Unlock instant, AI-driven research and patent intelligence for your innovation.

A method and system for implementing port security

A technology of port security and implementation method, which is applied in the field of data communication to achieve the effect of preventing excessive

Active Publication Date: 2017-11-10
MAIPU COMM TECH CO LTD
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The technical problem to be solved by the present invention is to provide a method and system for implementing port security in order to overcome the problem of compatibility between port security rules and different operating system terminals in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and system for implementing port security
  • A method and system for implementing port security
  • A method and system for implementing port security

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0041] The present invention will be further elaborated below in conjunction with the accompanying drawings and specific embodiments.

[0042] Such as figure 1 Shown is a system block diagram of a method for implementing a port security IP-MAC rule in an embodiment of the present invention, including:

[0043] Enable the port security function of the switch port, and disable the ability of the port hardware to learn the MAC (Media Access Control, Media Access Control) address;

[0044] Configure the port security IP-MAC rule on the port of the switch; the IP-MAC rule refers to a rule that includes an IP address and a MAC address;

[0045]If the state of the switch port is up when configuring the IP-MAC rule or after configuring the IP-MAC rule, the switch port sends an ARP (Address Resolution Protocol, Address Resolution Protocol) request message and according to the received ARP message content and The configured port security IP-MAC rules are matched, and corresponding act...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method and system for achieving safety of a port. The method mainly comprises the steps of enabling a switch port to obtain the port safety function, and closing the capacity that the port performs hardware learning on the MAC address; configuring the port safety IP-MAC rule to the switch port; if the state of the switch port is up when the IP-MAC rule is configured or after the IP-MAC rule is configured, sending an ARP message by the switch port, performing matching according to the content of the received ARP message and the configured port safety IP-MAC rule, and executing motion on MAC table items in an FDB table. According to the method and system, the problems existing in the port safety and compatibility between various operation systems can be solved well, meanwhile, the problem that the MAC address table is too large can be solved, and in the practical application, the application of banks or other financial systems in the safety access control strategy can be effectively achieved.

Description

technical field [0001] The invention belongs to the technical field of data communication, and relates to a method and a system for realizing port security rules. Background technique [0002] In industries with strict access security access control, such as the financial industry, in order to implement security access control, the port security function is usually enabled on the access switch for security access control. Only allowed specific hosts can access the network, and unallowed hosts are prohibited from accessing the network. [0003] After the port security module is implemented on the access layer switch, if the port security MAC (MediaAccess Control, Media Access Control) rule is implemented, the phenomenon that the user can change the IP address at will cannot be controlled; if the maximum number rule is implemented, then It is impossible to carry out security control for a specific terminal; however, the IP-MAC rule of port security solves the above two proble...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12
Inventor 张隆伟王文科
Owner MAIPU COMM TECH CO LTD