Method, client terminal, server and system for preventing network attack using ARP

A network attack and server technology, applied in the network field, can solve the problems of difficulty in implementing the two-way binding scheme, low flexibility, host poisoning, etc., and achieve the effects of reducing configuration workload, improving flexibility, and being easy to implement

Active Publication Date: 2008-02-06
NEW H3C TECH CO LTD
View PDF0 Cites 34 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] It can be seen that the two-way binding scheme is designed to prevent individual individuals. It not only has high requirements for administrators, but also has high requirements for host users. It requires host users to have a certain computer foundation; at the same time, the configuration workload is heavy, and When the user's IP address changes, it is necessary to synchronize the gateway binding, which has low flexibility.
Therefore, the two-way binding scheme is difficult to implement, and it is difficult to meet the needs of preventing ARP attacks in different application environments
[0010

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, client terminal, server and system for preventing network attack using ARP
  • Method, client terminal, server and system for preventing network attack using ARP
  • Method, client terminal, server and system for preventing network attack using ARP

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 2

[0057] Generally speaking, the correct gateway address is recorded in the gateway address list obtained from the server. However, if the administrator configures incorrectly, it may also cause the local gateway IP to be out of the preset gateway address list range. In this case, the wrong gateway address is used. If the gateway address list is refreshed, the host will not be able to address the gateway. Therefore, a preferred implementation is shown in Figure 2, which is the second embodiment of a method for preventing network attacks using ARP provided by the present invention. Based on the first embodiment, steps A1-3 include:

[0058] A1-3-1. Obtain the local host's intranet gateway IP;

[0059] A1-3-2. Check whether there is a list item matching the intranet gateway IP in the gateway address list;

[0060] A1-3-3. If yes, use the matched list item to update the ARP cache of the local host;

[0061] A1-3-4. Otherwise, perform step A1-1 again.

[0062] In the second embodiment, ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method of preventing a network from being attacked by using an ARP, and also the client terminal and server as well the system of the method; wherein, the methods on the client terminal comprise that sending request on obtaining the addresses list of a gateway to the server, wherein, the addresses list of the gateway is used for recording the IP address of the gateway and corresponding MAC address; making records on the addresses list of the gateway after receiving the addresses list of the gateway for the server responses; using the addresses list of the gateway to renew the ARP cache of a local host computer. The methods applied in the server include: making records of the gateway IP addresses and corresponding MAC addresses inside the addresses list of the gateway preset by the server; sending the preset addresses list of the gateway to the host computers of consumers so as to renew the ARP cache after receiving the requests on obtaining the addresses list of the gateway from the host computers of the consumers. Through adopting the technical scheme of the utility model, the behaviors using ARP to attacking the network can be easily and flexibly as well as effectively avoided.

Description

Technical field [0001] The present invention relates to the field of network technology, and in particular to a method, a client, a server and a system for preventing network attacks using the Address Resolution Protocol (ARP). Background technique [0002] In Ethernet, a logical address (usually an IP address) is used for device identification at the network level, and a physical address (usually a MAC (Media Access Control) address) is used for device identification at the physical level; and in order to realize the communication between different devices The communication requires ARP to resolve the IP address to the MAC address. [0003] Since the ARP protocol did not consider security issues at the beginning of its design, and did not take any security measures such as authentication to the protocol application objects, it is easy to be used for network attacks. Common network attacks include: forging the ARP of another user's IP address to tamper with the ARP record of the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L29/12H04L12/56
Inventor 刘恒胜
Owner NEW H3C TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap