Unlock instant, AI-driven research and patent intelligence for your innovation.

Method, client terminal, server and system for preventing network attack using ARP

A network attack, server technology, applied in the network field

Active Publication Date: 2011-06-29
NEW H3C TECH CO LTD
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0011] The present invention provides a technical solution for preventing network attacks using ARP to solve the problem of ARP attacks by forging gateway addresses in the prior art. The purpose of preventing ARP attacks flexibly and effectively

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, client terminal, server and system for preventing network attack using ARP
  • Method, client terminal, server and system for preventing network attack using ARP
  • Method, client terminal, server and system for preventing network attack using ARP

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 2

[0059] Generally speaking, the correct gateway address is recorded in the gateway address list obtained from the server. However, if the administrator configures improperly, the local gateway IP may not be within the range of the preset gateway address list. In this case, the wrong Refresh the gateway address list, which will cause the host to fail to address the gateway. Therefore, the preferred implementation is as figure 2 As shown, Embodiment 2 of a method for preventing network attacks using ARP provided by the present invention, on the basis of Embodiment 1, steps A1-3 include:

[0060] A1-3-1. Obtain the gateway IP of the local host intranet;

[0061] A1-3-2. Check whether there is a list item matching the intranet gateway IP in the gateway address list;

[0062] A1-3-3. If so, update the ARP cache of the local host using the matched list item;

[0063] A1-3-4. Otherwise, perform step A1-1 again.

[0064] In Embodiment 2, re-executing step A1-1 can obtain a new gat...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method of preventing a network from being attacked by using an ARP, and also the client terminal and server as well the system of the method; wherein, the methods on the client terminal comprise that sending request on obtaining the addresses list of a gateway to the server, wherein, the addresses list of the gateway is used for recording the IP address of the gateway and corresponding MAC address; making records on the addresses list of the gateway after receiving the addresses list of the gateway for the server responses; using the addresses list of the gateway to renew the ARP cache of a local host computer. The methods applied in the server include: making records of the gateway IP addresses and corresponding MAC addresses inside the addresses list of the gateway preset by the server; sending the preset addresses list of the gateway to the host computers of consumers so as to renew the ARP cache after receiving the requests on obtaining the addresses listof the gateway from the host computers of the consumers. Through adopting the technical scheme of the utility model, the behaviors using ARP to attacking the network can be easily and flexibly as well as effectively avoided.

Description

technical field [0001] The invention relates to the field of network technology, in particular to a method, a client, a server and a system for preventing network attacks by using Address Resolution Protocol (ARP for short). Background technique [0002] In Ethernet, logical addresses (generally IP addresses) are used for device identification at the network level, and physical addresses (generally MAC (Media Access Control) addresses) are used for device identification at the physical level; The communication needs to resolve the IP address to MAC address through ARP. [0003] Since the ARP protocol did not consider security issues at the beginning of its design, and did not take any security measures such as authentication for protocol application objects, it is easy to be used to carry out network attacks. The more common network attacks include: forging the ARP of other user's IP address to tamper with the user's ARP record in the ARP cache of the gateway device, so tha...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12H04L12/56
Inventor 刘恒胜
Owner NEW H3C TECH CO LTD