Method and system for domain name resolution server to resist flooding attacks of DNS (Domain Name System) request reports

A domain name server and domain name resolution technology, which is applied in the field of defending DNS request message flooding attacks. Effects of flooding attacks

Active Publication Date: 2010-12-22
CHINANETCENT TECH
View PDF3 Cites 34 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] When attacking, attackers often send a large number of domain name resolution requests in an instant, causing the bandwidth of the DNS server to be exhausted, or the system resou

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for domain name resolution server to resist flooding attacks of DNS (Domain Name System) request reports
  • Method and system for domain name resolution server to resist flooding attacks of DNS (Domain Name System) request reports
  • Method and system for domain name resolution server to resist flooding attacks of DNS (Domain Name System) request reports

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0042] The present invention will be further described below in conjunction with the accompanying drawings and embodiments.

[0043] Embodiment of the method for resisting DNS request message flood attack of domain name resolution server

[0044] figure 2 An embodiment of the method for resisting DNS request message flood attack of the domain name resolution server of the present invention is shown. See figure 2, each step of the method of this embodiment is as follows.

[0045] Step S10: Multiple domain name resolution servers are formed into a server cluster, and these domain name resolution servers in the server cluster share one IP address.

[0046] This can improve the service capability of the server cluster, and the server cluster is dynamically changing, and a certain domain name resolution server can be added to the server cluster at any time. In addition, the server cluster can automatically detect whether the domain name resolution server in the cluster is a...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and a system for a domain name resolution server to resist the flooding attack of DNS (Domain Name System) request messages, which can effectively resist the flooding attacks of the DNS request messages, protect the domain name resolution server, and ensure the normal operation of domain name resolution. In the technical scheme, the method comprises the steps of: combining a plurality of domain name resolution servers into a server cluster which shares one IP address; timely monitoring the service parameters and the cluster service availability of all the domain name resolution servers by a monitoring server, and reporting the service parameters and the cluster service availability to a control server; determining whether attacks exist or not by the control server according to the collected service parameters and cluster service availability of the domain name resolution server; if so, adjusting the domain name resolution server and notifying a refreshing server; and refreshing the domain name resolution server information cached by a public network domain name server by the refreshing server so as to ensure that the adjustment of the domain name resolution server takes effect.

Description

technical field [0001] The present invention relates to a computer network, in particular to a method for pulling DNS (Domain Name Server, Domain Name Server) request message flood attack by timely adjusting and refreshing domain name resolution server information, so as to achieve the goal of resisting DNS request message flood attack Purpose. Background technique [0002] Each host on the Internet has one or more unique IP addresses on the entire network. These hosts use these IP addresses to transmit information, similar to telephone numbers in our daily life. With more and more network applications, the number of hosts in the network is also increasing, and the boring digital form of IP address is difficult to remember, and people can't remember many IP addresses at all, so the Domain Name System (DNS) appeared ), the domain name system is a distributed database for TCP / IP applications, which provides conversion between domain names and IP addresses. Through the domain ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L29/12H04L12/26
Inventor 洪珂吴振永牛荣利
Owner CHINANETCENT TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap