Unlock instant, AI-driven research and patent intelligence for your innovation.

Method and device for filtering and analyzing communication traffic based on packet

A technology of data grouping and malicious traffic, applied in the field of computer networks, can solve problems such as occupying server resources and consuming bandwidth

Inactive Publication Date: 2008-08-13
CISCO TECH INC
View PDF3 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This traffic can consume most of the bandwidth of the connection between the infected network and the Internet
In addition, SYN requests are generally buffered by the sending server for a period of time, which takes up server resources

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for filtering and analyzing communication traffic based on packet
  • Method and device for filtering and analyzing communication traffic based on packet
  • Method and device for filtering and analyzing communication traffic based on packet

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0062] FIG. 1 is a block diagram schematically showing a network protection system 20 according to an embodiment of the present invention. A protected area 30 of the network communicates through one or more routers 22 with a wide area network (WAN) 40 , typically the Internet. The protected area 30 includes various network elements 26 , such as servers 24 , clients, switches, internal routers, and bridges, which are typically connected by one or more local area networks (LANs) 32 . As described below, protected area 30 typically (but not necessarily) includes a private network, such as a corporate or campus network, or a network operated by an Internet Service Provider (ISP).

[0063] To prevent server 24 from being infected with a worm, protection device 28 intercepts incoming packets from WAN 40 addressed to network element 26 . Protection device 28 analyzes these incoming packets to detect packets suspected of being infected with a worm, generally using the techniques desc...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention discloses a method for filtering packet-based communication traffic. At least a first data packet sent from the source address to the destination address over the network is received. By analyzing the first data group, it is determined that the first data group is generated by a worm. Responsive to the determination, blocking a second data packet sent over the network from the source address.

Description

[0001] This application is a divisional application of the patent application with the national application number 02824700.0 (international application number PCT / IL02 / 00996), the international application date being December 10, 2002, and the title "defense against malicious traffic". technical field [0002] The present invention relates generally to computer networks, and more particularly to methods and systems for defending against malicious traffic in computer networks. Background technique [0003] This application claims priority to US Provisional Patent Application 60 / 339,900, filed December 10, 2001, entitled "Methods and Apparatus for Protecting Against Malicious Traffic in the Internet." This application is a continuation-in-part of co-pending U.S. Patent Application Serial No. 09 / 929,877, filed August 14, 2001, entitled "Methods and Apparatus for Protecting Against Overload Conditions on Nodes of a Distributed Network," and published It is US Patent Application...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/56G06F11/30G06F12/14
CPCH04L63/1408H04L63/145
Inventor 耶胡达·埃菲克拉菲·扎迪卡里奥丹·图伊图阿纳·布雷姆列尔巴尔
Owner CISCO TECH INC