Method of achieving IP address cheating prevention based on analysis of dynamic host configuration protocol (DHCP) message

A technology of DHCP messages and IP addresses, applied in electrical components, transmission systems, etc., can solve the problem of inability to obtain ACL lists, and achieve the effect of ensuring network security

Active Publication Date: 2013-01-16
FENGHUO COMM SCI & TECH CO LTD
View PDF4 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, in the current network application, the user's IP is usually obtained dynamically by using DHCP (Dynamic Host Configuration Protocol, Dynamic Host Configuration Protocol), which makes it impossible to obtain a static ACL list. How to solve this problem, the dynamic implementation To prevent IP address spoofing, it is necessary to closely link the creation of the ACL list and the dynamic acquisition of IP by the user.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method of achieving IP address cheating prevention based on analysis of dynamic host configuration protocol (DHCP) message
  • Method of achieving IP address cheating prevention based on analysis of dynamic host configuration protocol (DHCP) message
  • Method of achieving IP address cheating prevention based on analysis of dynamic host configuration protocol (DHCP) message

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0021] The present invention will be described in further detail below in conjunction with the accompanying drawings.

[0022] The present invention realizes the method for preventing IP address fraud based on parsing DHCP messages, such as figure 1 shown, including steps:

[0023] S1. The optical network terminal captures the forwarded DHCP message to the CPU, parses the registered DHCP message, and obtains the user IP address obtained by the ONU downlink user N , the user IP address IP N It is the IP address when the IP lease between the user and the DHCP server takes effect.

[0024] Among them, such as figure 2 As shown, the whole process of the user using the DHCP protocol to obtain an IP address for the first time, the user first sends a DHCP discovery message (DHCP discover message), this message is a broadcast message, and multiple DHCP servers on the network will reply To reply a message (DHCP offer message) to the user, the user will only select one of the DHCP ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

A method of achieving IP address cheating prevention based on analysis of DHCP message relates to the field of IP address cheating prevention in a passive optical network, comprising the following steps: S1, an optical network terminal captures the transferred DHCP message to the CPU, analyzes the registered DHCP message, and obtains a user IP address Intelligent Peripheral Node (IPN) that is obtained by an optical network terminal lower user, the user IP address IPN being an IP address when the user and DHCP server IP protocol officially take effect; S2, the optical network terminal generates an access control list from the user IP address IPN, then binds the access control list to a legal port, and simultaneously sets and intercepts the message from other user port, the source IP address of which is the user IP address IPN. The method dynamically acquires the legal IP address list of the user port and dynamically generates an IP address white list and black list of the port, which achieves the function of preventing IP address cheating.

Description

technical field [0001] The invention relates to the field of preventing IP address fraud on a passive optical network, and specifically relates to a method for preventing IP address fraud based on analyzing DHCP messages. Background technique [0002] GPON (Gigabit-Capable PON, gigabit passive optical network) technology is the latest generation of broadband passive optical integrated access standard based on the ITU-T G.984.x standard. It has many advantages and is considered by most operators to achieve An ideal technology for broadband and comprehensive transformation of access network services. The GPON system can provide users with multiple services such as data, voice, and IPTV, and truly realize the integration of the three networks. [0003] The Internet is full of various security threats, one of which is IP address spoofing. IP address spoofing technology is the technology of forging the IP address of a certain host. Through IP address masquerading, a certain hos...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/12
Inventor 钱凯吴军平刘新峰王信奎
Owner FENGHUO COMM SCI & TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap