Method, device and apparatus for message forwarding of firewall equipment, and storage medium
A packet forwarding and firewall technology, applied in the field of network security, can solve the problems of large memory space, increased probability of cache access failure, and the overall forwarding performance of firewall devices, so as to save memory space, improve overall forwarding performance, and avoid cache access. The effect of increasing the probability of failure
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Embodiment 1
[0047] figure 1 It is a flow chart of the message forwarding method of the firewall device provided in Embodiment 1 of the present invention; figure 2 A schematic structural diagram of a simplified session array hash table provided by Embodiment 1 of the present invention. The embodiment of the present invention aims at constructing the session table items in the memory pool in advance in the existing firewall device, which consumes a large amount of memory space in advance, resulting in an increase in the probability of cache access failure when there are many session table items, so that the overall firewall device For the problem of significant drop in forwarding performance, a packet forwarding method for firewall devices is provided. The method in this embodiment is applied to a firewall device. Such as figure 1 As shown, the specific steps of the method are as follows:
[0048] Step S101. Obtain a message to be forwarded, where the message to be forwarded includes 5...
Embodiment 2
[0074] image 3 It is a flow chart of the message forwarding method of the firewall device provided in Embodiment 2 of the present invention; Figure 4 It is a schematic structural diagram of a general session hash list provided by Embodiment 1 of the present invention. On the basis of the first embodiment above, in this embodiment, if there is no simplified session entry matching the message to be forwarded in the simplified session array hash table, query the pre-built general session hash according to the hash value Whether there is a general session entry address matching the packet to be forwarded in the linked list; if there is a general session entry address matching the packet to be forwarded in the general session hash list, then according to the matching general session entry address Obtain the matching general session entry from the general session table, and forward the message to be forwarded according to the matching general session entry. Such as image 3 As sh...
Embodiment 3
[0113] Figure 5 It is a schematic structural diagram of a packet forwarding device of a firewall device provided in Embodiment 3 of the present invention. The packet forwarding device of the firewall device provided in the embodiment of the present invention can execute the processing procedure provided in the embodiment of the packet forwarding method of the firewall device. Such as Figure 5 As shown, the packet forwarding device 50 of the firewall device includes: a data acquisition module 501 , a hash module 502 , a matching processing module 503 and a forwarding processing module 504 .
[0114]Specifically, the data obtaining module 501 is configured to obtain a message to be forwarded, and the message to be forwarded includes quintuple data.
[0115] The hash module 502 is configured to calculate the hash value of the five-tuple data.
[0116] The matching processing module 503 is configured to query whether there is a simplified session entry matching the message to...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com