Unlock instant, AI-driven research and patent intelligence for your innovation.

TCP semitransparent agent processing method and device

A processing method and a semi-transparent technology, applied in the field of network communication, which can solve the problems of consuming server resources and the inability of the server to process normal services, and achieve the effect of avoiding resource occupation.

Active Publication Date: 2020-07-17
HANGZHOU DPTECH TECH
View PDF8 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] In view of this, the present application provides a processing method and device for a TCP semi-transparent proxy to solve the problem in the related art that a large amount of server resources are consumed due to SYN Flood attacks, making the server unable to process normal business

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • TCP semitransparent agent processing method and device
  • TCP semitransparent agent processing method and device
  • TCP semitransparent agent processing method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment approach

[0045] An optional implementation manner, the above method also includes:

[0046] If a TCP data message or a TCP waving message sent by the terminal after sending the first ACK is received, the received TCP data message or a TCP waving message is cached in the cache queue;

[0047] After determining to execute the step of sending the second ACK message to the server, the source IP address carried in the message in the cache queue is replaced with the IP address of the firewall device in turn, and then sent to the server;

[0048] If receiving the TCP message replied by the server according to the TCP data message or the TCP waving message, replace the destination IP address carried in the TCP message with the IP address of the firewall device, and then send it to the terminal.

[0049] Since the firewall device establishes a TCP connection with the server instead of the terminal, it may receive the TCP data message or the TCP wave message sent by the terminal before the firew...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a TCP semitransparent proxy processing method and device, applied to a transmission layer of firewall equipment, and the method comprises the steps: storing an initial serial number carried by a first SYN message after the first SYN message from a terminal is received, and modifying the first SYN message to obtain a first SYN ACK message; sending the first SYN ACK message tothe terminal; if a first ACK message sent by the terminal is received, modifying the first ACK message according to the initial serial number carried by the first SYN message and the IP address of the firewall device to obtain a second SYN message; sending the second SYN message to a server; if a second SYN ACK message sent by the server is received, modifying the second SYN ACK message accordingto the initial serial number carried by the first SYN message to obtain a second ACK message; and sending the second ACK message to the server, and establishing TCP connection with the server. By applying the embodiment of the invention, resources of the server can be prevented from being occupied, and the server can have more resources to process normal services.

Description

technical field [0001] The present application relates to the technical field of network communication, and particularly designs a processing method and device for a transmission control protocol (Transmission Control Protocol, TCP) semi-transparent proxy. Background technique [0002] When a terminal accesses a server, it usually needs to establish a TCP connection with the server first, and then access through the TCP connection. The establishment of a TCP connection requires three handshakes: the terminal sends a SYN message to the server; after the server receives the SYN message, it establishes a TCP semi-connection in the SYN_RECEIVED state. At this time, the application layer of the server needs to allocate corresponding resources for the TCP semi-connection. Then reply a SYN ACK message to the terminal; after receiving the SYN ACK message, the terminal responds to the server with an ACK message, so that the TCP connection between the terminal and the server is establ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08
CPCH04L69/163H04L69/22H04L67/14H04L63/0236H04L63/16H04L67/56
Inventor 杨佳磊
Owner HANGZHOU DPTECH TECH