Check patentability & draft patents in minutes with Patsnap Eureka AI!

Data packet detection method in NAT mode and data packet forwarding device

A detection method and technology of a forwarding device, which are applied in the field of computer networks, can solve problems such as difficulty in data packet path tracking, and achieve the effect of improving forwarding efficiency

Pending Publication Date: 2021-09-03
西安交大捷普网络科技有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In NAT mode, it is necessary to modify the address of the data packet every time, and it becomes very difficult to track the path of the data packet from end to end, which is extremely unfavorable for timely discovery of the source of the data packet that poses a security threat

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Data packet detection method in NAT mode and data packet forwarding device
  • Data packet detection method in NAT mode and data packet forwarding device
  • Data packet detection method in NAT mode and data packet forwarding device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0030] The specific content of the technical solution of the present invention will be described in detail below in conjunction with the accompanying drawings and embodiments.

[0031] Such as figure 1 As shown, the intrusion prevention system in NAT mode is connected to the internal and external network. Host A inside the enterprise wants to access host C on the Internet. First, it sends the request packet (source: ipA, destination: ipC) to host B where the firewall is located. After B receives the packet, it changes the source address of the packet to the local public network card. ip (source: ipA, destination: ipB), and then send it to C via the Internet; C will forward the response packet (source: ipC, destination: ipB) to B via the Internet after receiving it, and B will modify it after receiving the response packet Its destination address, that is, the response packet is changed to (source: ipC, destination: ipA) and then the data packet is forwarded to A. In this proc...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a data packet detection method in an NAT mode and a data packet forwarding device. In an NAT environment, when a user mode generates a connection according to a first data packet passing through a kernel, the connection of sending and receiving is established, and the address and port information before conversion are stored in the connection information. the intrusion prevention performs address modification through the connection information matched with the data packet to achieve address conversion. According to the technical scheme, after the user mode connection tracking is established, the subsequent data packet of the connection is directly forwarded without passing through the kernel, the method is suitable for correctly recording the log generated by detecting and modifying the data packet in an intrusion prevention system, the forwarding efficiency can be improved, and correct recording of the log by the intrusion prevention system is not influenced.

Description

technical field [0001] The invention belongs to the technical field of computer networks, and in particular relates to a data packet detection method and a data packet forwarding device in a NAT mode. Background technique [0002] In a NAT (Network Address Translation) environment, all hosts using local addresses must convert their local addresses into global IP addresses before they can connect to the Internet when communicating with the outside world. This alleviates the problem of IPv4 address exhaustion to a certain extent, and converts the private address of the internal network into the public address of the external network, so that the hosts on the internal network (set as private IP addresses) can access the Internet; and it can also effectively Avoid attacks from outside the network and hide and protect computers inside the network. However, NAT also complicates the communication between hosts, reduces communication efficiency, and brings many limitations, such as...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/12
CPCH04L63/1416H04L61/2503
Inventor 刘亚轩何建锋陈宏伟
Owner 西安交大捷普网络科技有限公司
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com