Unlock instant, AI-driven research and patent intelligence for your innovation.

A method and device for detecting message

A technology for detecting messages and messages, which is applied in the field of Internet communication and can solve problems such as inability to detect message security

Active Publication Date: 2015-11-25
浙江杭海新城控股集团有限公司
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In most large-scale enterprise networks at present, most of the networking technologies used are BGPMPLSIPVPN (bordergatewayprotocolmulti-protocollabelswitchingInternetProtocolVirtualPrivateNetwork, a protocol virtual private network for interconnection between border gateway protocol multi-protocol label switching networks). In the networking mode, the packet cannot be checked for security

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and device for detecting message
  • A method and device for detecting message
  • A method and device for detecting message

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0065] The embodiment of the present invention provides a method for detecting messages, such as figure 1 , the method includes:

[0066] Step 101: receiving a packet sent by a router, the packet carrying a private network label;

[0067] Step 102: According to the private network label and / or the quintuple carried by the message, it is determined that security detection needs to be performed on the message, and the private network label is removed from the message to obtain the mutual The protocol IP message of connection, described quintuple comprises source address, source port number, destination address, destination port number and protocol type;

[0068] Step 103: Send the IP packet to a security detection device, so that the security detection device performs security detection on the IP packet.

[0069] In the embodiment of the present invention, the edge router receives the message sent by the router, the message carries a private network label, and determines that ...

Embodiment 2

[0071] The embodiment of the present invention provides a method for detecting messages, such as figure 2 , the method includes:

[0072] Step 201: the first edge router receives a message sent by the router, and the message carries a private network label;

[0073] Specifically, the first edge router receives the packet sent by the backbone router or the edge router.

[0074] Among them, it is assumed that the first user terminal needs to send a message to the second user terminal. First, the first user terminal first sends the message to the second edge directly connected to it in the MPLS (multi-protocol label switching, multi-protocol label switching) network Router, the second edge router receives the message, determines the information of the VPN (VirtualPrivateNetwork, virtual private network) instance that the message belongs to according to the port that receives the message, and according to the information of the VPN instance that the message belongs to and the me...

Embodiment 3

[0100] The embodiment of the present invention provides a method for detecting messages, such as Figure 4 , the method includes:

[0101] Step 301: the first edge router receives the message sent by the router, the message carries a public network label and a private network label, and the public network label is nested outside the private network label;

[0102] Specifically, the first edge router receives the packet sent by the backbone router or the edge router.

[0103] Among them, it is assumed that the first user terminal needs to send a message to the second user terminal. First, the first user terminal first sends the message to the second edge directly connected to it in the MPLS (multi-protocol label switching, multi-protocol label switching) network Router, the second edge router receives the message, determines the information of the VPN (VirtualPrivateNetwork, virtual private network) instance that the message belongs to according to the port that receives the m...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a message detection method and device, and belongs to the field of the internet communication. The method comprises the following steps of: receiving a message sent by a router, wherein the message carries a private network label; according to the private network label and / or a quintuple carried by the message, determining that the message needs to be subjected to security detection; removing the private network label from the message to obtain an IP (internet protocol) message; and sending the IP message to security detection equipment so as to enable the security detection equipment to carry out security detection to the IP message. The device comprises a first receiving module, a first determining module and a first sending module. According to the invention, whether the message needs to be detected is determined after the label is removed from the message, so that the message which needs to be detected is sent to the security detection equipment for detecting, and an enterprise network which networks in a BGP (border gateway protocol) MPLS (multiple protocol label switching) IP VPN (virtual private network) mode can be used for carrying out security detection to the message.

Description

technical field [0001] The invention relates to the field of Internet communication, in particular to a method and device for detecting messages. Background technique [0002] An enterprise network is a private network or a virtual private network established within an enterprise and between an enterprise and its associated enterprises to provide services for the business activities of the enterprise. The emergence of the enterprise network has allowed many enterprises to separate departments or workgroup networks Interconnection with the enterprise network makes data access and information exchange within the enterprise more convenient. [0003] With the advent of the enterprise information age, more and more enterprises have their own enterprise networks. At the same time, the information security of enterprise networks has been paid more and more attention. In order to prevent enterprise networks from being threatened by security, it is necessary to Security checks are p...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/26H04L12/723H04L45/50
Inventor 章海刚
Owner 浙江杭海新城控股集团有限公司