Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and equipment for preventing network attack by using address analytic protocol

An address resolution protocol and network attack technology, which is used in the field of preventing network attacks by using address resolution protocol. It can solve the problems of complex configuration and lack of flexibility, and achieve the effects of enhancing reliability, preventing ARP attacks and reducing configuration workload.

Inactive Publication Date: 2007-02-28
NEW H3C TECH CO LTD
View PDF0 Cites 12 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0011] The main purpose of the present invention is to provide a method for preventing network attacks using the Address Resolution Protocol, to solve the problem of complex configuration and lack of flexibility in the prior art by statically configuring ARP to prevent ARP attacks, and to prevent network attacks simply and effectively. ARP for legal users on the device is modified to enhance network reliability

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and equipment for preventing network attack by using address analytic protocol
  • Method and equipment for preventing network attack by using address analytic protocol
  • Method and equipment for preventing network attack by using address analytic protocol

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0058] The core of the present invention is to actively trigger the confirmation of the original user identified by the ARP entry before the network device receives the ARP message and modifies the ARP entry. If the original user's response is received, the ARP entry is prohibited from being modified. . If no response from the original user is received, the ARP entry is allowed to be modified. In order to further ensure the security of the network, it can also actively trigger the confirmation of the new user identified by the received ARP message if no response from the original user is received. If no response from the new user is received, the ARP Table items are modified. Only when a response from a new user is received, the corresponding ARP entry is allowed to be modified. During specific implementation, different attack prevention flags can be set when receiving responses from the original user and the new user by setting the attack defense record fields corresponding...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a method for preventing using address analysis protocol to attack network. Wherein, it comprises: actively triggering the identification on the former user of ARP item mark before receiving address analysis protocol APR report and modifying the ARP item; if receiving the answer of former user, forbidding the modification on the ARP item; if not receiving the answer of former user, actively triggering the identification on the new user of received ARP report mark; if receiving the answer of new user, modifying the ARP item; if not receiving the answer of new user, forbidding the modification on ARP item. The invention also discloses a relative device, which comprises report sender / receiver, report checker, user identifier, and ARP item modifier. The invention can improve the safety of network.

Description

technical field [0001] The invention relates to the field of network technology, in particular to a method and equipment for preventing network attacks by using an address resolution protocol. Background technique [0002] In the Ethernet network, if IP devices want to communicate with each other, they must first obtain the MAC (Media Access Control) address of the destination device corresponding to the next-hop device. The acquisition of the MAC address is realized through the ARP (Address Resolution Protocol) protocol. ARP provides dynamic mapping between IP addresses and corresponding hardware addresses. The process is as follows: [0003] The message sender sends an Ethernet data frame called an ARP request to each host on the Ethernet. After receiving the broadcast message, the ARP layer of the destination host recognizes that the sender is asking for its IP address, so it sends an ARP response, which includes its IP address and corresponding MAC address. After rece...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 滕利明
Owner NEW H3C TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com