Local agent method of WEB firewall

A firewall, local technology, applied in the field of web proxy, can solve the problems of proxy performance decline, proxy engine heavy load, web application firewall memory increase, etc., to achieve the effect of improving performance, reducing load, and improving throughput performance

Inactive Publication Date: 2015-10-21
西安交大捷普网络科技有限公司
View PDF6 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] In the web application firewall, the web proxy engine is the core of web protection. When the amount of concurrent visits is large, the memory of the web application firewall may increase sharply, and at the same time, the load of the proxy engine is very heavy, which in turn leads to a sharp drop in proxy performance. Seriously affect the normal access of the website, so the support for large concurrent access is the key to the current web firewall

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Local agent method of WEB firewall

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0015] The present invention will be described in detail below with reference to the accompanying drawings and specific embodiments.

[0016] The embodiment of the present invention provides a local proxy method for a WEB firewall, such as figure 1 As shown, the method is implemented by the following steps:

[0017] Step 101: the client establishes the first connection with the proxy engine of the WEB firewall, the proxy engine of the WEB firewall establishes the second connection with the server, and the proxy engine of the WEB firewall sends the four-tuple information of the two connections To the protocol stack of the WEB firewall.

[0018] Specifically, two tcp connections need to be established between the proxy engine and the client and the server. When the two connections are successfully established, the protocol stack will be notified of the quadruple information corresponding to the two connections, so that the protocol stack can recognize Know the correspondence b...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a local agent method of a WEB firewall. First connection is established between a client side and an agent engine of the WEB firewall, second connection is established between the agent engine of the WEB firewall and a server, and the agent engine of the WEB firewall sends quadruple information connected for two times to a protocol stack of the WEB firewall; the protocol stack of the WEB firewall records a request data package which receives the first connection, the agent engine performs rule detection, and, when the request data package is a non-attack package, connection is established between the web engine and a server side, and data package sending is performed; and, after the protocol stack of the WEB firewall determines that the data package transmitted back by the server side is a response data package of the second connection, and the response data package is directly sent to the client side after the response data package is modification check. The local agent method can effectively improve great concurrent access lower agent engine performance, and effectively reduce a load of the gent engine.

Description

technical field [0001] The invention belongs to the technical field of web proxy, in particular to a local proxy method of a WEB firewall. Background technique [0002] With the abundance of Web applications, various attack tools continue to be common and powerful, and there are more and more security risks on the Internet. As the customer's core business systems become more reliant on the network, the number of Web application attack incidents will continue to grow, and the severity of losses will also increase sharply. Therefore, all kinds of organizations such as governments and enterprises must have measures to protect their investments, profits and services. [0003] Under normal circumstances, when using a web browser to directly connect to other Internet sites to obtain network information, it directly contacts the destination site server, and then the destination site server sends the information back. The proxy server is another server between the client and the w...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/02H04L63/0281H04L67/02
Inventor 焦小涛陈晓兵何建锋陈宏伟
Owner 西安交大捷普网络科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap