Anti-attack mac address learning method, device and network equipment

A technology of MAC address and network equipment, which is applied in the field of devices and network equipment, and the field of MAC address learning method for attack prevention, which can solve the problems of full storage table entry space and failure to learn MAC

Active Publication Date: 2021-01-01
XINHUASAN INFORMATION TECH CO LTD
View PDF10 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] However, in the above-mentioned MAC address learning process, there is an attack vulnerability of the source MAC address. For example, if the attacker continuously changes the source MAC address to send malicious packets, the switch or router will continue to learn the source MAC address, resulting in new A large number of garbage entries, the space for storing entries is quickly occupied, so that the normal MAC cannot be learned

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Anti-attack mac address learning method, device and network equipment
  • Anti-attack mac address learning method, device and network equipment
  • Anti-attack mac address learning method, device and network equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] In order to make the purpose, technical solutions and advantages of the embodiments of the present disclosure clearer, the technical solutions of the present disclosure will be clearly and completely described below in conjunction with the accompanying drawings. Obviously, the described embodiments are part of the embodiments of the present disclosure, not all of them. implementation. Based on the implementation manners in the present disclosure, all other implementation manners obtained by persons of ordinary skill in the art without creative efforts shall fall within the protection scope of the present disclosure.

[0026] see figure 1 A schematic diagram of the application environment of a MAC address learning method is shown; wherein, PORT1 of the network device receives the message 1 sent from PC A to PC C, and if the MAC address entry of PC C is not stored in the network device, the other All PORTs (including PORT 2 and PORT 3) send the message 1, and at the same...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides an anti-attack MAC address learning method and device, and network equipment. The method comprises the following steps: when a forwarding chip of the network equipment receivesa message, analyzing a source MAC address and a target MAC address of the message; using the source MAC address and the target MAC address to search for MAC table items of the forwarding chip, whereinthe MAC table items comprise temporary MAC table items and formal MAC table items, and the aging time of the temporary MAC table items is shorter than the aging time of the formal MAC table items; ifmatching table items for the target MAC address are obtained in the temporary MAC table items through the searching, refreshing the matching table items as the formal MAC table items, and establishing the formal MAC table items for the source MAC address; and if the matching table items for the source MAC address and the target MAC address are not obtained in the temporary MAC table items throughthe searching, establishing the temporary MAC table items for the source MAC address. The method and device and the network equipment provided by the invention have the advantages that table item storage space in the equipment can be rapidly freed up, so that the anti-attack capability of the network equipment is improved.

Description

technical field [0001] The present disclosure relates to the technical field of the Internet, in particular to an attack-proof MAC (Media Access Control or Medium Access Control, Media Access Control, Media Access Control) address learning method, device and network equipment. Background technique [0002] In a network device such as a switch, by parsing and learning the source MAC address of the received message, the corresponding relationship between the MAC address and the port in the device is maintained. This corresponding relationship is stored in the chip of the network device in the form of an entry. When a network device forwards a message, it looks up the destination MAC address of the message in the table entry to obtain the forwarding port of the message; if the destination MAC address is not found in the table entry, the message is sent in the form of broadcast Forward to all ports. [0003] However, in the above-mentioned MAC address learning process, there is...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12
Inventor 张哲
Owner XINHUASAN INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap