Unlock instant, AI-driven research and patent intelligence for your innovation.

Message processing method, device and network security equipment

A message processing and message technology, applied in the field of communication, can solve problems such as affecting system throughput and system performance degradation, and achieve the effect of improving system throughput rate and high system performance

Active Publication Date: 2014-03-12
BEIJING XINWANG RUIJIE NETWORK TECH CO LTD
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] However, in the prior art, a complete policy matching and review process is required for the packets of the attack flow. When the number of attack flows is large, the system performance will decrease, thereby affecting the overall system throughput.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Message processing method, device and network security equipment
  • Message processing method, device and network security equipment
  • Message processing method, device and network security equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0022] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0023] figure 1 It is a flowchart of Embodiment 1 of the message processing method of the present invention, such as figure 1 As shown, this embodiment provides a message processing method, which may specifically include the following steps:

[0024] Step 101, when receiving the first packet of a session flow, create a session flow entry for the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a message processing method, device and network security equipment, wherein the method comprises the steps of: when a first message of a session flow is received, establishing a session flow table entry for the session flow and adding the index of the session flow table entry to a universal flow hash table; performing policy matching and verification on the session flow in order to judge whether the session flow is legal or illegal; and when the session flow is illegal, adding the index of the session flow table entry to a recovery auxiliary table and updating the policy matching and verification results of the illegal session flow to the session flow table entry. The device comprises an establishment module, a verification module and an addition module. The network security equipment comprises the message processing device above. According to the method and the device, the depletion of the resource of flow table entry when the number of attack flows is larger is avoided, and simultaneously, high system performances are maintained.

Description

technical field [0001] The present invention relates to communication technology, in particular to a message processing method, device and network security equipment. Background technique [0002] In network security equipment, the session flow state tracking technology is generally used to monitor and manage the communication flow passing through the equipment, so as to identify and block specific untrusted communication flow. Under the framework of this session flow state tracking technology, the processing process of a message is as follows: for the first message of the session flow, create a new session flow entry and add it to the flow table; Match and audit, and update the processing policy to the session flow entry. For the non-first packet, if the session flow information is already stored in the flow table, the flow table is directly searched to obtain and execute the processing policy of the session flow. In the above message processing process, there may be many...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/70H04L47/20
Inventor 陈平平
Owner BEIJING XINWANG RUIJIE NETWORK TECH CO LTD