TW201840165A - Management and control system for automatically detecting existence of Internet protocol address device and management and control method thereof automatically detecting the existence of an Internet protocol address device - Google Patents

Management and control system for automatically detecting existence of Internet protocol address device and management and control method thereof automatically detecting the existence of an Internet protocol address device Download PDF

Info

Publication number
TW201840165A
TW201840165A TW106113706A TW106113706A TW201840165A TW 201840165 A TW201840165 A TW 201840165A TW 106113706 A TW106113706 A TW 106113706A TW 106113706 A TW106113706 A TW 106113706A TW 201840165 A TW201840165 A TW 201840165A
Authority
TW
Taiwan
Prior art keywords
internet protocol
protocol address
address
control
automatically detecting
Prior art date
Application number
TW106113706A
Other languages
Chinese (zh)
Other versions
TWI628936B (en
Inventor
華荐治
蔡雨龍
鍾佩芳
廖國銘
鄭睿哲
Original Assignee
中華電信股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中華電信股份有限公司 filed Critical 中華電信股份有限公司
Priority to TW106113706A priority Critical patent/TWI628936B/en
Application granted granted Critical
Publication of TWI628936B publication Critical patent/TWI628936B/en
Publication of TW201840165A publication Critical patent/TW201840165A/en

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

This invention provides a management and control system for automatically detecting the existence of an Internet protocol address device and a management and control method thereof. The management and control system is used for knowing an Internet protocol address of a networking device by executing scanning operation and connecting a networking device not listed in a managed and controlled list to a management and control network by executing permanent passive scanning operation so as to acquire the Internet protocol address in real time. Compared with a management and control scheme of the prior art, the management and control system and the management and control method thereof provided by this invention have more excellent real-time management and control effects.

Description

自動探知網際網路協定位址裝置存在之管控系統及其管控方法  Management system for automatically detecting the existence of internet protocol address device and control method thereof  

本發明係一種網路管控技術方案,尤指一種可自動探知網際網路協定位址裝置存在之管控方案。 The invention relates to a network management technology solution, in particular to a management and control scheme for automatically detecting the existence of an internet protocol address device.

為有效監控特定網路(例如:企業內部網路)之安全,習知技術多會由監控主機週期性的掃描連線至特定網路之連線設備,並分析連線設備是否具有合法存取之權限。 In order to effectively monitor the security of a specific network (for example, the internal network of the enterprise), the conventional technology will be periodically scanned by the monitoring host to connect to the connection device of the specific network, and analyze whether the connected device has legitimate access. Permissions.

然而當連線設備的數量極為龐大時,前述監控方案欲完成單次掃描時間將會被嚴重的拉長,使得習知監控方案在此連線環境中並無法達成即時監控之目的,而相當程度的威脅網路存取之安全性。 However, when the number of connected devices is extremely large, the time required for the above-mentioned monitoring scheme to complete a single scan will be severely lengthened, so that the conventional monitoring scheme cannot achieve the purpose of real-time monitoring in this connected environment, and to a considerable extent. Threats to the security of network access.

綜上所述,如何提供一種可解決前述問題之方案乃本領域亟需解決之技術問題。 In summary, how to provide a solution to the aforementioned problems is a technical problem that needs to be solved in the field.

為解決前揭之問題,本發明之目的係提供一種自動探知網際網路協定位址裝置存在之技術方案。 In order to solve the problems disclosed above, it is an object of the present invention to provide a technical solution for automatically detecting the existence of an Internet Protocol address device.

為達上述目的,本發明提出一種自動探知網際網路協定位址裝置存在之管控系統。前述管控系統包含偵測主機以及管控伺服器。前述偵測主機連接至提供外部複數個連網裝置進行連線的管控網路,偵測主機係自動執行掃描作業,以得知連網裝置之網際網路協定位址。前述管控伺 服器連接管控網路,以取得網際網路協定位址並將對應之連網裝置列於已受管控列表,管控伺服器係執行常駐性被動監掃描作業,以讓未列於已受管控列表之連網裝置連線至管控網路下,即時的取得網際網路協定位址。 To achieve the above object, the present invention proposes a management and control system that automatically detects the presence of an Internet Protocol address device. The aforementioned control system includes a detection host and a control server. The detecting host is connected to a control network that provides external plurality of networking devices for connection, and the detecting host automatically performs a scanning operation to know the Internet Protocol address of the networked device. The foregoing control server is connected to the control network to obtain the Internet Protocol address and the corresponding networked device is listed in the controlled list, and the control server performs the resident passive monitoring scan operation, so that the The networked device of the control list is connected to the control network to instantly obtain the Internet Protocol address.

為達上述目的,本發明提出一種自動探知網際網路協定位址裝置存在之管控方法。管控方法應用於連線偵測主機、管控伺服器以及外部複數個連網裝置之管控網路,管控方法包含下列步驟:令偵測主機自動執行掃描作業,以得知連網裝置之網際網路協定位址,以及令管控伺服器取得網際網路協定位址並將對應之連網裝置列於已受管控列表,管控伺服器係執行常駐性被動監掃描作業,以讓未列於已受管控列表之連網裝置連線至管控網路下,即時的取得網際網路協定位址。 To achieve the above object, the present invention proposes a management method for automatically detecting the existence of an Internet Protocol address device. The control method is applied to the control network of the connection detection host, the control server and the external plurality of network devices. The control method includes the following steps: the detection host automatically performs the scan operation to know the internet connection of the network device The protocol address, and the management server obtains the Internet Protocol address and lists the corresponding networked device on the managed list, and the management server performs the resident passive monitoring scan operation so that it is not listed in the controlled The list of connected devices is connected to the managed network to instantly obtain the Internet Protocol address.

綜上所述,本發明自動探知網際網路協定位址裝置存在之管控系統及其管控方法藉由管控伺服器執行常駐性被動監掃描作業,得以讓未管控之連網裝置連線至管控網路下,即時的取得網際網路協定位址。 In summary, the present invention automatically detects the existence of the network protocol address device control system and its control method by the management server to perform the resident passive monitoring scan operation, allowing the uncontrolled network connection device to connect to the control network Down the road, get the Internet Protocol address instantly.

1‧‧‧自動探知網際網路協定位址裝置存在之管控系統 1‧‧‧Automatic detection of the control system of the Internet Protocol address device

11‧‧‧偵測主機 11‧‧‧Detecting host

12‧‧‧管控網路 12‧‧‧Control network

13‧‧‧管控伺服器 13‧‧‧Control server

2‧‧‧連網裝置 2‧‧‧Networking device

圖1為本發明第一實施例自動探知網際網路協定位址裝置存在之管控系統之系統方塊圖。 1 is a system block diagram of a control system for automatically detecting an Internet Protocol address device in accordance with a first embodiment of the present invention.

圖2為本發明第二實施例自動探知網際網路協定位址裝置存在之管控方法之方法流程圖。 2 is a flow chart of a method for automatically detecting a management method of an internet protocol address device in a second embodiment of the present invention.

圖3為本發明自動探知網際網路協定位址裝置存在之管控系統之操作流程圖。 3 is a flow chart showing the operation of the control system for automatically detecting the presence of an Internet Protocol address device in the present invention.

以下將描述具體之實施例以說明本發明之實施態樣,惟其並非用以限制本發明所欲保護之範疇。 The specific embodiments are described below to illustrate the embodiments of the invention, but are not intended to limit the scope of the invention.

請參閱圖1,其為本發明第一實施例自動探知網際網路協定(IP)位址裝置存在之管控系統1之系統方塊圖。前述管控系統1包含偵測主機11以及管控伺服器13。前述偵測主機11連接至管控網路12,且管控網路12係提供外部複數個連網裝置2進行連線,偵測主機11係自動執行掃描作業,以得知連網裝置2之網際網路協定位址。前述之管控伺服器13連接管控網路12以取得網際網路協定位址並將對應之連網裝置2列於已受管控列表,管控伺服器13係執行常駐性被動監掃描作業,以讓未列於已受管控列表之連網裝置2連線至管控網路12下,即時的取得網際網路協定位址。 Please refer to FIG. 1, which is a system block diagram of a management system 1 for automatically detecting an Internet Protocol (IP) address device according to a first embodiment of the present invention. The foregoing control system 1 includes a detection host 11 and a management server 13. The detecting host 11 is connected to the control network 12, and the control network 12 provides external plurality of networking devices 2 for connection, and the detecting host 11 automatically performs a scanning operation to learn the network device of the networking device 2. Road agreement address. The foregoing control server 13 is connected to the management network 12 to obtain the Internet Protocol address and the corresponding network device 2 is listed in the managed list, and the management server 13 performs the resident passive monitoring operation to allow the The networked device 2 listed in the controlled list is connected to the control network 12 to instantly obtain the Internet Protocol address.

前述之偵測主機11以及管控伺服器13係為電腦裝置。前述之連網裝置2可選擇的為電腦或可連線之智慧型手機、平板電腦…等。 The aforementioned detection host 11 and the management server 13 are computer devices. The aforementioned networking device 2 may be a computer or a connectable smart phone, a tablet, etc.

於另一實施例中,前述管控伺服器13係取得未列於已受管控列表之連網裝置2連線之逆位址識別協定回應封包(reverse address recognition protocol reply package),以即時的取得網際網路協定位址。於另一實施例中,前述管控伺服器13係篩選逆位址識別協定回應封包,以將符合篩選條件之連網裝置2列入管控。 In another embodiment, the management server 13 obtains a reverse address recognition protocol reply package that is not listed in the networked device 2 of the managed list, so as to obtain the Internet in real time. Network protocol address. In another embodiment, the foregoing control server 13 filters the reverse address identification protocol response packet to include the networked device 2 that meets the screening conditions.

於另一實施例中,前述篩選條件進一步包含封包來源端實體位址、封包來源端網際網路協定位址、封包目的端實體位址、封包目的端網際網路協定位址其中至少一。 In another embodiment, the foregoing screening condition further includes at least one of a packet source end physical address, a packet source end internet protocol address, a packet destination end physical address, and a packet destination end internet protocol address.

於另一實施例中,前述管控伺服器13係對未列於已受管控列 表之連網裝置2發送NETBIOS/NETBEUI通訊協定資訊來取得主機名稱資訊,以列入已受管控列表。 In another embodiment, the management server 13 sends NETBIOS/NETBEUI protocol information to the network device 2 not listed in the managed list to obtain host name information for inclusion in the managed list.

請參閱圖2,其為本發明第二實施例自動探知網際網路協定位址裝置存在之管控方法之方法流程圖。前述管控方法應用於管控網路,管控網路係連線偵測主機、管控伺服器以及外部複數個連網裝置。管控方法包含下列步驟: Please refer to FIG. 2, which is a flowchart of a method for automatically detecting a management method of an Internet Protocol address device in accordance with a second embodiment of the present invention. The foregoing control method is applied to a control network, and the control network is a connection detection host, a control server, and an external plurality of network devices. The control method consists of the following steps:

S101:令偵測主機自動執行掃描作業,以得知連網裝置之網際網路協定位址。 S101: The detecting host automatically performs a scanning operation to learn the internet protocol address of the networked device.

S102:令管控伺服器取得網際網路協定位址並將對應之連網裝置列於已受管控列表,管控伺服器係執行常駐性被動監掃描作業,以讓未列於已受管控列表之連網裝置連線至管控網路下,即時的取得網際網路協定位址。 S102: The management server obtains the Internet Protocol address and lists the corresponding networked device in the controlled list, and the management server performs the resident passive monitoring scan operation to enable the connection that is not listed in the controlled list. The network device is connected to the control network to instantly obtain the Internet Protocol address.

於另一實施例中,前述管控方法之管控伺服器係取得未列於已受管控列表之連網裝置連線之逆位址識別協定回應封包,以即時的取得網際網路協定位址。於另一實施例中,前述管控方法之管控伺服器係篩選逆位址識別協定回應封包,以將符合篩選條件之連網裝置列入管控。 In another embodiment, the management server of the foregoing control method obtains a reverse address identification protocol response packet that is not listed in the connected device connection list to obtain the Internet Protocol address in real time. In another embodiment, the control server of the foregoing control method filters the reverse address identification protocol response packet to include the networked device that meets the screening condition.

於另一實施例中,前述管控方法之篩選條件進一步包含封包來源端實體位址、封包來源端網際網路協定位址、封包目的端實體位址、封包目的端網際網路協定位址其中至少一。 In another embodiment, the screening condition of the foregoing control method further includes: a packet source end physical address, a packet source end internet protocol address, a packet destination end physical address, and a packet destination end internet protocol address. One.

於另一實施例中,前述管控方法之管控伺服器係對未列於已受管控列表之連網裝置發送NETBIOS/NETBEUI通訊協定資訊來取得主機名稱資訊,以列入已受管控列表。 In another embodiment, the management server of the foregoing control method sends NETBIOS/NETBEUI protocol information to the networked device not listed in the managed list to obtain host name information for inclusion in the managed list.

以下本發明茲以第一實施例自動探知網際網路協定位址裝置存在之管控系統1進行說明,惟第二實施例自動探知網際網路協定位址裝置存在之管控方法亦可達到相同或相似之技術功效。 The following is a description of the management system 1 for automatically detecting the presence of an Internet Protocol address device in the first embodiment. However, the second embodiment automatically detects that the control method of the Internet Protocol address device is the same or similar. Technical efficacy.

請共同參閱圖1及圖3,圖3為管控系統之操作流程圖(S201~S206為偵測主機11之操作流程,S207~S209為管控伺服器13之操作流程),其流程說明如下: Please refer to FIG. 1 and FIG. 3 together. FIG. 3 is a flow chart of the operation of the control system (S201~S206 are the operation flow of detecting the host 11, and S207~S209 are the operation flow of the control server 13). The flow is as follows:

偵測主機11之操作流程開始 The operation flow of detecting the host 11 starts

S201:偵測主機11執行一次性主動式掃描所有活動IP程序。 S201: The detecting host 11 performs a one-time active scanning of all active IP programs.

S202:回傳目前活動IP列表資訊給管控伺服器13。 S202: Return the current active IP list information to the control server 13.

S203:執行常駐性被動式監測IP狀態程序。 S203: Perform a resident passive monitoring IP status program.

S204:判斷是否發現新的活動IP出現?若是執行S205;若否執行S203。 S204: Determine whether a new active IP is found? If it is S205; if not, execute S203.

S205:執行一次性主動式掃描活動IP程序。 S205: Perform a one-time active scanning activity IP program.

S206:回傳新活動IP資訊給管控伺服器13。 S206: The new active IP information is returned to the management server 13.

偵測主機11之操作流程結束 End of the operation process of detecting the host 11

管控伺服器13之操作流程開始 The operation flow of the control server 13 begins

S207:接收偵測主機11所傳回之目前或最新的活動IP列表資訊。 S207: Receive current or latest active IP list information returned by the detection host 11.

S208:比對新的活動IP資訊是否需進行管控?若是則執行S209;若否則結束。 S208: Does the new active IP information need to be controlled? If yes, execute S209; if not, end.

S209:執行控管新活動IP之設定。 S209: Perform the setting of controlling the new activity IP.

管控伺服器13之操作流程結束 End of the operation flow of the control server 13

若前述管控網路12為企業網路,分別有1台管控伺服器 13(IP:10.1.1.1)與2台連線設備,其中IP為10.1.1.2之連線設備為偵測主機11,而IP為10.1.1.3之連線設備為已受管控之連網裝置2。此時偵測主機11之主動式掃描運作執行後可由回報的掃描結果得知目前企業網路IP使用狀況。而偵測主機11透過擷取網卡設定之網路實體位置來自動判別該主機所配置的Gateway IP、Gateway MAC及subnet mask資訊。接著,依據Gateway IP、Gateway MAC及subnet mask資訊,並利用ICMP Ping、ARP Ping、或NETBIOS/NETBEUI來掃描所在網段內的每一個IP裝置,若是活動IP則會取得IP資訊、網卡MAC資訊或主機名稱資訊。 If the management network 12 is an enterprise network, there is one management server 13 (IP: 10.1.1.1) and two connection devices, wherein the connection device with IP 10.1.1.2 is the detection host 11, and The connection device with IP 10.1.1.3 is the networked device 2 that has been controlled. At this time, after the active scanning operation of the detecting host 11 is executed, the current network IP usage status of the enterprise can be known from the returned scanning result. The detecting host 11 automatically discriminates the Gateway IP, Gateway MAC and subnet mask information configured by the host by capturing the location of the network entity set by the network card. Then, based on the Gateway IP, Gateway MAC, and subnet mask information, and using ICMP Ping, ARP Ping, or NETBIOS/NETBEUI to scan each IP device in the network segment, if it is an active IP, it will obtain IP information, network card MAC information or Host name information.

接著,偵測主機11將掃描後的活動IP列表(其欄位包含IP資訊、網卡MAC資訊、或主機名稱資訊)回傳給管控伺服器13。 Then, the detecting host 11 transmits back the scanned active IP list (whose field contains IP information, network card MAC information, or host name information) to the management server 13.

而管控伺服器13針對偵測主機11回報的主動式掃描結果比對時,會比對原有資料庫內的活動IP列表(欄位包含IP資訊、網卡MAC資訊、主機名稱資訊、或管控狀態)。接著,將管控狀態為未控管之連網裝置2,輸出至管控名單列表,以對未管控之裝置列表進行管控設定。 The control server 13 compares the active scan results reported by the detection host 11 with the active IP list in the original database (the field contains IP information, network card MAC information, host name information, or control status). ). Then, the networked device 2 whose control state is uncontrolled is output to the list of control lists to control the list of devices that are not controlled.

當偵測主機11執行被動式偵測運作時,假設一台未受管控的連網裝置2(IP:10.1.1.4)介接至企業網路中,偵測主機11會向閘道器(Gateway)發出RARP request封包,故偵測主機11將會監測攔截閘道器回覆RARP Reply給主機之封包,監測攔截手段可使用Driver hook技術執行Sniffer based之封包攔截,並篩選RARP Reply封包,並在符合篩選條件(例如:1.封包之來源端的實體位址=Gateway MAC、2.封包之來源端的IP位址=Gateway IP)時,則取出該RARP Reply封包之欄位(例如:1.封包之目的端的實體位址=新的活動裝置之MAC、2.封包之目的端的IP位址=新的活 動裝置之IP)。 When the detecting host 11 performs the passive detecting operation, it is assumed that an unmanaged networked device 2 (IP: 10.1.1.4) is connected to the enterprise network, and the detecting host 11 is directed to the gateway (Gateway). The RARP request packet is sent, so the detecting host 11 will monitor the intercepting gateway to reply the RARP Reply packet to the host, and the monitoring intercepting method can use the Driver hook technology to perform Sniffer based packet interception, and filter the RARP Reply packet, and match the screening. The condition (for example, 1. The physical address of the source of the packet = Gateway MAC, 2. The IP address of the source of the packet = Gateway IP), then the field of the RARP Reply packet is taken out (for example: 1. The destination end of the packet The physical address = the MAC of the new active device, 2. The IP address of the destination end of the packet = the IP of the new active device).

接著,對新的連網裝置2之IP發出NETBIOS/NETBEUI通訊協定,取得主機名稱資訊。最後,將新的連網裝置2之相關資訊(例如:1.IP資訊、2.網卡MAC資訊、3.主機名稱資訊)回傳給管控伺服器13。 Next, the NETBIOS/NETBEUI communication protocol is issued to the IP of the new network device 2, and the host name information is obtained. Finally, the related information of the new networking device 2 (for example: 1.IP information, 2. network card MAC information, 3. host name information) is transmitted back to the management server 13.

上列詳細說明係針對本發明之一可行實施例之具體說明,惟該實施例並非用以限制本發明之專利範圍,凡未脫離本發明技藝精神所為之等效實施或變更,均應包含於本案之專利範圍中。 The detailed description of the preferred embodiments of the present invention is intended to be limited to the scope of the invention, and is not intended to limit the scope of the invention. The patent scope of this case.

Claims (10)

一種自動探知網際網路協定位址裝置存在之管控系統,包含:偵測主機,連接至管控網路,該管控網路係提供外部複數個連網裝置進行連線,該偵測主機係自動執行掃描作業,以得知連網裝置之網際網路協定位址;以及管控伺服器,連接該管控網路,取得網際網路協定位址並將對應之連網裝置列於已受管控列表,該管控伺服器係執行常駐性被動監掃描作業,以讓未列於該已受管控列表之該連網裝置連線至該管控網路下,即時的取得該網際網路協定位址。  A control system for automatically detecting the presence of an Internet Protocol address device includes: detecting a host and connecting to a control network, the control network providing external plurality of networking devices for connection, the detection host is automatically executed Scanning the operation to know the Internet Protocol address of the networked device; and the management server, connecting the management network, obtaining the Internet Protocol address and listing the corresponding networked device on the managed list, The control server performs a resident passive monitoring scan operation to connect the networked device not listed in the managed list to the control network to obtain the Internet Protocol address in real time.   如請求項1所述之自動探知網際網路協定位址裝置存在之管控系統,其中該管控伺服器係取得未列於該已受管控列表之該連網裝置連線之逆位址識別協定回應封包,以即時的取得該網際網路協定位址。  The control system for automatically detecting the presence of an internet protocol address device as described in claim 1, wherein the management server obtains a reverse address identification protocol response of the networked device connection not listed in the managed list Packet to get the Internet Protocol address in real time.   如請求項2所述之自動探知網際網路協定位址裝置存在之管控系統,該管控伺服器係篩選該逆位址識別協定回應封包,以將符合篩選條件之該連網裝置列入管控。  The control system for automatically detecting the presence of the Internet Protocol address device as described in claim 2, wherein the control server filters the reverse address identification protocol response packet to include the networked device that meets the screening condition.   如請求項3所述之自動探知網際網路協定位址裝置存在之管控系統,其中該篩選條件進一步包含封包來源端實體位址、封包來源端網際網路協定位址、封包目的端實體位址、封包目的端網際網路協定位址其中至少一。  The control system for automatically detecting the presence of the Internet Protocol address device as described in claim 3, wherein the screening condition further comprises a packet source end physical address, a packet source end internet protocol address, and a packet destination end physical address At least one of the packets of the destination end internet protocol address.   如請求項4所述之自動探知網際網路協定位址裝置存在之管控系統,其中該管控伺服器係對未列於該已受管控列表之該連網裝置發送NETBIOS/NETBEUI通訊協定資訊來取得主機名稱資訊,以列入該已受管控列表。  The control system for automatically detecting an Internet Protocol address device as described in claim 4, wherein the management server sends NETBIOS/NETBEUI protocol information to the network device not listed in the managed list Host name information to be included in this managed list.   一種自動探知網際網路協定位址裝置存在之管控方法,應用於管控網路,該管控網路係連線偵測主機、管控伺服器以及外部複數個連網裝置,包含:令該偵測主機自動執行掃描作業,以得知連網裝置之網際網路協定位址;以及令該管控伺服器取得網際網路協定位址並將對應之連網裝置列於已受管控列表,該管控伺服器係執行常駐性被動監掃描作業,以讓未列於該已受管控列表之該連網裝置連線至該管控網路下,即時的取得該網際網路協定位址。  A method for automatically detecting the existence of an Internet Protocol address device is applied to a control network, which is a connection detection host, a control server, and an external plurality of networking devices, including: Automatically performing a scan job to learn the Internet Protocol address of the networked device; and having the control server obtain the Internet Protocol address and list the corresponding networked device on the managed list, the control server The resident passive monitoring scan operation is performed to connect the networked device not listed in the controlled list to the control network to obtain the Internet Protocol address in real time.   如請求項6所述之自動探知網際網路協定位址裝置存在之管控方法,其中該管控伺服器係取得未列於該已受管控列表之該連網裝置連線之逆位址識別協定回應封包,以即時的取得該網際網路協定位址。  The method for automatically detecting the existence of an internet protocol address device as described in claim 6, wherein the management server obtains a reverse address identification protocol response of the network connection device not listed in the managed list Packet to get the Internet Protocol address in real time.   如請求項7所述之自動探知網際網路協定位址裝置存在之管控方法,該管控伺服器係篩選該逆位址識別協定回應封包,以將符合篩選條件之該連網裝置列入管控。  The control method for automatically detecting the presence of the Internet Protocol address device as described in claim 7 is that the management server filters the reverse address identification protocol response packet to include the networked device that meets the screening condition.   如請求項8所述之自動探知網際網路協定位址裝置存在之管控方法,其中該篩選條件進一步包含封包來源端實體位址、封包來源端網際網路協定位址、封包目的端實體位址、封包目的端網際網路協定位址其中至少一。  The method for automatically detecting the existence of an internet protocol address device as described in claim 8, wherein the screening condition further comprises a packet source end physical address, a packet source end internet protocol address, and a packet destination end physical address At least one of the packets of the destination end internet protocol address.   如請求項9所述之自動探知網際網路協定位址裝置存在之管控方法,其中該管控伺服器係對未列於該已受管控列表之該連網裝置發送NETBIOS/NETBEUI通訊協定資訊來取得主機名稱資訊,以列入該已受管控列表。  The method for automatically detecting the presence of an Internet Protocol address device as described in claim 9, wherein the management server sends NETBIOS/NETBEUI protocol information to the network device not listed in the managed list. Host name information to be included in this managed list.  
TW106113706A 2017-04-25 2017-04-25 Automatic control system for controlling the existence of internet protocol address device and control method thereof TWI628936B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW106113706A TWI628936B (en) 2017-04-25 2017-04-25 Automatic control system for controlling the existence of internet protocol address device and control method thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW106113706A TWI628936B (en) 2017-04-25 2017-04-25 Automatic control system for controlling the existence of internet protocol address device and control method thereof

Publications (2)

Publication Number Publication Date
TWI628936B TWI628936B (en) 2018-07-01
TW201840165A true TW201840165A (en) 2018-11-01

Family

ID=63640587

Family Applications (1)

Application Number Title Priority Date Filing Date
TW106113706A TWI628936B (en) 2017-04-25 2017-04-25 Automatic control system for controlling the existence of internet protocol address device and control method thereof

Country Status (1)

Country Link
TW (1) TWI628936B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI714386B (en) * 2019-12-09 2020-12-21 中華電信股份有限公司 Method for detecting hidden network address and management server

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040103314A1 (en) * 2002-11-27 2004-05-27 Liston Thomas F. System and method for network intrusion prevention
CN1558605A (en) * 2004-01-19 2004-12-29 上海交通大学 Method for realizing loophole scanning
US7962957B2 (en) * 2007-04-23 2011-06-14 International Business Machines Corporation Method and apparatus for detecting port scans with fake source address
US8635686B2 (en) * 2007-05-25 2014-01-21 Apple Inc. Integrated privilege separation and network interception
US10129239B2 (en) * 2015-05-08 2018-11-13 Citrix Systems, Inc. Systems and methods for performing targeted scanning of a target range of IP addresses to verify security certificates

Also Published As

Publication number Publication date
TWI628936B (en) 2018-07-01

Similar Documents

Publication Publication Date Title
US9847965B2 (en) Asset detection system
US8955036B2 (en) System asset repository management
US8954573B2 (en) Network address repository management
EP2836954B1 (en) Opportunistic system scanning
US11108738B2 (en) Communication apparatus and communication system
US11032302B2 (en) Traffic anomaly detection for IoT devices in field area network
US10652211B2 (en) Control device, border router, control method, and control program
CN105262738A (en) Router and method for preventing ARP attacks thereof
WO2020118377A1 (en) Apparatus and process for monitoring network behaviour of internet-of-things (iot) devices
CN101834870A (en) Method and device for preventing deceptive attack of MAC (Medium Access Control) address
JP6737610B2 (en) Communication device
US8955049B2 (en) Method and a program for controlling communication of target apparatus
CN110099015B (en) Method executed by network switching equipment, network switching equipment and medium
WO2016008212A1 (en) Terminal as well as method for detecting security of terminal data interaction, and storage medium
WO2020132949A1 (en) Industrial control system monitoring method, device and system, and computer-readable medium
TWI628936B (en) Automatic control system for controlling the existence of internet protocol address device and control method thereof
KR101494329B1 (en) System and Method for detecting malignant process
US9124625B1 (en) Interdicting undesired service
US10015179B2 (en) Interrogating malware
KR20140113276A (en) Self-configuring local area network security
KR20150026187A (en) System and Method for dropper distinction
TW202209846A (en) Network connection blocking method with dual-mode switching
CN111683068A (en) Method for positioning lost host, protection device, network security equipment and medium
US20160020971A1 (en) Node information detection apparatus, node information detection method, and program
WO2024116666A1 (en) Detection system, detection method, and program