Network safety protection method, gateway equipment, client terminal as well as network system

A gateway device and network security technology, applied in the field of communications, can solve the problems of no connection handshake, IP spoofing, and low network security, and achieve the effect of improving the degree of network security protection

Inactive Publication Date: 2008-09-03
HUAWEI DIGITAL TECH (CHENGDU) CO LTD
View PDF0 Cites 26 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Because in the prior art, the UDP method is generally used to transmit messages between the client and the DNS server, and the UDP method does not use the connection establishment method for communication, and there is no mechanism such as connection handshake, which is only possible when the byte exceeds 512 bytes. The TCP method is used instead, so the network security is not high, and there are a series of security problems such as DNS spoofing and IP spoofing

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network safety protection method, gateway equipment, client terminal as well as network system
  • Network safety protection method, gateway equipment, client terminal as well as network system
  • Network safety protection method, gateway equipment, client terminal as well as network system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0020] The embodiment of the present invention provides a network security protection method, which can improve network security protection.

[0021] The technical scheme of the embodiment of the present invention solves the security prevention problem of the DNS by converting the UDP communication mode of the DNS into the TCP communication mode, and greatly enhances the DNS security protection capability.

[0022] see figure 1 , is a flowchart of a network security protection method according to an embodiment of the present invention, including steps:

[0023] Step 101, receiving the UDP query request message sent by the client;

[0024] Step 102, returning a response message to the client, the TC field in the response message indicates that the byte is truncated;

[0025] Regardless of whether the data length of the received UDP query request message exceeds 512 bytes, set the TC field in the Flag field of the header in the response message to be returned to 1, set the dat...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention discloses a network security protection method, a gateway device, a client side and a network system. The method comprises: receiving a user datagram protocol UDP query request message sent from the client side; returning a response message to the client side, wherein, the TC field of the response message presents the byte is truncated; and establishing the TCP connection between the client side and a domain name system DNS server. The embodiment of the invention further provides the corresponding gateway device, the client side and the network system. Due to the technology scheme of the embodiment of the invention, the network security protection is improved.

Description

technical field [0001] The invention relates to the field of communication technology, in particular to a network security protection method, a gateway device, a client and a network system. Background technique [0002] DNS (Domain Name System, Domain Name System) is a naming system distributed in a hierarchical structure. In a TCP / IP (Transmission Control Protocol / Internet Protocol) network such as the Internet, the DNS name is used to locate the computer. If the DNS name is entered in the application program, it can be accessed by the DNS server The database provides name-related information including IP addresses. [0003] The DNS service is vulnerable to attacks on the network, so a firewall is generally set up between the DNS server and the client for security protection, allowing normal packets to pass through and filtering out attack packets. UDP (User Datagram Protocol, User Datagram Protocol) is generally used to transmit messages between the client and the DNS s...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/56H04L29/06
Inventor 蒋武
Owner HUAWEI DIGITAL TECH (CHENGDU) CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap