Method and apparatus for processing packets

A message and leave message technology, applied in the field of communication, can solve the problems of unable to prevent IGMPLeave message attack, not solving the problem of multicast users joining or leaving, and not protecting the switch, so as to improve network security and anti-attack capabilities, effectiveness of ensuring device and network security

Inactive Publication Date: 2012-05-30
HUAWEI TECH CO LTD
View PDF0 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] 1) Existing technology 1 suppresses by disposing IGMP Report message on switchboard, indirectly protects the router that has enabled IGMP protocol, but does not protect switch itself; Only configured IGMP Report message suppression, not to IGMP Leave message suppression, and the IGMP Leave message is another way of attack, and the scope of influence is large
[0007] 2) Prior art 2 limits the number of multicast groups that a multicast user can join under a switch, but when a multicast user frequently joins or leaves between different multicast groups, it does not exceed the number of multicast groups that can be joined under the switch When the number of groups is high, a large number of IGMP messages will also be sent, which does not solve the problem that multicast users frequently join or leave between different multicast groups; in addition, the existing technology 2 binds the switch port, MAC address and IP address , but the IGMP Leave message sent by the multicast user is directly sent, which cannot prevent the IGMP Leave message attack

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and apparatus for processing packets
  • Method and apparatus for processing packets
  • Method and apparatus for processing packets

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0027] see figure 1 , the embodiment of the present invention provides a method for processing messages, specifically including:

[0028] 101: Receive the IGMP request message from the sender;

[0029] 102: Read the frequency value of the message sent by the sender recorded locally;

[0030] 103: When the frequency value is greater than the preset frequency threshold, discard the IGMP request packet.

[0031] Further, before reading the frequency value of the message sent by the sender recorded locally, it also includes:

[0032] Set the timing;

[0033] Count the number of messages sent by the sender received within a regular time period, and the messages sent by the sender include an IGMP report message and an IGMP leave message;

[0034] According to the timing time and the counted number of packets sent by the sender, the frequency value of the message sent by the sender is obtained, and the frequency value is recorded locally.

[0035] Further, when the Internet Grou...

Embodiment 2

[0048] see figure 2 , the embodiment of the present invention provides a method for processing messages, specifically including:

[0049] 201: When the switch receives the IGMP Report message sent by the multicast user A requesting to join the multicast group B, it judges whether the multicast group ID B of the multicast group B exists in the switch, and if so, it does not need to record in the switch Add 1 to the number of multicast groups; otherwise, add 1 to the number of multicast groups recorded in the switch.

[0050] Wherein, in the IGMP Report message, can include: the identity mark of multicast user, multicast group mark and switch port mark; The identity mark of multicast user mainly comprises the MAC address of multicast user and the VLAN (Virtual Local Area Network) of multicast user , virtual local area network) address; the multicast group identifier is the IP address of the multicast group requested to join, and it can be judged which multicast group is reques...

Embodiment 3

[0076] see image 3 , the embodiment of the present invention provides a device for processing messages, the device specifically includes:

[0077] A receiving module 301, configured to receive an Internet Group Management Protocol request message from a sender;

[0078] The first reading module 302 is used to read the frequency value of the message sent by the sender recorded locally after the receiving module 301 receives the Internet Group Management Protocol request message;

[0079] The first discarding module 303 is configured to discard the IGMP request packet after the frequency value read by the first reading module 302 is greater than a preset frequency threshold.

[0080] Further, see Figure 4 , the device may also include:

[0081] Setting module 304, for setting the timing time;

[0082] The statistics module 305 is used to count the number of packets sent by the sender received within the timing time set by the setting module 304, and the packets sent by the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and an apparatus for processing messages belonging to the communication field. The method comprises: receiving an internet group management protocol (IGMP) request message from a sender; reading a local recording frequency value of sending message from the sender; discarding the internet group management protocol request message when the frequency value is larger than a presetting frequency threshold. The apparatus comprises: a receiving module, a first reading module and a first discarding module. The invention enables an exchange not to have a plurality of IGMP messages by discarding IGMP messages larger than the frequency threshold, improves the anti-attack ability of the exchange, avoids the IGMP messages attack to the exchange, and protects the exchange. Moreover the invention also solves the problem that a multicast client attacks by frequently adding the IGMP messages between different cast groups or sending the IGMP messages when leaving through discarding the IGMP messages larger than the frequency threshold.

Description

technical field [0001] The invention relates to the communication field, in particular to a method and device for processing messages. Background technique [0002] With the continuous development of broadband technology, multimedia services such as streaming media, video conferencing, and video-on-demand are becoming an important part of information transmission. The transmission characteristics of multimedia services are single-point transmission and multi-point reception. The multicast mode and the point-to-all point-to-point broadcast mode can no longer adapt to the transmission characteristics of multimedia services. In this case, multicast emerges as the times require. Multicast is a one-to-one (one-to-many) communication mode between a multicast source and a multicast user. A multicast user can request for To join or exit a multicast group, when a multicast user requests to join a multicast group, an IGMP Report (Internet Group Management Protocol Report) message wil...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/18
Inventor 肖元辉郭长安
Owner HUAWEI TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap