Dynamic IP data packet filtering method

A technology of IP data packets and filtering methods, applied in the Internet field

Inactive Publication Date: 2005-02-09
SHANGHAI JUYOU WIDE BAND NETWORK INVENTURE
View PDF0 Cites 28 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In the current NIDS, because it only detects the data in the network, when a data packet with an intrusion attempt is found, it will alarm and log, and usually cannot prevent the harm of this data flow

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Dynamic IP data packet filtering method
  • Dynamic IP data packet filtering method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0007] Such as figure 1 Shown, a kind of dynamic IP packet filtering method of the present invention, its function module is made of detector, analysis statistic device, decision processor and filter four parts, and its implementation process is also correspondingly divided into detection classification, intelligent analysis and The four steps of search, decision processing and execution filtering are characterized in that the detectors, analysis statisticians, decision processors and filters are independent of each other, each completes its function, and then communicates through a standard interface.

[0008] In the step of detecting and classifying, the detector is placed on the backbone link of the network to monitor the port mirroring and traffic of the backbone link. If in a complex or huge network, the detector's The number should be increased appropriately, and the monitoring strategy should be adjusted accordingly. The principle is to achieve load sharing as much as p...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The dynamic IP data package filtering method has functional modules including four pats of detector, analyzing statistic device, decision processor and filter; and realization process including corresponding four steps of detecting classification, intelligent analysis and search, decision processing and filtering. The present invention features that the detector is used in initial analysis and classification of IP header of data package, the analyzing statistic device has the function of further analysis and judgment of the classified information and decisive judgment, the decision processor performs detail and comprehensive analysis to decide final information processing mode, and the filter completes corresponding filtering operation, so as to realize dynamic filtering of the IP data package. The present invention has two technologies of NIDS and fire wall combined to form new defence mode to control harmful invalid flow and protect network bandwidth and router resource effectively.

Description

Technical field: [0001] The invention relates to an Internet technology, in particular to a network security method, in particular to a dynamic IP data packet filtering method. Background technique: [0002] On the existing Internet, there are a large number of useless, harmful, and reactionary information packets, such as various types of network attacks, network intrusions, computer viruses, and reactionary speeches. This information is a scourge no matter for Internet users or Internet access providers. Especially in the Internet where information is beginning to flood, how to classify and filter data packets has become a headache for Internet access providers. In particular, it is a rather difficult technique to accurately classify data packets. The control and tracing of harmful traffic has become a very severe test for small access providers. In the prior art, the traffic filtering technologies of the network access layer generally include NIDS (Network Intrusion De...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/00H04L12/24H04L12/26H04L29/06
Inventor 欧单尔
Owner SHANGHAI JUYOU WIDE BAND NETWORK INVENTURE
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap