Transmission control protocol (TCP) connection processing method and system and synchronization (SYN) agent equipment

A processing method and technology of proxy equipment, applied in the field of network security, can solve the problem of inability to effectively defend against TCP full connection attacks, and achieve the effect of improving security

Inactive Publication Date: 2010-07-07
RUIJIE NETWORKS CO LTD
View PDF4 Cites 31 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Embodiments of the present invention provide a TCP connection processing method, system, and SYN proxy device to solve the problem of controlling the establishment of a TCP connection through a SYN proxy in the prior a

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Transmission control protocol (TCP) connection processing method and system and synchronization (SYN) agent equipment
  • Transmission control protocol (TCP) connection processing method and system and synchronization (SYN) agent equipment
  • Transmission control protocol (TCP) connection processing method and system and synchronization (SYN) agent equipment

Examples

Experimental program
Comparison scheme
Effect test

Example Embodiment

[0021] In order to make the objectives, technical solutions, and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be described clearly and completely in conjunction with the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of the embodiments of the present invention, not all the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative work shall fall within the protection scope of the present invention.

[0022] figure 1 It is a flowchart of Embodiment 1 of the TCP connection processing method of the present invention, such as figure 1 As shown, this embodiment specifically includes the following steps:

[0023] Step 100: After receiving the first synchronization message sent by the client terminal for requesting to establish the first T...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides transmission control protocol (TCP) connection processing method and system and synchronization (SYN) agency equipment. The TCP connection processing method comprises the following steps of: receiving a first synchronization message sent by a client and used for requesting to establish first TCP connection with a server, and establishing second TCP connection with the client; and after the second TCP connection is established, if an access request message is sent by the client, controlling the establishment of the first TCP connection, and transmitting the access request message to the server. The invention improves SYN agency and starts to establish the connection with the sever only after the access request message sent by the client is received again when the SYN agency and the client complete three times of TCP hand shaking connection, thereby ensuring that the attack of TCP full-connection can not reach the server; and in addition, the invention enables that the server not only well defenses the attack of SYN FLOOD, but also avoids the attack of the TCP full-connection, thereby enhancing the safety of the WEB server.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a TCP connection processing method, system and SYN agent equipment. Background technique [0002] With the increase in Internet bandwidth and the continuous release of hacking tools, distributed denial of service [0003] (Distributed Denial of Service, referred to as DDOS) attack incidents are increasing, which has brought great troubles to network servers and customers. Synchronous flood attack (synchronous flood, referred to as SYN FLOOD) is a relatively common device in DDOS attacks and is an effective one. The interaction of the three-way handshake information simulates that the client sends a TCP connection request to the server to request the establishment of a TCP connection, but after the server returns a response packet, it does not return the confirmation information as a response to the server, so that the server does not respond to the TCP connection. The ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L29/08
Inventor 黄凯明
Owner RUIJIE NETWORKS CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap