Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method enabling single service port to realize multiple network protocol agents

A service port and network protocol technology, which is applied in the field of multiple network protocol agents on a single service port, and can solve problems such as scanning, sniffing and attacking

Inactive Publication Date: 2014-02-26
SUNSI BEIJING SCI & TECH CO LTD
View PDF0 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The operation and maintenance bastion machine should have strong attack resistance, because the operation and maintenance bastion machine is a single point of failure, once it is compromised, all the nodes it manages may be exposed, bringing huge security risks
At present, most of the operation and maintenance bastion hosts adopt the working method of network protocol proxy, and there is a common problem of opening multiple network service ports, such as 3389, 21, 22, 23 and other high-risk ports, which are easy to be scanned, sniffed and attacked by malicious attackers

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method enabling single service port to realize multiple network protocol agents

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0024] like figure 1 As shown, the single service port of the present embodiment realizes the method for multiple network protocol agents, including the following steps:

[0025] Step 101 represents the start of the process.

[0026] Step 102 represents that the client generates and initiates a start request to a designated single service port. The start request generated by the client mainly includes the user id.

[0027] Step 103 represents that the server responds to the start request. The server side generates relevant startup parameters required for startup for the client side.

[0028] Step 104 represents that the client initiates an access request to a designated single service port. The client generates an access request based on the received startup parameters and sends it to the server.

[0029] Step 105 is a judgment. The server judges whether it is the local address of the access server according to the address parameter in the access request initiated by the ...

Embodiment 2

[0037] The single service port of the present embodiment realizes the method for multiple network protocol agents, comprising the following steps:

[0038] Step 101 represents the start of the process.

[0039] Step 102 represents that the client generates and initiates a start request to a designated single service port.

[0040] Step 103 represents that the server responds to the start request. The server side generates relevant startup parameters required for startup for the client, and the startup parameters include a session ID.

[0041] Step 104 represents that the client initiates an access request to a designated single service port. The client generates an access request according to the received startup parameters and sends it to the server. The access request includes a session ID.

[0042] Step 105 is a judgment. The server judges whether it is the local address of the access server according to the address parameter in the access request initiated by the client...

Embodiment 3

[0050] Step 101 represents the start of the process.

[0051] Step 102 represents that the client generates and initiates a start request to a designated single service port.

[0052] Step 103 represents that the server responds to the start request. The server side generates relevant startup parameters required for startup by the client, and the startup parameters include session ID and server address.

[0053] Step 104 represents that the client initiates an access request to a designated single service port. The client generates an access request according to the received startup parameters and sends it to the server. The access request includes the session id and the address of the destination device.

[0054] Step 105 is a judgment. The server judges whether it is the local address of the access server according to the address parameter in the access request initiated by the client. If yes, proceed to step 106; otherwise, proceed to step 107.

[0055] Step 106 is a jud...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a method enabling a single service port to realize multiple network protocol agents, namely, a method for realizing network protocol agents. The method can effectively reduce network security risks brought by opening multiple service ports. The method comprises the following steps that: (1) process is started; (2) a client end generates and initiates a start request to a specified single service port; (3) a server end responds to the start request; (4) the client end initiates an access request to the specified single service port; (5) the server end judges whether to access the local address of a server according to an address parameter in the access request initiated by the client end; (6) the server end judges whether to access other ports except the specified single service port according to parameters such as a port parameter in the access request initiated by the client; and (7) the server end executes network protocol agent operation according to the address and port parameters as well as a protocol name in the request of the client, and forwards the request to corresponding target operation and maintenance equipment.

Description

technical field [0001] The invention relates to a network protocol proxy method, in particular to a single service port to realize multiple network protocol proxy methods. Background technique [0002] The operation and maintenance bastion machine is a network security audit device with functions such as operation and maintenance personnel identity management, operation and maintenance access control, operation and maintenance operation audit trail, and operation and maintenance compliance report generation. It plays an important role in the field of IT internal control and operation and maintenance risk management. An important role is usually deployed in front of core resources such as servers and network devices in the intranet. It controls the operation authority of the operation and maintenance personnel and audits the operation behavior. Behavior is controlled and audited. [0003] The operation and maintenance bastion machine acts as a fortress between operation and ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 张全林
Owner SUNSI BEIJING SCI & TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com