Unlock instant, AI-driven research and patent intelligence for your innovation.

Packet forwarding method and device

A forwarding method and forwarding device technology, which are applied in data exchange networks, digital transmission systems, electrical components, etc., can solve the problem of frequent oscillation of firewall forwarding systems, and achieve the effect of eliminating oscillation and stable performance.

Active Publication Date: 2013-05-08
BEIJING TOPSEC TECH
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The problem to be solved by the present invention is to provide a data packet forwarding method and device to overcome the defect that the firewall forwarding system will frequently oscillate in the prior art in a network environment where ARP changes frequently

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Packet forwarding method and device
  • Packet forwarding method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0015] The specific implementation manners of the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. The following examples are used to illustrate the present invention, but are not intended to limit the scope of the present invention.

[0016] A data packet forwarding method according to an embodiment of the present invention is as follows: figure 1 As shown, the firewall forwarding system receives the data packet. If the session is found, it compares the ts_policy_age / ts_neigh_age recorded in the session with the global policy_age / neigh_age. If the two are not equal, it determines whether the ts_neigh information recorded in the session has been modified. , if it has not been modified, it will be forwarded directly. refer to figure 1 , this embodiment includes the following steps:

[0017] Step s101, receiving a data packet.

[0018] Step s102, check whether there is a session corresponding to the da...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a packet forwarding method which includes: A, the packet is received; B, when the strategic age recorded in the connection corresponding to the packet is equal to the overall strategic age, and the neighbor age recorded in the connection is unequal to the overall neighbor age, the neighbor information recorded in the connection is judged if the information is modified, if so, the step C is executed, else the step D is executed; C, the access strategy of the packet is matched, the connection is established, the route address is inquired, and the RARP is recorded in the connection, and the overall strategic age and the neighbor age values are recorded in the connection; D, the packet is forwarded. The invention also discloses a packet forwarding device. The inventioneliminates the firewall forwarding system shock caused by ARP changes in network environment, and enables the firewall forwarding system to be more stable and reliable.

Description

technical field [0001] The invention relates to the technical field of firewalls, in particular to a data packet forwarding method and device. Background technique [0002] Current firewall systems are based on stateful inspection technology. The firewall matches the access policy after receiving the packet. If the policy allows it to pass, it establishes a session (connection) and forwards it out, and records the current policy_age (policy age) into the session, where the session consists of source address, source port, and destination address , the destination port, and the protocol number are determined, and policy_age is a global variable used to record the number of times the access policy has been modified. After receiving subsequent packets belonging to this session, the firewall compares the policy age and policy_age recorded in the session. If they are equal, they will forward them directly without matching the access policy; if they are not equal, they will re-mat...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/721H04L12/741H04L45/74
Inventor 王震
Owner BEIJING TOPSEC TECH