CN106453367A - 一种基于sdn的防地址扫描攻击的方法及系统 - Google Patents
一种基于sdn的防地址扫描攻击的方法及系统 Download PDFInfo
- Publication number
- CN106453367A CN106453367A CN201610955063.1A CN201610955063A CN106453367A CN 106453367 A CN106453367 A CN 106453367A CN 201610955063 A CN201610955063 A CN 201610955063A CN 106453367 A CN106453367 A CN 106453367A
- Authority
- CN
- China
- Prior art keywords
- address
- sdn
- message
- flow table
- switch
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 26
- 230000013011 mating Effects 0.000 claims description 30
- 230000004044 response Effects 0.000 claims description 11
- 238000000605 extraction Methods 0.000 claims description 3
- 230000008569 process Effects 0.000 description 9
- 230000006870 function Effects 0.000 description 7
- 238000010586 diagram Methods 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 4
- 238000012360 testing method Methods 0.000 description 3
- 230000007812 deficiency Effects 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 238000004088 simulation Methods 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 230000008878 coupling Effects 0.000 description 1
- 238000010168 coupling process Methods 0.000 description 1
- 238000005859 coupling reaction Methods 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 239000013589 supplement Substances 0.000 description 1
- 238000010408 sweeping Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1466—Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/10—Mapping addresses of different types
- H04L61/103—Mapping addresses of different types across network layers, e.g. resolution of network layer into physical layer addresses or address resolution protocol [ARP]
Abstract
Description
配置项 | 含义 |
基于SDN的防地址扫描攻击功能 | 打开或关闭基于SDN的防地址扫描攻击功能 |
配置项 | 含义 |
IP地址 | 此字段表明SDN交换机的接口IP地址 |
IP地址掩码 | 此字段表明SDN交换机的接口IP地址掩码 |
交换机id | 此字段表明SDN交换机的id,交换机系统MAC地址表明交换机id |
交换机端口 | 此字段表明SDN交换机的端口 |
配置项 | 含义 |
基于SDN的防地址扫描攻击功能 | 打开或关闭基于SDN的防地址扫描攻击功能 |
配置项 | 含义 |
IP地址 | 此字段表明SDN交换机的接口IP地址 |
IP地址掩码 | 此字段表明SDN交换机的接口IP地址掩码 |
交换机id | 此字段表明SDN交换机的id,交换机系统MAC地址表明交换机id |
交换机端口 | 此字段表明SDN交换机的端口 |
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610955063.1A CN106453367B (zh) | 2016-10-27 | 2016-10-27 | 一种基于sdn的防地址扫描攻击的方法及系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610955063.1A CN106453367B (zh) | 2016-10-27 | 2016-10-27 | 一种基于sdn的防地址扫描攻击的方法及系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106453367A true CN106453367A (zh) | 2017-02-22 |
CN106453367B CN106453367B (zh) | 2020-01-24 |
Family
ID=58179322
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610955063.1A Active CN106453367B (zh) | 2016-10-27 | 2016-10-27 | 一种基于sdn的防地址扫描攻击的方法及系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106453367B (zh) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108011825A (zh) * | 2017-11-10 | 2018-05-08 | 深圳市泰信通信息技术有限公司 | 一种基于软件定义网络的多网络设备互联现实方法及系统 |
CN109495352A (zh) * | 2018-12-27 | 2019-03-19 | 新华三技术有限公司 | 一种传输路径的确定方法和装置 |
CN117254978A (zh) * | 2023-11-16 | 2023-12-19 | 苏州元脑智能科技有限公司 | 一种异常扫描行为的处理方法及装置 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20150021282A (ko) * | 2013-08-20 | 2015-03-02 | 한국전자통신연구원 | 제어 네트워크에서의 스캐닝 공격 탐지 장치 |
CN104468624A (zh) * | 2014-12-22 | 2015-03-25 | 上海斐讯数据通信技术有限公司 | Sdn控制器、路由/交换设备及网络防御方法 |
CN104901890A (zh) * | 2015-06-24 | 2015-09-09 | 上海斐讯数据通信技术有限公司 | 一种sdn的路由生成、匹配方法和系统 |
CN105827628A (zh) * | 2016-04-29 | 2016-08-03 | 上海斐讯数据通信技术有限公司 | 一种基于软件定义网络的防源地址欺骗的方法 |
-
2016
- 2016-10-27 CN CN201610955063.1A patent/CN106453367B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20150021282A (ko) * | 2013-08-20 | 2015-03-02 | 한국전자통신연구원 | 제어 네트워크에서의 스캐닝 공격 탐지 장치 |
CN104468624A (zh) * | 2014-12-22 | 2015-03-25 | 上海斐讯数据通信技术有限公司 | Sdn控制器、路由/交换设备及网络防御方法 |
