CN109688129A - A kind of web site emergence treating method - Google Patents

A kind of web site emergence treating method Download PDF

Info

Publication number
CN109688129A
CN109688129A CN201811582774.4A CN201811582774A CN109688129A CN 109688129 A CN109688129 A CN 109688129A CN 201811582774 A CN201811582774 A CN 201811582774A CN 109688129 A CN109688129 A CN 109688129A
Authority
CN
China
Prior art keywords
web site
routing
network
control
router
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201811582774.4A
Other languages
Chinese (zh)
Inventor
陈仙住
郭海丰
揭水宝
郑晓伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Electric Fufu Mdt Infotech Ltd
Original Assignee
China Electric Fufu Mdt Infotech Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Electric Fufu Mdt Infotech Ltd filed Critical China Electric Fufu Mdt Infotech Ltd
Priority to CN201811582774.4A priority Critical patent/CN109688129A/en
Publication of CN109688129A publication Critical patent/CN109688129A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/14Routing performance; Theoretical aspects
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses a kind of web site emergence treating methods, it should be the following steps are included: 1) control routing and the CR router of the network where each web site that need to be disposed establish bgp neighbor, and allows to control routing and issue Routing Protocol to the CR router of the network where the web site of required disposition, wherein, the account for controlling routing and key escrow are logined to emergency response unified control center;2) when exception, which occurs, in web site needs emergency disposal, the automation of emergency response unified control center, which logins to control, routes and issues control instruction to routing is controlled, and controls routing generation blackhole route and instructs and pass through the CR router that Routing Protocol is issued to the place network of corresponding abnormal web site by BGP;3) above-mentioned CR router notices the blackhole route according to normal route announcement allows the flow for accessing the appearance exception web site to enter black hole to its administrative all network, so that the web site of appearance exception can not be visited again.Present invention processing is efficiently and at low cost.

Description

A kind of web site emergence treating method
Technical field
The present invention relates to a kind of web site emergence treating methods.
Background technique
With the high speed development for the information network that computer, information technology and mechanics of communication are support, with unprecedented Scale and speed change the life of the mankind.As Websites quantity is continuously increased, it is corresponding be website under fire Situation is also more and more.In the case where all kinds of websites are attacked, we it also seen that the generation quantity of webpage tamper event It increases rapidly.
The website being tampered is mostly that the influence powers such as government, school, informix portal, esbablished corporation are high, audient is wide Website.By taking government website as an example, distorting for color especially is attacked containing politics, can be caused serious harm to government image.Separately Outer some malicious persons may carry out semanteme to webpage using trust of the people to government website and distort, spread rumors, Cause the common people unnecessary panic and suspects.
Summary of the invention
The object of the present invention is to provide a kind of web site emergence treating methods that processing is efficient and at low cost.
To achieve the above object, the invention adopts the following technical scheme:
A kind of web site emergence treating method, the described method comprises the following steps:
1) when the web site that need to be disposed is within the scope of the network-control of control routing, control routing and each web site that need to be disposed The CR router of the network at place establishes bgp neighbor, and allows to control routing to the network where the web site of required disposition CR router issues Routing Protocol, wherein logins the account for controlling routing and key escrow to emergency response unified control center;
2) when exception, which occurs, in web site needs emergency disposal, control routing is logined in the automation of emergency response unified control center And issuing control instruction to controlling routing, control routing, which generates blackhole route and instructs and pass through BGP, is issued to Routing Protocol pair Answer the CR router of the place network of abnormal web site;
3) above-mentioned CR router notices the blackhole route to its administrative all network according to normal route announcement, thus There is the dead circuit of a highest priority by allowing access should be out in the IP for realizing that the administrative network of CR router is directed to abnormal web site Now the flow of abnormal web site enters black hole, so that the web site of appearance exception can not be visited again.
When the web site that need to be disposed is not within the scope of the network-control of control routing, answered when abnormal needs occurs in web site When anxious disposition, by the way that web site server is logined account and key escrow to emergency response unified control center, pass through it Server in station is logined in complete automation, completes the automatic start-stop operation of service.
The invention adopts the above technical scheme, has the advantages that
1, network deployment is rapidly completed in the short time, goes into operation form disposing capacity rapidly.
2, O&M cost is reduced, personnel's investment is reduced.In increasing security incident, pass through the function, Ji Nenggao The processing of effect there are the problem of, and can be reduced adverse effect.
3, security attack quick response, " foolproof " operation can be without judging that IP address specifically belongs to districts and cities and directly blocks. It is lasted from disposition instruction is connected to completion closure disposition, verification operation no more than 3 minutes, configuration second grade comes into force.Covering electricity comprehensively Communication network range blocks disposition without dead angle.Linkage, exclusive " nearly source closure " are docked with backbone network, it is ensured that block ten thousand nothings One loses.
4, core function relies on standard network Routing Protocol, is not necessarily to custom interface, promotes convenient for duplication.
Specific embodiment
A kind of web site emergence treating method of the present invention, the described method comprises the following steps:
1) when the web site that need to be disposed is within the scope of the network-control of control routing, control routing and each web site that need to be disposed The CR router of the network at place establishes bgp neighbor, and allows to control routing to the network where the web site of required disposition CR router issues Routing Protocol, wherein logins the account for controlling routing and key escrow to emergency response unified control center;
2) when exception, which occurs, in web site needs emergency disposal, control routing is logined in the automation of emergency response unified control center And issuing control instruction to controlling routing, control routing, which generates blackhole route and instructs and pass through BGP, is issued to Routing Protocol pair Answer the CR router of the place network of abnormal web site;
3) above-mentioned CR router notices the blackhole route to its administrative all network according to normal route announcement, thus real There is the dead circuit of a highest priority by allowing the access appearance in the IP that the existing administrative network of CR router is directed to abnormal web site The flow of abnormal web site enters black hole, so that the web site of appearance exception can not be visited again, realizes " key closure " function Energy.Pending data restores site traffic after restoring normal, provides station services again.
When the web site that need to be disposed is not within the scope of the network-control of control routing, answered when abnormal needs occurs in web site When anxious disposition, by the way that web site server is logined account and key escrow to emergency response unified control center, pass through it Server in station is logined in complete automation, is completed the automatic start-stop operation of service, is realized " key closing " function.Pending data restores just Restore station services again after often.
In addition, if encounter erroneous judgement misplacement it is stifled when, administrative staff click " One-key recovery " after carrying out security audit confirmation Restore web site service.
Above the preferred embodiment of the patent is described in detail, but this patent is not limited to above-mentioned embodiment party Formula within the knowledge of one of ordinary skill in the art can also be under the premise of not departing from this patent objective It makes a variety of changes.

Claims (2)

1. a kind of web site emergence treating method, it is characterised in that: the described method comprises the following steps:
1) when the web site that need to be disposed is within the scope of the network-control of control routing, control routing and each web site that need to be disposed The CR router of the network at place establishes bgp neighbor, and allows to control routing to the network where the web site of required disposition CR router issues Routing Protocol, wherein logins the account for controlling routing and key escrow to emergency response unified control center;
2) when exception, which occurs, in web site needs emergency disposal, control routing is logined in the automation of emergency response unified control center And issuing control instruction to controlling routing, control routing, which generates blackhole route and instructs and pass through BGP, is issued to Routing Protocol pair Answer the CR router of the place network of abnormal web site;
3) above-mentioned CR router notices the blackhole route to its administrative all network according to normal route announcement, thus real There is the dead circuit of a highest priority by allowing the access appearance in the IP that the existing administrative network of CR router is directed to abnormal web site The flow of abnormal web site enters black hole, so that the web site of appearance exception can not be visited again.
2. a kind of web site emergence treating method according to claim 1, it is characterised in that: the web site that need to be disposed is not When within the scope of the network-control of control routing, when exception, which occurs, in web site needs emergency disposal, by the way that web site is taken Business device logins account and key escrow to emergency response unified control center, logins server in station by its complete automation, Complete the automatic start-stop operation of service.
CN201811582774.4A 2018-12-24 2018-12-24 A kind of web site emergence treating method Pending CN109688129A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811582774.4A CN109688129A (en) 2018-12-24 2018-12-24 A kind of web site emergence treating method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811582774.4A CN109688129A (en) 2018-12-24 2018-12-24 A kind of web site emergence treating method

Publications (1)

Publication Number Publication Date
CN109688129A true CN109688129A (en) 2019-04-26

Family

ID=66188884

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811582774.4A Pending CN109688129A (en) 2018-12-24 2018-12-24 A kind of web site emergence treating method

Country Status (1)

Country Link
CN (1) CN109688129A (en)

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1566947A1 (en) * 2004-02-18 2005-08-24 AT&T Corp. Method for distributed denial-of-service attack mitigation by selective black-holing in MPLS VPNs
KR100789722B1 (en) * 2006-09-26 2008-01-02 한국정보보호진흥원 The method and system for preventing malicious code spread using web technology
CN101436995A (en) * 2008-12-04 2009-05-20 中国移动通信集团广东有限公司 Method for rapidly plugging IP address based on BGP virtual next-hop
CN101453389A (en) * 2008-11-19 2009-06-10 中国网络通信集团公司 Flow monitoring method and system
US20150288711A1 (en) * 2014-04-03 2015-10-08 The Sylint Group Network analysis apparatus and method
CN105678193A (en) * 2016-01-06 2016-06-15 杭州数梦工场科技有限公司 Tamper-proof processing method and device
CN107743109A (en) * 2016-10-31 2018-02-27 腾讯科技(深圳)有限公司 Means of defence, control device, processing unit and the system of flow attacking

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1566947A1 (en) * 2004-02-18 2005-08-24 AT&T Corp. Method for distributed denial-of-service attack mitigation by selective black-holing in MPLS VPNs
KR100789722B1 (en) * 2006-09-26 2008-01-02 한국정보보호진흥원 The method and system for preventing malicious code spread using web technology
CN101453389A (en) * 2008-11-19 2009-06-10 中国网络通信集团公司 Flow monitoring method and system
CN101436995A (en) * 2008-12-04 2009-05-20 中国移动通信集团广东有限公司 Method for rapidly plugging IP address based on BGP virtual next-hop
US20150288711A1 (en) * 2014-04-03 2015-10-08 The Sylint Group Network analysis apparatus and method
CN105678193A (en) * 2016-01-06 2016-06-15 杭州数梦工场科技有限公司 Tamper-proof processing method and device
CN107743109A (en) * 2016-10-31 2018-02-27 腾讯科技(深圳)有限公司 Means of defence, control device, processing unit and the system of flow attacking

Similar Documents

Publication Publication Date Title
CN109729180B (en) Whole system intelligent community platform
Toh Security for smart cities
Gan et al. Internet of things security analysis
Saxena et al. General study of intrusion detection system and survey of agent based intrusion detection system
EP1776823A1 (en) Anomaly-based intrusion detection
CN101911639A (en) The method of protection bi-directional communication channel and realize the device of this method
CN101951384B (en) Distributed security domain logic boundary protection method
CN111223195A (en) City level wisdom parking system platform
CN106992984A (en) A kind of method of the mobile terminal safety access information Intranet based on electric power acquisition net
CN109472895A (en) A kind of security protection integrated application management system and its management implementation method
Panguluri et al. Protecting water and wastewater infrastructure from cyber attacks
Rekik et al. A cyber-physical threat analysis for microgrids
CN113630409B (en) Abnormal flow identification method based on DNS analysis flow and IP flow fusion analysis
CN111400774B (en) Block chain system of secondary water supply anti-terrorism anti-poison safety system
CN109688129A (en) A kind of web site emergence treating method
CN106533542A (en) Big data network transmission protective system
CN116405301A (en) Block chain-based multi-fusion terminal and DDoS attack prevention method thereof
Sayfayn et al. Cybersafety analysis of the maroochy shire sewage spill (preliminary draft)
CN107682166A (en) The implementation method of safe O&M service platform remote data acquisition based on big data
Yina Discussion on computer network security technology and firewall technology
Pricop Security of industrial control systems-an emerging issue in romania national defense
Zhang Research of Campus Network Information Security
CN117171808B (en) System for checking and proving performance of forest stand
CN116527704A (en) Emergency auxiliary decision making system
Yi The Network Security Analysis System Design Based on B/S Structure: An Approach Research

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20190426

RJ01 Rejection of invention patent application after publication