Method and device for preventing ARP cheating and network access server

A technology of ARP spoofing and ARP entry, applied in electrical components, transmission systems, etc., to solve problems such as heavy management workload, network deployment restrictions, and DHCP spoofing.

Active Publication Date: 2014-08-27
BEIJING XINWANG RUIJIE NETWORK TECH CO LTD
View PDF5 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

If the mapping database in the solution of the prior art is statically configured, it is not flexible enough and the management workload is huge; if it is automatically generated through Dynamic Host Configuration Protocol (Dynamic Host Configuration Protocol, referred to as: DHCP) sniffing, all access NAS terminals must obtain IP addresses through DHCP, which has great restrictions on network deployment, and there is also the possibility of DHCP being spoofed when using DHCP

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for preventing ARP cheating and network access server
  • Method and device for preventing ARP cheating and network access server
  • Method and device for preventing ARP cheating and network access server

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0045] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0046] figure 1 It is a flow chart of Embodiment 1 of the method for preventing ARP spoofing in the present invention. The method provided in this embodiment can be specifically executed by the NAS, such as figure 1 As shown, the method provided in this embodiment may include:

[0047] Step 101. Obtain the message information of the received fi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention provides a method and device for preventing ARP cheating and a network access server. The method comprises the steps that message information of an obtained first message is recorded in a first forwarding database; when a user knows that a source IP address corresponding to source IP address information of the first message does not exist in an authenticated database, the source IP address is added to the authenticated database; a static ARP table item corresponding to the source IP address is added to an ARP database; a second message is sent to a physical port corresponding to physical port information according to the physical port information, corresponding to the source IP address table item, in the first forwarding database, so that a browser corresponding to the source IP address skips to have access to a web authentication server to carry out web authentication, wherein the second message is a redirect message of the first message. Therefore, the purpose that ARP cheating is prevented in the web authentication process is achieved.

Description

technical field [0001] The present invention relates to a communication technology, in particular to a method and device for preventing address resolution protocol (Address Resolution Protocol, abbreviated: ARP) spoofing, and a network access server (Netwoek Access Server, abbreviated: NAS). Background technique [0002] Network (web) authentication is an identity authentication method based on Hyper Text Transfer Protocol (Hyper Text Transfer Protocol, referred to as: HTTP) technology to control the user's access to the network. Usually, unauthenticated users need to use a browser before accessing the network. Open a site, and the NAS with the identity authentication function will force the browser to access the web authentication server, that is, the Portal server. The user enters the identity information on the page pushed by the Portal server through the browser for identity authentication. Only after the authentication is passed can the network resources be used. . [...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 郑伟忠
Owner BEIJING XINWANG RUIJIE NETWORK TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap