Method for monitoring DNS domain name attacks based on DNS Proxy

A domain name and home gateway technology, applied in the direction of electrical components, transmission systems, etc., can solve problems such as network paralysis, and achieve good reusability and easy implementation

Active Publication Date: 2017-12-22
FENGHUO COMM SCI & TECH CO LTD
View PDF5 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The technical problem to be solved by the present invention is to design an effective solution for mo...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for monitoring DNS domain name attacks based on DNS Proxy
  • Method for monitoring DNS domain name attacks based on DNS Proxy
  • Method for monitoring DNS domain name attacks based on DNS Proxy

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0043] Since user-side access devices such as home gateways generally have the DNS proxy function and enable this function, all DNS requests sent by the user client will enter the DNS proxy related program of the home gateway (HGU) for processing, so we can In the DNS Proxy program, the DNS request sent by the user client is analyzed to realize the monitoring and prevention of DNS attacks.

[0044] The present invention only sends the monitoring operation of some common specific domain names to the home gateway device through RMS (Remote Monitoring System, remote monitoring system), and the specific real-time monitoring operation is realized by the home gateway device. Specifically: once a large number of domain name resolutions (more than one second) are found for the monitored specific domain name, the home gateway device will report a domain name exceeding the threshold alarm to the RMS, and the RMS will analyze and report the relevant information of the abnormal home gatewa...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method for monitoring DNS domain name attacks based on DNS Proxy. The method comprises the following steps: an RMS issues a configuration of an operation for monitoring specific domain names to home gateway equipment; a home gateway sends a message to notify a DNS Proxy process after receiving the configuration issued by the RMS; the DNS Proxy process initializes the monitoring of related data of the specific domain names based on configuration information, starts to monitor whether the number of DNS requests of the specific domain names exceeds a corresponding threshold, and reports the domain names that exceed the threshold and related information of the corresponding home gateway to the RMS in the form of alarm; the RMS analyzes whether the DNS requests that exceed the threshold are in normal access states, and sends the domain names in abnormal access states to the home gateway; and the DNS Proxy process of the home gateway directly discards the DNS requests in the abnormal access states. The method disclosed by the invention can avoid the network paralysis caused by the DNS domain name attacks, is easy to operate and implement, ensures the high performance of networks, and has very good reusability.

Description

technical field [0001] The invention relates to access network communication technology, in particular to a DNS Proxy-based method for monitoring DNS domain names being attacked. Background technique [0002] The famous storm door event was a large-scale network failure event that occurred on May 19, 2009. The cause of this failure was that the DNS of the domain name BAOFENG.COM owned by Beijing Baofeng Technology Co., Ltd. was attacked by malicious mass traffic. The telecom operator responsible for DNSPOD.COM network access cut off its network service, making it a paralyzed network. The first domino. [0003] Because DNSPOD.COM was maliciously attacked by massive traffic, the telecom operator responsible for DNSPOD.COM’s network access cut off its network services, which made it unable to provide domain name resolution services for domain names including BAOFENG.COM. Many companies using DNSPOD services The website cannot be accessed. According to the resolution principl...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L29/12
CPCH04L63/1441H04L61/4511
Inventor 余丽黄文浩
Owner FENGHUO COMM SCI & TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap