A method and device for preventing ddos attack
A DDOS and purpose technology, applied in the field of preventing DDOS attacks, can solve the problems of target AS domain network attacks, low efficiency, and heavy workload of manually changing the routing of data streams
Active Publication Date: 2018-04-20
CHINA UNITED NETWORK COMM GRP CO LTD
View PDF6 Cites 0 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
[0004] However, if a dedicated traffic cleaning device is deployed in the destination AS domain network, major changes need to be made to the topology structure of the destination AS domain network, device interfaces in the destination AS domain network, and even the process of managing the destination AS domain network. Before the traffic cleaning device cleans the data flow, the destination AS domain network may have been attacked by data flow, causing the destination AS domain network to be paralyzed.
Furthermore, different AS domain networks may belong to different operators or even different countries. If the route of data flow is manually changed to prevent DDOS from attacking the target AS domain network, there is a large workload of manually changing the route of data flow. The efficiency is low, and there is a risk of misoperation, etc.
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0027] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.
[0028] Embodiments of the present invention provide a method for preventing DDOS attacks, which are applied to source routers, such as figure 1 shown, including:
[0029] Step 101, send the data flow to the destination router.
[0030] Step 102: Receive an application blocking message sent by the destination router, the application blocking message includes the destination Internet Protocol IP address accessed by the data flow, and the application blocking me...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The embodiment of the invention provides a method and a device for preventing a DDOS (Distributed Denial of Service) attack, and relates to the field of communication. Under the condition that the topological structure of an AS (Autonomous System) domain network does not need to be changed, the routing can be automatically changed through a router in an original AS domain network, so that the DDOS attack for the AS domain network is prevented. The method comprises the following steps: sending a data flow to a target router by the original router; receiving application prevention information sent by the target router; updating the first routing to obtain second routing. The method and the device for preventing the DDOS attack are used for preventing the DDOS attack at the end of an attack source.
Description
technical field [0001] The invention relates to the communication field, in particular to a method and device for preventing DDOS attacks. Background technique [0002] At present, DDOS (Distributed Denial of Service, Distributed Denial of Service) attack is one of the most common and most harmful attack forms existing in AS (Autonomous System, Autonomous System) domain network. First, the attacker will control a large number of puppet computers in the source AS domain network, and combine multiple puppet computers as an attack platform. Some of the puppet computers can be set as the main control terminal, and then the attacker sends the attack command through the main control terminal. To all the puppet computers, finally, all the puppet computers send data streams to the destination AS domain network, and carry out DDOS attacks on the servers in the destination AS domain network, which will cause the server in the destination AS domain network to overload or crash, and eve...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
Inventor 马铮王光全夏俊杰朱安南白晓媛唐磊贾亦辰高枫俞播
Owner CHINA UNITED NETWORK COMM GRP CO LTD