Protection method and device for domain name resolution

A protection device and domain name resolution technology, applied in the Internet field, can solve the problems of long time, low efficiency and high cost, and achieve the effect of avoiding serious threats, ensuring usage requirements, and reducing server pressure.

Pending Publication Date: 2017-03-08
OPZOON TECH
View PDF0 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Although the above methods can effectively avoid domain name server downtime and other hazards caused by domain name resolution request flood attacks, when this attack occurs, domain name resolution request packets of some normal users may also be intercepted
Moreover, this defense method has defects such as high cost, low efficiency, and long time consumption.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Protection method and device for domain name resolution
  • Protection method and device for domain name resolution
  • Protection method and device for domain name resolution

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0028] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in combination with specific embodiments and with reference to the accompanying drawings. It should be understood that these descriptions are exemplary only, and are not intended to limit the scope of the present invention. Also, in the following description, descriptions of well-known structures and techniques are omitted to avoid unnecessarily obscuring the concept of the present invention.

[0029] In the embodiment of the present invention, the execution subject of the protection method is a firewall device with a domain name resolution request flood defense function, which is set between the client and the domain name server in the network architecture to intercept the domain name sent by the client to the domain name server Parse the request message. Such as figure 1 As shown, the network architecture of...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention discloses a protection method and a protection device for domain name resolution, and belongs to the technical field of Internet. The protection method comprises the steps of counting a number of times receiving a first domain name resolution request; judging whether the number of times of the first domain name resolution request exceeds a threshold; when the number of times of the first domain name resolution request exceeds the threshold, a response message carrying a TCP connection identifier information is returned; and when a second domain name resolution request sent based on a TCP connection is received, forwarding the second domain name resolution request. According to the method and the device provided by the invention, hostile attack behaviors can be effectively intercepted, and a use requirement of the normal query user are met is ensured.

Description

technical field [0001] The embodiment of the present invention relates to the technical field of the Internet, in particular to a method and device for protecting domain name resolution. Background technique [0002] Domain Name Resolution System, referred to as DNS, can help users access the Internet more conveniently. Due to the existence of DNS, Internet users can directly use the domain name when visiting the website, instead of remembering the IP address used by the website. The act of finally finding the corresponding IP address through the domain name is called domain name resolution. [0003] DNS queries are usually based on the UDP protocol, so there is no verification mechanism in the DNS query process, which is easily exploited by hackers. Domain name resolution request flooding is a relatively common DNS attack behavior in the industry. The principle is that the hacker controls the botnet to send a large number of non-existent domain name resolution requests t...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/12
CPCH04L63/0236H04L63/1441H04L61/4511
Inventor 张辉
Owner OPZOON TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap