Method for solving port scanning and attack rejection in NAT environment
A port scanning and environmental technology, applied in the direction of data exchange through path configuration, digital transmission system, electrical components, etc., can solve the problem that other hosts cannot forward packets normally, so as to prevent port scanning and reject attacks, and mitigate attacks Effect
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Examples
Embodiment 1
[0037] Setting: Cmin(n)=200, Cmax(n)=800, Pmax(n)=0.2, for a connection request, if the current connection number is less than 200, the router allows the connection to be established, if the current connection number has exceeded 800, the router rejects the connection request. If the current number of connections is 201, perform the following steps:
[0038] Suppose count(n)=1
[0039] Pb(n)=0.2*(201-200) / (800-200)=0.00033
[0040] Pa(n)=0.00033 / (1-1*0.00033)=0.00033
[0041] Therefore, the router rejects the 201st connection with a probability of 0.00033; or, allows the connection of the host N to be established with a probability of 1-0.00033.
Embodiment 2
[0043] Setting: Cmin(n)=200, Cmax(n)=800, Pmax(n)=0.2, for a connection request, if the current connection number is less than 200, the router allows the connection to be established, if the current connection number has exceeded 800, the router rejects the connection request. If the current number of connections is 751, perform the following steps,
[0044] Suppose count(n)=10
[0045] Pb(n)=0.2*(751-200) / (800-200)=0.184
[0046] Pa(n)=0.184 / (1-10*0.184)=0.22
[0047] Therefore, the router rejects the 751st connection with a probability of 0.22; or, allows the connection of the host N to be established with a probability of 1-0.22.
[0048] It can be seen from the above examples: if the current number of connections is between the minimum value and the maximum value, it tells us that the behavior of the host is in a critical state. In this state, a probability Pa(n) needs to be calculated, and then the router uses this probability Pa (n) Establish or deny the host's reque...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com