The invention discloses an
IP address jump safety communication method based on an SDN framework. The method comprises steps that A, an
IP address of a Host2 is requested by a Host1; B, a real
IP address r2 of the Host2 is replaced by a
virtual IP address h2 through a controller; C,
a domain analysis response is forwarded by the controller to the Host1; D, an r1 is taken as a
source address and the h2 is taken as a target address by the Host1 to send a data packet to the Host2; E, a flow rule is generated by the controller to replace the r1 by a
virtual IP address h1, and the flow rule is issued; F, the r1 is replaced by the h1 through the source switch, and forwarding is carried out; G, the h2 is replaced by the r2 through the target switch, and forwarding is carried out; H, the r2 is taken as a
source address and the h1 is taken as a target address by the Host2 to send a response data packet; I, the r2 is replaced by the h2 through the target switch, and forwarding is carried out; J, the h1 is replaced by the r1 through the source switch, and forwarding to the Host1 is carried out. Through the method, jump IPs can be dynamically distributed to a host computer in the IPH network, one-time one-change access to the host computer IP is transparently realized,
attack based on scanning and DDoS attach can be effectively fought against.