CN104901890A (zh) * | 2015-06-24 | 2015-09-09 | 上海斐讯数据通信技术有限公司 | 一种sdn的路由生成、匹配方法和系统 |
CN105827628A (zh) * | 2016-04-29 | 2016-08-03 | 上海斐讯数据通信技术有限公司 | 一种基于软件定义网络的防源地址欺骗的方法 |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108011825A (zh) * | 2017-11-10 | 2018-05-08 | 深圳市泰信通信息技术有限公司 | 一种基于软件定义网络的多网络设备互联现实方法及系统 |
CN108011825B (zh) * | 2017-11-10 | 2020-07-28 | 深圳市泰信通信息技术有限公司 | 一种基于软件定义网络的多网络设备互联现实方法及系统 |
CN109495352A (zh) * | 2018-12-27 | 2019-03-19 | 新华三技术有限公司 | 一种传输路径的确定方法和装置 |
CN117254978A (zh) * | 2023-11-16 | 2023-12-19 | 苏州元脑智能科技有限公司 | 一种异常扫描行为的处理方法及装置 |
CN117254978B (zh) * | 2023-11-16 | 2024-02-09 | 苏州元脑智能科技有限公司 | 一种异常扫描行为的处理方法及装置 |
Also Published As
Publication number | Publication date |
---|---|
CN106453367B (zh) | 2020-01-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106506274B (zh) | 一种可动态扩展的高效单包溯源方法 | |
CN106878166B (zh) | 路由通告方法及装置 | |
EP3188409B1 (en) | Oam mechanisms for evpn active-active services | |
CN108449314B (zh) | 一种流量牵引方法和装置 | |
CN106712988B (zh) | 一种虚拟网络管理方法及装置 | |
CN103441932B (zh) | 一种主机路由表项生成方法及设备 | |
US20170331641A1 (en) | Deployment Of Virtual Extensible Local Area Network | |
CN104852840B (zh) | 一种控制虚拟机之间互访的方法及装置 | |
CN111654402B (zh) | 网络拓扑创建方法、装置、设备及存储介质 | |
JP2013509808A (ja) | 高性能、低電力データセンター相互接続構造のためのシステム及び方法 | |
JP6633775B2 (ja) | パケット伝送 | |
CN104184708A (zh) | Evi网络中抑制mac地址攻击的方法及边缘设备ed | |
CN108259304B (zh) | 一种转发表项同步方法及装置 | |
CN104580107B (zh) | 恶意攻击检测方法及控制器 | |
CN104038570B (zh) | 一种数据处理方法及装置 | |
CN108234223A (zh) | 一种数据中心综合管理系统的安全服务设计方法 | |
CN106453367A (zh) | 一种基于sdn的防地址扫描攻击的方法及系统 | |
US20220263859A1 (en) | Method and apparatus for defending against cyber attacks, receiving device and computer storage medium | |
CN108540386B (zh) | 一种防止业务流中断方法及装置 | |
JP2006261827A (ja) | ネットワーク機器、その管理装置、そのネットワーク接続方法およびそのネットワーク接続管理方法 | |
CN107465621A (zh) | 一种路由器发现方法、sdn控制器、路由器和网络系统 | |
Chaudhary et al. | A comprehensive survey on software‐defined networking for smart communities | |
CN108322454B (zh) | 一种网络安全检测方法及装置 | |
Borokhovich et al. | The show must go on: Fundamental data plane connectivity services for dependable SDNs | |
CN108768845B (zh) | 一种多归属主机路由同步方法及装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right |
Effective date of registration: 20201125 Address after: Room 10242, No. 260, Jiangshu Road, Xixing street, Binjiang District, Hangzhou City, Zhejiang Province Patentee after: Hangzhou Jiji Intellectual Property Operation Co.,Ltd. Address before: 201616 Shanghai city Songjiang District Sixian Road No. 3666 Patentee before: Phicomm (Shanghai) Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20201218 Address after: 8319 Yanshan Road, Bengbu City, Anhui Province Patentee after: Bengbu Lichao Information Technology Co.,Ltd. Address before: Room 10242, No. 260, Jiangshu Road, Xixing street, Binjiang District, Hangzhou City, Zhejiang Province Patentee before: Hangzhou Jiji Intellectual Property Operation Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210316 Address after: 313000 room 1019, Xintiandi commercial office, Yishan street, Wuxing District, Huzhou, Zhejiang, China Patentee after: Huzhou YingLie Intellectual Property Operation Co.,Ltd. Address before: 8319 Yanshan Road, Bengbu City, Anhui Province Patentee before: Bengbu Lichao Information Technology Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20230404 Address after: 570100 collective household of qunshang community, No. 582 qunshang village, Meilan District, Haikou City, Hainan Province Patentee after: Yang Dahai Address before: 313000 room 1019, Xintiandi commercial office, Yishan street, Wuxing District, Huzhou, Zhejiang, China Patentee before: Huzhou YingLie Intellectual Property Operation Co.,Ltd. |