Defense method for domain name system server buffer infection and network outlet equipment

A technology for exporting equipment and domain name systems, applied in transmission systems, electrical components, etc., to solve problems such as cache infection

Inactive Publication Date: 2010-09-08
BEIJING LEADSEC TECH
View PDF4 Cites 37 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] However, in practical applications, the DNS server may obtain an illegal IP address, that is, obtain an IP address that does not correspond to a domain name, and store the corresponding relationship between the domain name and the illegal IP address in the cache. This phenomenon is called caching. Infect

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Defense method for domain name system server buffer infection and network outlet equipment
  • Defense method for domain name system server buffer infection and network outlet equipment
  • Defense method for domain name system server buffer infection and network outlet equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0015] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0016] In order to enable those skilled in the art to clearly understand the present invention, the network environment where the present invention is applied and some technical points involved are described first.

[0017] like figure 2 As shown, a network egress device is set between the client and the DNS server. The network egress device can be set at the egress of the LAN where the client is located.

[0018] The network egress device may have the function ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a defense method for DNS (Domain Name System) server buffer infection, which is applicable for a network environment in which network outlet equipment is arranged between a client and a DNS server. The method comprises the following steps that the network outlet equipment determines a domain name to be analyzed, requests a plurality of DNS servers to analyze the domain names, acquires IP addresses which are returned by the DNS servers and correspond to the domain names and provides the IP addresses corresponding to the domain names aiming at the request transmitted by the client for analyzing the domain names. The invention also provides the network outlet equipment. The invention can avoid the phenomenon that the DNS servers provide illegal IP addresses for the client under the condition that the DNS server buffer is infected, so that the client accesses to network entities corresponding to the illegal IP addresses.

Description

technical field [0001] The invention relates to the domain name resolution technology, in particular to a defense method for domain name system (DNS, Domain NameSystem) server cache infection. Background technique [0002] Currently, people usually use a domain name (eg www.ABC.com) to access the web. Entities in the network generally identify each other through IP addresses. In order to ensure that people can access the network through the domain name, the network needs to convert the domain name to the IP address of one or some entities. This conversion work is generally called domain name resolution. Domain name resolution can be completed by a dedicated server, and the server that completes domain name resolution is generally called a DNS server. [0003] Combine below figure 1 , briefly introduce the process of domain name resolution. like figure 1 As shown, the client sends a request message carrying a domain name to the DNS server (step 1), and the DNS server sea...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/12
Inventor 张斌
Owner BEIJING LEADSEC TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap