Message filtering method, device and network device

A message filtering and message technology, which is applied in data exchange networks, digital transmission systems, electrical components, etc., can solve the problem of frequently querying routing tables and other problems, so as to overcome the operation of frequently querying routing tables, improve performance, and save processing time. Effect

Active Publication Date: 2010-05-12
RUIJIE NETWORKS CO LTD
View PDF0 Cites 39 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] The embodiment of the present invention provides a message filtering method, device and network equipment, which are used to overcome the defect of f

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Message filtering method, device and network device
  • Message filtering method, device and network device
  • Message filtering method, device and network device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0028] figure 1 It is a flow chart of the message filtering method provided by Embodiment 1 of the present invention. The execution subject of this embodiment is a firewall, such as figure 1 As shown, the message filtering method of this embodiment includes:

[0029] Step 11, according to the received message, obtain the first information and the first identification, the first information includes the source IP address of the message, the destination IP address, the protocol type, the first parameter and the second parameter, and the first identification is the source Identification of the VRF to which the IP address belongs;

[0030] Wherein, after receiving the message, the firewall obtains the first information from the message header, and obtains the first identifier, that is, the identifier of the VRF to which the source IP address belongs, from the attribute value of the firewall interface that receives the message.

[0031] Step 12, discretizing the first information...

Embodiment 2

[0050] Figure 2A It is a flow chart of sending a TCP message in the message filtering method provided by Embodiment 2 of the present invention, Figure 2B It is a flow chart of receiving a response message in the message filtering method provided by Embodiment 2 of the present invention. This embodiment is based on Embodiment 1, taking TCP packets as an example, through a specific interaction process, to illustrate the message filtering method in the cross-VRF routing mode provided by this embodiment, first make the following assumptions:

[0051] Suppose there are two routing instances in the firewall routing table: the first routing instance VRF_A and the second routing instance VRF_B; and the first routing instance is the virtual routing forwarding table of the first network whose network address is 192.168.100.0, and VRF_A to the destination network address The next hop of the outgoing interface of the route of the second network that is 192.168.200.0 needs to be obtaine...

Embodiment 3

[0086] image 3 The structural diagram of the message filtering device provided in Embodiment 3 of the present invention. The message filtering device in this embodiment can be set independently, and can be connected with the routing device in the network according to specific requirements, and can also be set in the routing device. Such as image 3 As shown, the filtering device in this embodiment includes: an acquisition module 31 , a generation module 32 , a matching module 33 , a creation module 34 and a processing module 35 .

[0087] The obtaining module 31 is used to obtain the first information and the first identification according to the received message; specifically, the obtaining module 31 obtains the first information from the message header, and the first information includes the source IP address of the message, Purpose IP address, protocol type, first parameter and second parameter, are referred to as quintuple, and wherein first parameter and second paramete...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides message filtering method, device and network device. The method comprises the following steps of: according to a received message, acquiring first information containing a source IP address, a destination IP address, a protocol type, a first parameter and a second parameter of the message, and a first identification indicating the property of the source IP address; conducting discretization processing on the first information to generate a first index value; separately matching the first information and the first identification with information in all flow records in a data flow table, which corresponds to the first index value; when no flow record containing the first information and the first identification is matched, establishing a flow record that the message belongs to; when a flow record containing the first information and the first identification is matched, judging the legality of the message according to connecting state information in the flow record, and filtering the message. The message filtering method, device and network device can reduce the operation for querying a route table in the process of message filtering and improve the performance of message forwarding of a firewall.

Description

technical field [0001] The embodiment of the present invention relates to firewall technology, and in particular to a message filtering method, device and network equipment. Background technique [0002] As an important network protection device, the firewall is widely deployed in every link of the network to filter the interactive packets between the internal network and the external network and block malicious attacks. The firewall filters packets by tracking the entire packet interaction process and judging the validity of the interaction packets in a certain context, rather than based on a single packet. Among them, the firewall records the context environment in the interaction process by creating a "flow" for the packets in the interaction process, and organizes and manages the flow in the form of a flow table. [0003] Usually, the byte element in the flow record only includes the five-tuple of source network protocol (Internet Protocol; referred to as: IP) address, ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L12/56H04L45/74
Inventor 黄凯明
Owner RUIJIE NETWORKS CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap