IPSEC (internet protocol security) VPN (virtual private network) device, isolation method thereof and isolation system thereof

A technology for isolating systems and equipment, applied in the field of information security

Active Publication Date: 2014-05-21
ELECTRIC POWER RES INST OF GUANGDONG POWER GRID
View PDF5 Cites 19 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Based on this, it is necessary to provide a very effective IPSEC VPN device and its isolation method for the problem that the existing IPSEC VPN equipment cannot achieve very effective isolation protection. Some internal networks with high security requirements need isolation protection. And the system to meet the needs of some internal network isolation protection with high security requirements

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • IPSEC (internet protocol security) VPN (virtual private network) device, isolation method thereof and isolation system thereof
  • IPSEC (internet protocol security) VPN (virtual private network) device, isolation method thereof and isolation system thereof
  • IPSEC (internet protocol security) VPN (virtual private network) device, isolation method thereof and isolation system thereof

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0039] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific implementations described here are only used to explain the present invention, not to limit the present invention.

[0040] Such as figure 1 , figure 2 Shown, a kind of isolation method of IPSEC VPN equipment is characterized in that, comprises steps:

[0041] The same IP mapping table is maintained in the internal host and the external host, wherein the IP mapping table is a hash linked list, and the hash linked list defines the source address of the IP mapping table index INDEX and the data packet, the destination address and IP mapping ID information.

[0042] The IP mapping table is maintained and stored at both ends of the internal host and the external host, and the storage in the internal and externa...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides an IPSEC (internet protocol security) VPN (virtual private network) device, an isolation method thereof and an isolation system thereof. The device comprises an inner end host, an outer end host and a non-network isolation card, the inner end host and the outer end host respectively maintain the same IP (internet protocol) mapping table, each table entry defines information such as a primary address, a destination address and IP mapping ID (identity), a data packet realizes network isolation by modes such as IP head stripping and recombination, IP mapping table search and filtering, private protocol capsulation and decapsulation and non-network isolation card transmission, an IPSEC VPN network data packet is encrypted and decrypted on an internal network host by the data packet, the device can resist malicious attack behaviors and transmission of viruses, Trojans and malicious plug-ins, security isolation in connection of an internal network and an external network is really achieved, higher-strength security protection for the internal network, the IPSEC VPN device and the network service data packet is realized, and the IPSEC VPN isolation device is high in security degree.

Description

technical field [0001] The invention relates to the technical field of information security, in particular to IPSEC VPN equipment and its isolation method and system. Background technique [0002] IPSec is an open IP layer security framework protocol developed by the Internet Engineering Task Force, which provides transparent security services for IP network communications, protects TCP / IP communications from eavesdropping and tampering, and can effectively resist network attacks while maintaining ease of use. IPSEC technology has been widely popularized and applied to gateway devices. Using IPSEC tunneling technology, encryption technology and authentication technology, a virtual private network is built on the public network, and data is transmitted on a secure channel, so as to ensure communication security and confidential information. Purpose. [0003] Generally, IPSEC VPN equipment is deployed between the internal network and the external network. The IPSEC VPN equipm...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 胡朝辉梁智强江泽鑫梁志宏陈炯聪黄曙余南华林丹生李闯石炜君梁毅成黄岳峰
Owner ELECTRIC POWER RES INST OF GUANGDONG POWER GRID
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap