Method and device for tracing source of internet protocol (IP) address after network address translation (NAT)

A technology of IP address and source port, applied in the network field, can solve the problems of high system overhead, consumption of large storage resources, consumption of CPU resources, etc., and achieve the effect of saving system overhead

Active Publication Date: 2012-11-07
SANGFOR TECH INC
View PDF3 Cites 37 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] However, the method of regularly analyzing NAT logs in the traditional technology needs to store the NAT logs, which will consume a large amount of storage resources, and q

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for tracing source of internet protocol (IP) address after network address translation (NAT)
  • Method and device for tracing source of internet protocol (IP) address after network address translation (NAT)
  • Method and device for tracing source of internet protocol (IP) address after network address translation (NAT)

Examples

Experimental program
Comparison scheme
Effect test

Example Embodiment

[0036] In one embodiment, such as figure 1 As shown, an IP address traceability method after NAT includes:

[0037] Step S102: Obtain the data packet, and extract the docking IP and docking port of the data packet after NAT conversion.

[0038] The data packet is a data packet after NAT conversion. Usually, the NAT conversion process can occur in the router at the interface between the internal network and the external Internet. Before the data packet undergoes NAT translation, the header part contains the source IP address of the terminal sending the data packet and the source port of the router receiving the data packet. After the router performs NAT translation on the data packet, it forwards the data packet to the external network address. At this time, the header of the data packet contains the NAT-translated docking IP and docking port, that is, the external network IP and port of the router (NAT translation device).

[0039] Step S104, searching for a mapping record correspo...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a method and a device for tracing a source of an internet protocol (IP) address after network address translation (NAT). The method includes: obtaining a data packet and extracting a connecting IP and a connecting port of the data packet after the NAT; finding mapping record corresponding to the connecting IP and the connecting port in a preset NAT mapping table; and obtaining a source IP address of the data packet according to the mapping record. In addition, the device for tracing the source of the IP address after the NAT is included. By means of the method and the device for tracing the source of the IP address after the NAT, system expenditure can be reduced.

Description

technical field [0001] The invention relates to the field of network technology, in particular to a method and device for tracing the source of an IP address after NAT. Background technique [0002] NAT (Network Address Translation) is the process of converting the source IP address and source port in the IP packet header into different docking IP addresses and docking ports. In practical applications, NAT is mainly used to enable private networks to access public networks. NAT devices are usually set at the interface between the internal network of an enterprise or organization and the external Internet, thereby saving IP resources. [0003] With the improvement of network security awareness, enterprises or organizations have more and more requirements for the supervision of internal network users to send information through the Internet. To meet the relevant requirements of the organization for network behavior records and avoid possible regulatory risks, it is necessary...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/12
Inventor 张兴彦李海柳
Owner SANGFOR TECH INC
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap