Network safety protective method for preventing reject service attack event

A denial-of-service attack and network security protection technology, applied in the field of network security, can solve the problems of computing cookies cost, crash, large number of connections, etc., and achieve the effect of increasing processing performance
CN1822593AInactive Publication Date: 2006-08-23赵洪宇
0 Cites 29 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
赵洪宇
Publication Date
2006-08-23
Estimated Expiration
Not applicable · inactive patent

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

A network security protection method withstanding denial of service attack event designs defence module in data link layer. Said method judges TCP request packet received from different kinds of IP address to realize to denial of service offensive filtering. Said method includes following steps : fire wall capturing outer network client-side sent TCP data package to inner network server, to realize first layer protective treatment, the TCP data package passing first layer protection entering second layer protective treatment, checking whether said received TCP categorical data having matched item in legal IP address chaining recording list, if having matched item, then regarding as normal data package capable of directly handing inner core processing, otherwise to proceed package flow rate statistics in period of time. Said invention can active defense denial of service attack from any kind of attack tool and realize inner core active defense protection effect.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the field of network security, in particular to a method for preventing the network from collapsing due to denial of service attacks. Background technique

[0002] DDoS (Distributed Denial of Service) distributed denial of service attacks on the Internet may even cause some large websites to be completely paralyzed due to intrusion. Many government websites, ISP information service providers, IDC hosting computer rooms, commercial sites, game servers, chat networks and other network service providers have been plagued by DDOS attacks for a long time. The main impact is that the database cannot be used normally, and the server is invaded and confidential information is lost. , and some associated problems. But at present, there is no breakthrough in the research work on the prevention, prediction and counterattack of DDoS attacks in the world.

[0003] SYN / ACK Flood attack is one of the most typical denial-of-service attacks. ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More