Fast HTTP redirection method

A redirection and fast technology, applied in the direction of electrical components, transmission systems, etc., can solve problems such as failure, failure of network security protection, terminal will not be redirected, etc., to achieve the effect of time saving and fast blocking

Active Publication Date: 2017-05-10
HANGZHOU INFOGO TECH
View PDF7 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0013] The existing HTTP redirection method has the following major defects: the HTTP response message sent by the server and the HTTP redirection message sent by the admission control server will arrive at the terminal successively. If the HTTP response message arrives first, the terminal will not be blocked. redirect
When the terminal, server, and admission control server are all in the same high-speed LAN, and the network performance of the server is higher than that of the admission control server, the HTTP response message sent by the server will arrive at the terminal first, usually within 8-9 microseconds At this time, the image access HTTP redirection blocking technology will fail, and the security protection of the network cannot be implemented.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0036] In the present embodiment, a kind of fast HTTP redirection method comprises the following steps:

[0037] Step 1: The terminal sends the first message of the TCP three-way handshake to the server; the switch mirrors a copy of the first message to the admission control server;

[0038] Step 2: The server responds to the terminal with the second packet of the TCP three-way handshake; the switch mirrors a copy of the second packet to the admission control server;

[0039] Step 3: When the admission control server receives the second message of the TCP three-way handshake mirrored by the switch in step 2, the admission control server sends an HTTP redirection message to the terminal;

[0040] Step 4: When the terminal receives the second message of the TCP three-way handshake responded by the server, the terminal sends the third message of the TCP three-way handshake to the server;

[0041] Step 5: After receiving the HTTP redirect message sent by the admission control ser...

Embodiment 2

[0051] In the present embodiment, a kind of fast HTTP redirection method comprises the following steps:

[0052] Step 1: The terminal sends the first message of the TCP three-way handshake to the server; the switch mirrors a copy of the first message to the admission control server;

[0053] Step 2: The server responds to the terminal with the second packet of the TCP three-way handshake; the switch mirrors a copy of the second packet to the admission control server;

[0054] Step 3: When the admission control server receives the second message of the TCP three-way handshake mirrored by the switch in step 2, the admission control server sends an HTTP redirection message to the terminal;

[0055] Step 4: When the terminal receives the second message of the TCP three-way handshake responded by the server, the terminal sends the third message of the TCP three-way handshake to the server;

[0056] Step 5: After receiving the HTTP redirect message sent by the admission control ser...

Embodiment 3

[0065] In the present embodiment, a kind of fast HTTP redirection method comprises the following steps:

[0066] Step 1: the terminal sends the first message of the TCP three-way handshake to the server, the first message contains the syn flag bit and the seq sequence number, and the syn flag bit is set to 1, and the seq sequence number is set to x; the switch The first message is forwarded to the server, and the switch mirrors (that is, copies) the first message to the admission control server at the same time; at this time, the admission control server receives the mirrored first message , not processed;

[0067] Step 2: After the server receives the first message forwarded by the switch in step 1, the server responds to the terminal with the second message of the TCP three-way handshake, which contains the syn flag and the ack flag , seq sequence number and ack confirmation number, and the syn flag bit is set to 1, the ack flag bit is set to 1, the seq sequence number is s...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a fast HTTP redirection method. The method comprises the following steps: step one, a terminal sends a first message of TCP three-way handshake to a server; step two, the server responds a second message of the TCP three-way handshake to the terminal, and a switch mirrors the message to an admission control server; step three, the admission control server sends a HTTP redirection message to the terminal when receiving the message mirrored in the step two; step four, the terminal receives the second message of the TCP three-way handshake responded by the server, and sends a third message of the TCP three-way handshake to the server; step five, the terminal receives the HTTP redirection message sent by the step three, and stores the same in the TCP cache; step six: the terminal sends a HTTP request to the server and waits the HTTP response; step seven, the terminal takes out the HTTP redirection message received in the step five, and then executes the HTTP redirection. By use of the fast HTTP redirection method disclosed by the invention, the defect that the existing HTTP redirection method is invalid under a specific condition is effectively solved, and the fast blocking is realized.

Description

technical field [0001] The invention relates to network security defense technology, in particular to a fast HTTP redirection method. Background technique [0002] Network access control technology is currently the mainstream network security defense technology. It effectively solves the security threats caused by non-secure terminal access to the network by implementing security protection for terminals, and keeps viruses, loopholes, and network attacks out of the door. , thus comprehensively guaranteeing the security of devices connected to the network. [0003] Common technologies for network access control include policy-based routing access, VLAN isolation access, dot1x access, ARP access, and mirroring access. Among them, the mirror admission technology refers to the switch in the network sending a copy of the data traffic image (that is, copying) to the admission control server. The admission control server monitors and examines these traffic, and then executes the t...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/10H04L63/1441H04L67/02
Inventor 罗治华易雪交
Owner HANGZHOU INFOGO TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap