CN105262738A - 一种路由器及其防arp攻击的方法 - Google Patents
一种路由器及其防arp攻击的方法 Download PDFInfo
- Publication number
- CN105262738A CN105262738A CN201510617397.3A CN201510617397A CN105262738A CN 105262738 A CN105262738 A CN 105262738A CN 201510617397 A CN201510617397 A CN 201510617397A CN 105262738 A CN105262738 A CN 105262738A
- Authority
- CN
- China
- Prior art keywords
- address
- mac address
- message
- arp
- dhcp message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 69
- 230000016571 aggressive behavior Effects 0.000 claims description 42
- 230000006870 function Effects 0.000 claims description 20
- 238000012544 monitoring process Methods 0.000 claims description 2
- 230000008569 process Effects 0.000 description 11
- 238000012545 processing Methods 0.000 description 9
- 238000001914 filtration Methods 0.000 description 7
- 230000003068 static effect Effects 0.000 description 4
- 238000012360 testing method Methods 0.000 description 4
- 238000010924 continuous production Methods 0.000 description 3
- 230000008859 change Effects 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000004044 response Effects 0.000 description 2
- 102100022002 CD59 glycoprotein Human genes 0.000 description 1
- 101710176679 CD59 glycoprotein Proteins 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 238000013519 translation Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1466—Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/74—Address processing for routing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/50—Address allocation
- H04L61/5007—Internet protocol [IP] addresses
- H04L61/5014—Internet protocol [IP] addresses using dynamic host configuration protocol [DHCP] or bootstrap protocol [BOOTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1483—Countermeasures against malicious traffic service impersonation, e.g. phishing, pharming or web spoofing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1491—Countermeasures against malicious traffic using deception as countermeasure, e.g. honeypots, honeynets, decoys or entrapment
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/1066—Session management
- H04L65/1073—Registration or de-registration
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2101/00—Indexing scheme associated with group H04L61/00
- H04L2101/60—Types of network addresses
- H04L2101/618—Details of network addresses
- H04L2101/622—Layer-2 addresses, e.g. medium access control [MAC] addresses
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computing Systems (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Health & Medical Sciences (AREA)
- Virology (AREA)
- General Health & Medical Sciences (AREA)
- Business, Economics & Management (AREA)
- General Business, Economics & Management (AREA)
- Multimedia (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
Abstract
Description
Claims (15)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510617397.3A CN105262738B (zh) | 2015-09-24 | 2015-09-24 | 一种路由器及其防arp攻击的方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510617397.3A CN105262738B (zh) | 2015-09-24 | 2015-09-24 | 一种路由器及其防arp攻击的方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN105262738A true CN105262738A (zh) | 2016-01-20 |
CN105262738B CN105262738B (zh) | 2019-08-16 |
Family
ID=55102243
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510617397.3A Active CN105262738B (zh) | 2015-09-24 | 2015-09-24 | 一种路由器及其防arp攻击的方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN105262738B (zh) |
Cited By (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106488458A (zh) * | 2016-12-21 | 2017-03-08 | 锐捷网络股份有限公司 | 检测网关arp欺骗的方法及装置 |
CN107295020A (zh) * | 2017-08-16 | 2017-10-24 | 北京新网数码信息技术有限公司 | 一种地址解析协议攻击的处理方法及装置 |
CN107483514A (zh) * | 2017-10-13 | 2017-12-15 | 北京知道创宇信息技术有限公司 | 攻击监控设备及智能设备 |
CN107690004A (zh) * | 2016-08-04 | 2018-02-13 | 中兴通讯股份有限公司 | 地址解析协议报文的处理方法及装置 |
CN107707486A (zh) * | 2017-10-26 | 2018-02-16 | 锐捷网络股份有限公司 | 一种基于openflow通道的报文处理方法和装置 |
CN108234522A (zh) * | 2018-03-01 | 2018-06-29 | 深圳市共进电子股份有限公司 | 防止地址解析协议arp攻击方法、装置、计算机设备和存储介质 |
CN108418806A (zh) * | 2018-02-05 | 2018-08-17 | 新华三信息安全技术有限公司 | 一种报文的处理方法及装置 |
CN109428862A (zh) * | 2017-08-29 | 2019-03-05 | 武汉安天信息技术有限责任公司 | 一种在局域网内检测arp攻击的方法和装置 |
CN110113290A (zh) * | 2018-02-01 | 2019-08-09 | 华为技术有限公司 | 网络攻击的检测方法、装置、主机及存储介质 |
CN110401616A (zh) * | 2018-04-24 | 2019-11-01 | 北京码牛科技有限公司 | 一种提高mac地址和ip地址安全性和稳定性的方法和系统 |
CN110401617A (zh) * | 2018-04-24 | 2019-11-01 | 北京码牛科技有限公司 | 一种防止arp欺骗的方法和系统 |
WO2019218740A1 (zh) * | 2018-05-16 | 2019-11-21 | 中兴通讯股份有限公司 | 报文优先级的确定、发送方法及装置、路由系统 |
CN110661799A (zh) * | 2019-09-24 | 2020-01-07 | 北京安信天行科技有限公司 | 一种arp欺骗行为的检测方法及系统 |
CN111083154A (zh) * | 2019-12-24 | 2020-04-28 | 北京网太科技发展有限公司 | 一种安全防护方法、装置及存储介质 |
CN112822148A (zh) * | 2020-08-17 | 2021-05-18 | 北京辰信领创信息技术有限公司 | 物联网感知层终端arp中间人攻击防护设计 |
WO2021197292A1 (zh) * | 2020-03-30 | 2021-10-07 | 上海连尚网络科技有限公司 | 用于检测dhcp劫持的方法和设备 |
CN113839889A (zh) * | 2021-09-18 | 2021-12-24 | 深圳震有科技股份有限公司 | 一种报文处理方法、终端及计算机可读存储介质 |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1466341A (zh) * | 2002-06-22 | 2004-01-07 | ��Ϊ��������˾ | 一种动态地址分配中防止ip地址欺骗的方法 |
CN1612537A (zh) * | 2003-10-29 | 2005-05-04 | 华为技术有限公司 | 防范网际协议以太网中假冒主机的方法 |
CN101370019A (zh) * | 2008-09-26 | 2009-02-18 | 北京星网锐捷网络技术有限公司 | 防止地址解析协议报文欺骗攻击的方法及交换机 |
CN101488951A (zh) * | 2008-12-31 | 2009-07-22 | 成都市华为赛门铁克科技有限公司 | 一种地址解析协议攻击防范方法、设备和通信网络 |
CN101635713A (zh) * | 2009-06-09 | 2010-01-27 | 北京安天电子设备有限公司 | 一种防止局域网arp欺骗攻击的方法及系统 |
US20100107250A1 (en) * | 2007-09-06 | 2010-04-29 | Huawei Technologies Co., Ltd. | Method and apparatus for defending against arp spoofing attacks |
-
2015
- 2015-09-24 CN CN201510617397.3A patent/CN105262738B/zh active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1466341A (zh) * | 2002-06-22 | 2004-01-07 | ��Ϊ��������˾ | 一种动态地址分配中防止ip地址欺骗的方法 |
CN1612537A (zh) * | 2003-10-29 | 2005-05-04 | 华为技术有限公司 | 防范网际协议以太网中假冒主机的方法 |
US20100107250A1 (en) * | 2007-09-06 | 2010-04-29 | Huawei Technologies Co., Ltd. | Method and apparatus for defending against arp spoofing attacks |
CN101370019A (zh) * | 2008-09-26 | 2009-02-18 | 北京星网锐捷网络技术有限公司 | 防止地址解析协议报文欺骗攻击的方法及交换机 |
CN101488951A (zh) * | 2008-12-31 | 2009-07-22 | 成都市华为赛门铁克科技有限公司 | 一种地址解析协议攻击防范方法、设备和通信网络 |
CN101635713A (zh) * | 2009-06-09 | 2010-01-27 | 北京安天电子设备有限公司 | 一种防止局域网arp欺骗攻击的方法及系统 |
Cited By (26)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107690004B (zh) * | 2016-08-04 | 2021-10-08 | 中兴通讯股份有限公司 | 地址解析协议报文的处理方法及装置 |
CN107690004A (zh) * | 2016-08-04 | 2018-02-13 | 中兴通讯股份有限公司 | 地址解析协议报文的处理方法及装置 |
CN106488458A (zh) * | 2016-12-21 | 2017-03-08 | 锐捷网络股份有限公司 | 检测网关arp欺骗的方法及装置 |
CN107295020A (zh) * | 2017-08-16 | 2017-10-24 | 北京新网数码信息技术有限公司 | 一种地址解析协议攻击的处理方法及装置 |
CN109428862A (zh) * | 2017-08-29 | 2019-03-05 | 武汉安天信息技术有限责任公司 | 一种在局域网内检测arp攻击的方法和装置 |
CN107483514A (zh) * | 2017-10-13 | 2017-12-15 | 北京知道创宇信息技术有限公司 | 攻击监控设备及智能设备 |
CN107707486A (zh) * | 2017-10-26 | 2018-02-16 | 锐捷网络股份有限公司 | 一种基于openflow通道的报文处理方法和装置 |
CN110113290B (zh) * | 2018-02-01 | 2021-01-05 | 华为技术有限公司 | 网络攻击的检测方法、装置、主机及存储介质 |
CN110113290A (zh) * | 2018-02-01 | 2019-08-09 | 华为技术有限公司 | 网络攻击的检测方法、装置、主机及存储介质 |
CN108418806A (zh) * | 2018-02-05 | 2018-08-17 | 新华三信息安全技术有限公司 | 一种报文的处理方法及装置 |
CN108234522A (zh) * | 2018-03-01 | 2018-06-29 | 深圳市共进电子股份有限公司 | 防止地址解析协议arp攻击方法、装置、计算机设备和存储介质 |
CN108234522B (zh) * | 2018-03-01 | 2021-01-22 | 深圳市共进电子股份有限公司 | 防止地址解析协议arp攻击方法、装置、计算机设备和存储介质 |
CN110401617A (zh) * | 2018-04-24 | 2019-11-01 | 北京码牛科技有限公司 | 一种防止arp欺骗的方法和系统 |
CN110401616A (zh) * | 2018-04-24 | 2019-11-01 | 北京码牛科技有限公司 | 一种提高mac地址和ip地址安全性和稳定性的方法和系统 |
CN110505176A (zh) * | 2018-05-16 | 2019-11-26 | 中兴通讯股份有限公司 | 报文优先级的确定、发送方法及装置、路由系统 |
WO2019218740A1 (zh) * | 2018-05-16 | 2019-11-21 | 中兴通讯股份有限公司 | 报文优先级的确定、发送方法及装置、路由系统 |
US11303567B2 (en) | 2018-05-16 | 2022-04-12 | Xi'an Zhongxing New Software Co., Ltd. | Method and device for determining and sending priority of packet, and routing system |
CN110505176B (zh) * | 2018-05-16 | 2023-02-21 | 中兴通讯股份有限公司 | 报文优先级的确定、发送方法及装置、路由系统 |
CN110505176B9 (zh) * | 2018-05-16 | 2023-04-11 | 中兴通讯股份有限公司 | 报文优先级的确定、发送方法及装置、路由系统 |
CN110661799A (zh) * | 2019-09-24 | 2020-01-07 | 北京安信天行科技有限公司 | 一种arp欺骗行为的检测方法及系统 |
CN111083154A (zh) * | 2019-12-24 | 2020-04-28 | 北京网太科技发展有限公司 | 一种安全防护方法、装置及存储介质 |
WO2021197292A1 (zh) * | 2020-03-30 | 2021-10-07 | 上海连尚网络科技有限公司 | 用于检测dhcp劫持的方法和设备 |
CN112822148A (zh) * | 2020-08-17 | 2021-05-18 | 北京辰信领创信息技术有限公司 | 物联网感知层终端arp中间人攻击防护设计 |
CN112822148B (zh) * | 2020-08-17 | 2023-02-21 | 北京辰信领创信息技术有限公司 | 物联网感知层终端arp中间人攻击防护设计 |
CN113839889A (zh) * | 2021-09-18 | 2021-12-24 | 深圳震有科技股份有限公司 | 一种报文处理方法、终端及计算机可读存储介质 |
CN113839889B (zh) * | 2021-09-18 | 2024-04-05 | 深圳震有科技股份有限公司 | 一种报文处理方法、终端及计算机可读存储介质 |
Also Published As
Publication number | Publication date |
---|---|
CN105262738B (zh) | 2019-08-16 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105262738A (zh) | 一种路由器及其防arp攻击的方法 | |
US5805801A (en) | System and method for detecting and preventing security | |
US8819764B2 (en) | Network security monitor apparatus and network security monitor system | |
US5905859A (en) | Managed network device security method and apparatus | |
CN104853003B (zh) | 一种基于Netfilter的地址、端口跳变通信实现方法 | |
CN105721457B (zh) | 基于动态变换的网络安全防御系统和网络安全防御方法 | |
US20060256729A1 (en) | Method and apparatus for identifying and disabling worms in communication networks | |
CN100459563C (zh) | 认证网关及其数据处理方法 | |
CN100581162C (zh) | 一种防止地址解析欺骗的方法 | |
KR20170015340A (ko) | 통신 네트워크에 대한 개선된 액세스를 위한 방법 및 네트워크 요소 | |
Wu et al. | A source address validation architecture (SAVA) testbed and deployment experience | |
Hijazi et al. | Address resolution protocol spoofing attacks and security approaches: A survey | |
JP2003527793A (ja) | ネットワークにおける、自動的な侵入検出及び偏向のための方法 | |
CN101834870A (zh) | 一种防止mac地址欺骗攻击的方法和装置 | |
US7596808B1 (en) | Zero hop algorithm for network threat identification and mitigation | |
CN104468619B (zh) | 一种实现双栈web认证的方法和认证网关 | |
CN102594834B (zh) | 网络攻击的防御方法及装置、网络设备 | |
WO2012014509A1 (ja) | 不正アクセス遮断制御方法 | |
CN103957171A (zh) | 基于智能交换机物理端口和mac地址的接入控制方法和系统 | |
JP6418232B2 (ja) | ネットワーク管理装置、ネットワークシステム、ネットワーク管理方法およびプログラム | |
US20090213752A1 (en) | Detecting Double Attachment Between a Wired Network and At Least One Wireless Network | |
CN100484132C (zh) | 一种防范网际协议以太网中假冒主机的方法 | |
JP2006099590A (ja) | アクセス制御装置、アクセス制御方法およびアクセス制御プログラム | |
Pandey et al. | Counter measures to combat misuses of mac address spoofing techniques | |
TWI628936B (zh) | Automatic control system for controlling the existence of internet protocol address device and control method thereof |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20201119 Address after: Room 10242, No. 260, Jiangshu Road, Xixing street, Binjiang District, Hangzhou City, Zhejiang Province Patentee after: Hangzhou Jiji Intellectual Property Operation Co.,Ltd. Address before: 201616 Shanghai city Songjiang District Sixian Road No. 3666 Patentee before: Phicomm (Shanghai) Co.,Ltd. |
|
TR01 | Transfer of patent right |
Effective date of registration: 20201221 Address after: 8319 Yanshan Road, Bengbu City, Anhui Province Patentee after: Bengbu Lichao Information Technology Co.,Ltd. Address before: Room 10242, No. 260, Jiangshu Road, Xixing street, Binjiang District, Hangzhou City, Zhejiang Province Patentee before: Hangzhou Jiji Intellectual Property Operation Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210311 Address after: 313000 room 1019, Xintiandi commercial office, Yishan street, Wuxing District, Huzhou, Zhejiang, China Patentee after: Huzhou YingLie Intellectual Property Operation Co.,Ltd. Address before: 8319 Yanshan Road, Bengbu City, Anhui Province Patentee before: Bengbu Lichao Information Technology Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20231222 Address after: Room 1213, Building A5, No. 8 Haihu Road, Chengxi District, Xining City, Qinghai Province, 810000 Patentee after: Qinghai Luoman Information Technology Co.,Ltd. Address before: 313000 room 1019, Xintiandi commercial office, Yishan street, Wuxing District, Huzhou, Zhejiang, China Patentee before: Huzhou YingLie Intellectual Property Operation Co.,Ltd. |
|
TR01 | Transfer of patent right |