectification of home broadband with public IP: as long as the incoming http(s) traffic using unregistered domain names is detected, rectification is required (including logging in to the management page of the dial-up router~~), otherwise the public IP will be cancelled~~ Under this severe regulatory environment, the services released to the outside world by my home data center (such as friends coming to see my emby, read my comics, etc.) have been fully upgraded to the registered domain name + https publishing method, and this will become my amulet for quite a long time.
Note: Due to my limited knowledge and lack of understanding of the implementation details in many fields, many of the conclusions in the article are based on the situations I encountered during use and some speculations based on the knowledge I know, so they may not be accurate enough. If there are any errors, you are welcome to leave a message to correct them.
