Method and system for preventing address resolution protocol (ARP) gateway spoofing

A technology of ARP spoofing and ARP messages, which is applied in the field of computer data communication, can solve problems such as IP gateway ARP spoofing, and achieve the effect of alleviating CPU pressure and efficiently intercepting and blocking

Inactive Publication Date: 2012-07-04
北京神州数码云科信息技术有限公司
View PDF10 Cites 17 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The purpose of the present invention is to propose a method and system for preventing gateway ARP spoofing, which can solve the problem of IP gateway ARP spoofing in IP networks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for preventing address resolution protocol (ARP) gateway spoofing
  • Method and system for preventing address resolution protocol (ARP) gateway spoofing
  • Method and system for preventing address resolution protocol (ARP) gateway spoofing

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0027] The main idea of ​​the technical solution of the present invention is that the aggregation layer switch as the gateway encapsulates the IP address and MAC address mapping relationship of all three-layer interfaces into the mapping message, and sends it to the downlink access layer switch. The access layer switch enables ARP monitoring, and if it judges that the mapping relationship between the gateway IP address and MAC address carried in the received ARP message is inconsistent with the locally stored mapping relationship sent from the aggregation layer switch, it is considered to be a spoofed message. throw it away.

[0028] The technical solutions of the present invention will be further described below in conjunction with the accompanying drawings and through specific implementation methods.

[0029] figure 1 It is a schematic flowchart of a method for preventing gateway ARP spoofing provided by a specific embodiment of the present invention.

[0030] Such as fig...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and a system for preventing address resolution protocol (ARP) gateway spoofing. The method comprises the following steps that: a convergence-layer switch stores a mapping relationship between the Internet protocol (IP) address and media access control (MAC) address of each layer-three interface, and transmits the mapping relationship to an access-layer switch; the access-layer switch stores the mapping relationship in a mapping table, and enables an ARP monitoring function; and the access-layer switch receives an ARP message, discards the ARP message when the IP address of an ARP message transmission or receiving party is an IP address in the mapping table and the MAC address of the ARP message transmission or receiving party is inconsistent with a corresponding MAC address in the mapping table, and forwards the ARP message when the IP address of the ARP message transmission or receiving party is not the IP address in the mapping table. By the method and the system, the problem of ARP IP gateway spoofing in a network is solved; and the ARP monitoring function is devolved to the access-layer switch, so that the pressure of a central processing unit (CPU) of the convergence-layer switch is greatly alleviated.

Description

technical field [0001] The invention relates to the field of computer data communication, in particular to a method and system for preventing gateway ARP cheating. Background technique [0002] In an IP network, gateway spoofing through an address resolution protocol (Address Resolution Protocol, ARP) is a common attack method. By sending an ARP response, the attacking host replaces the MAC address of the gateway with the MAC address of the attacking host in the ARP response, thereby deceiving the ARP cache entries of other legitimate hosts on the IP network segment, and directing the IP traffic of the legitimate host to the gateway to attack host, resulting in abnormal network access. [0003] In order to avoid gateway ARP spoofing, some manufacturers' devices regularly update the gateway ARP cache entries of the hosts on the network segment by sending gratuitous ARP regularly. This method cannot completely avoid gateway ARP spoofing, and the attacking host can deceive le...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/12H04L12/56H04L45/60
Inventor 梁小冰
Owner 北京神州数码云科信息技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap