Method and system for preventing ARP message attack

A technology of ARP packets and ARP entries, applied in the field of preventing ARP packet attacks, it can solve the problems of the CPU burden of gateway devices, client ARP failures, and large ARP packet traffic, so as to facilitate centralized management.

Inactive Publication Date: 2008-05-07
NEW H3C TECH CO LTD
View PDF0 Cites 37 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] When using the above dynamic ARP detection technology, the gateway device needs to verify the forwarding of all ARP packets, and ARP packets usually have relatively large traffic in the network, which may cause the CPU burden of the gateway device
Therefore, in order to prevent the CPU of the gateway device from being overloaded by the incoming traffic of ARP packets, it is usually necessary to limit the rate of ARP packets. This may also cause the ARP failure of the client when the network is busy, affecting the normal network services of the client.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for preventing ARP message attack
  • Method and system for preventing ARP message attack
  • Method and system for preventing ARP message attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0064] The embodiments of the present invention will be further described below in conjunction with the drawings and examples.

[0065] For an IP network device, the protocol address-physical address pair (IP address-Mac address pair) stored in the ARP entry is essential. Currently, ARP management generally includes dynamic ARP entries and static ARP entries. Wherein, the dynamic ARP entry is the ARP entry learned by the network device through the ARP protocol during the communication process; the static ARP entry is the ARP entry directly configured by the user or the administrator on the network device. Generally speaking, static ARP entries cannot be covered by dynamic ARP entries, and the learning update of dynamic entries cannot conflict with static entries. When querying ARP entries for address resolution, static entries take precedence. The level is also higher than that of dynamic entries, and static ARP entries will not be timed out.

[0066] At present, spoofing at...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method for preventing ARP (address resolution protocol) message attack, which comprises the following procedures: a DHCP (dynamic host configuration protocol) server adds IP address-MAC address into DHCP message and sends to a user terminal; the user terminal receives the DHCP message, analyzes the IP address-MAC address couple included in the DHCP message and changes the message into local ARP table which can not be dynamically rewritten, so as to prevent the network from attacking of the attack message through rewriting the ARP table of user terminal. The invention also discloses a system for preventing ARP message attack. With the invention, the gateway device in network and the user terminal are capable of defending the received ARP attack message. In addition, the important ARP tables of user terminals in network are under unified configuration by DHCP server, which is convenient for centralized management.

Description

technical field [0001] The invention relates to the field of communication technology, in particular to a method and system for preventing ARP (Address Resolution Protocol, Address Resolution Protocol) message attacks. Background technique [0002] In the current network technology, terminal devices are distinguished in the network by IP (Internet Protocol, Internet Protocol) addresses. During communication, when the source terminal device that initiates the communication sends a message to other terminal devices, it needs to obtain the MAC (Media Access Control, Media Access Control) address of the target terminal device to complete the encapsulation of the message. This requires conversion between the device IP address and the MAC address. Currently. This conversion is implemented by the ARP protocol. The ARP protocol realizes the function of converting the IP address of the target terminal device into a MAC address, which ensures the smooth progress of communication. ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/56H04L12/66H04L9/00
Inventor 秦雷
Owner NEW H3C TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap