A processing method for endogenous security dynamic protection function of routing and switching equipment

Abstract

The invention discloses a processing method for endogenous safety and dynamic protection functions of routing switching equipment, relying on switching chips and multi-core processors inside the routing switching equipment to achieve security protection, including: detecting and identifying the content of the 2-7 layer of the message, Implement refined security control strategies based on classification results; the switch chip completes message filtering and attack defense functions for the 2-4 layer of the message; the multi-core processor detects the content of the 3-7 layer of the message, completes the deep security defense detection, and sends The switch chip actively issues security control policies, which are finally executed by the switch chip. The switch chip cooperates with the multi-core processor to realize the in-depth detection of the message content, and can actively implement the security control strategy in a targeted manner, which greatly improves the active protection capability of the routing and switching equipment. The method of one-time detection, matching, and multiple multiplexing greatly reduces the impact on system performance and avoids the risk of processing performance bottlenecks caused by the introduction of some safety protection equipment.

Description

technical field [0001] The invention relates to the technical field of communication network security, in particular to a processing method for a routing switching device with a built-in security dynamic protection function. Background technique [0002] Traditional routing and switching devices focus on functions such as routing processing and data forwarding, and only provide weak security protection functions. For example, the AAA authentication function can only solve basic user login and access security issues, and the ACL filtering function can only perform quintuple matching and filtering on packets at layer 4 and below. With the expansion of the application scale of the network, more and more security issues such as network attacks, data theft, and destruction have emerged. It is precisely because of the many insecure factors in the network that network construction and users must adopt corresponding network security Technology to plug security loopholes, provide se...

AI Technical Summary

Problems solved by technology

[0003] In the early network security deployment, it was a relatively common security protection measure to connect routing and switching devices and firewall devices in series in the network. In this way, the separate security protection deployment can provide comprehensive protection capabilities to a certain extent. However, based on There are deficiencies in network attack defense at the application layer, network fine-grained management, timeliness of active defense, and dynamic policy linkage. The performance bottleneck of some security protection equipment will also seriously affect network performance and efficiency, and increase network maintenance costs.

Images