SDN-based protection system and control method thereof

A technology of a protection system and a control method, applied in the computer field

Pending Publication Date: 2021-11-05
WUXI CHINAC DATA TECH SERVICE
View PDF6 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The purpose of the present invention is to provide an improved protection system and its control method to solve the problem of multi-tenant security protection for east-west traffic

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • SDN-based protection system and control method thereof
  • SDN-based protection system and control method thereof
  • SDN-based protection system and control method thereof

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0030] Below, the present invention will be further described in conjunction with the accompanying drawings and specific implementation methods. It should be noted that, under the premise of not conflicting, the various embodiments described below or the technical features can be combined arbitrarily to form new embodiments. .

[0031] see figure 1 , the embodiment of the present invention provides a control method of an SDN-based protection system, which is applicable to specific scenarios such as a firewall, an IDS (Internet Intrusion Detection System), and an IPS (Intrusion Prevention System), so as to realize business continuity and business data privacy. The control method includes steps S101-S103. In this embodiment, the SDN-based protection system includes a cloud platform, an SDN controller, a cluster composed of multiple tenants, and a security management platform. There are one or more virtual machines connected to the cluster. The SDN controller connects one or m...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a control method of an SDN-based protection system. The SDN-based protection system comprises a cluster composed of a plurality of tenants, and the control method comprises the following steps: configuring traffic to be mirrored to a virtual router through an SDN controller, the traffic to be mirrored carrying information of a virtual network; the flow to be mirrored is distributed to virtual machines connected with the cluster, each virtual machine corresponds to at least one tenant, and physical nodes where the virtual machines are located are determined according to IP information and / or MPLS information contained in the flow to be mirrored; the safety analysis is performed on the information of the virtual network carried by the to-be-mirrored traffic by using the virtual machine, and generating a safety policy in response to a safety analysis result that threat information exists. According to the invention, east-west flow multi-tenant safety analysis and protection can be realized.

Description

technical field [0001] The invention relates to the field of computer technology, in particular to an SDN-based protection system and a control method thereof. Background technique [0002] With the continuous development of computer networks, global informatization has become a major trend of human development. However, due to the diversity of connection forms, uneven distribution of terminals, and the openness and interconnectivity of the network, the computer network is vulnerable to hackers, weirdos, malware and other unruly attacks. Then, in order to prevent and avoid attacks and intrusions, and to ensure the safety of online information, the network security system plays a very important role. As we all know, the cloud is already an important way of IT construction and deployment today, but the security on the cloud also makes many enterprises hesitate to use it. Of course, we have heard a lot of firewall solutions on the cloud, distributed denial of service (Distrib...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/1408H04L63/1416H04L63/0209H04L63/1441H04L63/205
Inventor 过育红朱正东
Owner WUXI CHINAC DATA TECH SERVICE
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap