Packet processing method, fire wall equipment and network security system

A message processing and firewall technology, applied in the field of communication, can solve problems such as message forwarding confusion

Active Publication Date: 2012-08-08
HUAWEI DIGITAL TECH (CHENGDU) CO LTD
View PDF0 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Embodiments of the present invention provide a firewall transparent mode message processing method, firewall equipment and network security system, which can solve the problem of message forwarding confusion when addresses overlap

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Packet processing method, fire wall equipment and network security system
  • Packet processing method, fire wall equipment and network security system
  • Packet processing method, fire wall equipment and network security system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0022] Embodiments of the present invention provide a message processing method in a firewall transparent mode, a firewall device and a network security system, which can solve the problem of message forwarding confusion when addresses overlap. The firewall in the embodiment of the present invention can be either a centralized firewall or a distributed firewall. In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below with reference to the accompanying drawings and examples.

[0023] Such as figure 2 As shown, the flow chart of the message processing method in the firewall transparent mode provided by the embodiment of the present invention includes the following process:

[0024] Step 201, when the service forwarding unit (SFU, Service Forward Unit) forwards the message, different VPN values ​​are configured to different VLAN interfaces, so that the flow under the VLAN in...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a message processing method, comprising: configurating different virtual special network VPN values for different virtual local area network VLAN when transmitting messages, and encapsulating parameters including VPN into data frame heads corresponding to the messages; resolving the messages, when the resolution is in a transparent mode, setting a global identification foridentifying that the messages enter a firewall through a bilaminar transmitting interface; building corresponding status list items for the messages and transmitting the messages after the messages pass through relative process of the firewall, wherein the status list items include parameter information including VPN value. The invention also discloses a firewall device and a network security system, thereby solving the problems that message transmission is disordered when the address is superposed.

Description

technical field [0001] The invention relates to the technical field of communication, in particular to a message processing method, a firewall device and a network security system. Background technique [0002] At present, with the increasing development of the network, the security problem of the network becomes more and more prominent. People mainly focus on attacks from outside, so they spend a lot of effort and money to deploy security products at the network border, such as firewalls, intrusion detection systems (IDS, Intrusion Detection Systems) and so on. [0003] Hardware firewall means that the firewall program is built into the chip, and these functions are performed by the hardware, which can reduce the burden on the CPU and make the routing more stable. The hardware firewall is an important barrier to ensure the security of the internal network. In addition, by creating a logical virtual firewall (Vfw, Virtual firewall), the hardware firewall can provide a fire...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/56H04L12/46H04L29/06
Inventor 代可可
Owner HUAWEI DIGITAL TECH (CHENGDU) CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap