CN114172838A - False IP route real-time monitoring method and device - Google Patents
False IP route real-time monitoring method and device Download PDFInfo
- Publication number
- CN114172838A CN114172838A CN202111325467.XA CN202111325467A CN114172838A CN 114172838 A CN114172838 A CN 114172838A CN 202111325467 A CN202111325467 A CN 202111325467A CN 114172838 A CN114172838 A CN 114172838A
- Authority
- CN
- China
- Prior art keywords
- route
- address
- false
- real
- allocated
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/02—Topology update or discovery
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/02—Topology update or discovery
- H04L45/04—Interdomain routing, e.g. hierarchical routing
Abstract
The invention discloses a real-time monitoring method and a real-time monitoring device for false IP (Internet protocol) routing, wherein the method comprises the following steps: establishing an AS number and IP address distribution information base which comprises a distributed AS information base and a distributed IP address base; constructing a BGP route server, establishing BGP protocol connection with an intra-domain route reflector RR, and receiving BGP route updating records received by a whole network border router in real time; checking whether the address range of the newly advertised IP route is within an IP address range already allocated globally; the AS path attributes of the newly advertised IP route are checked, whether all AS numbers contained in the AS path are within the globally allocated AS number range. The method and the device are used AS a check basis of false IP routing by constructing a global network AS and an IP address distribution library; and establishing BGP protocol connection with an intra-domain route reflector RR, receiving BGP route updating records received by the whole network border router in real time, and realizing the detection of real-time false IP and false AS routes.
Description
Technical Field
The invention relates to the field of route monitoring, in particular to a real-time monitoring method and a real-time monitoring device for false IP (Internet protocol) routes.
Background
Autonomous System (AS) numbers and IP addresses are important basic resources of the global Internet, and icann (the Internet Corporation for Assigned Names and numbers) is the organization responsible for the number assignment of IP addresses and AS numbers on the global Internet. ICANN assigns IP addresses and AS numbers to Regional Internet registries (Regional Internet Registry) and these RIRs then take care of the registration service for that region. Globally, there are 5 RIRs: ARIN, RIPE, APNIC, LACNIC, AFRINIC. ARIN is mainly responsible for North America services, RIPE is mainly responsible for European services, LACNIC is mainly responsible for Latin American services, AFRINIC is mainly responsible for African services, and APNIC is mainly responsible for Asia-Pacific services. Due to scarcity of number resources and a certain cost for registration use, some organizations apply some unallocated number segments to the internet without being allocated registration authorization by the registration authority, and since the number segments are not allocated and do not conflict with other allocated numbers, the number segments are not easy to be discovered, but the unauthorized use belongs to infringement and conflicts with users registered for use via legal channels in the future, so that false IP routing and AS numbers of the illegal application need to be discovered and disposed in time, and adverse effects on internet application are prevented.
Disclosure of Invention
In order to solve the problems existing in the manual network fault location, the invention provides a real-time monitoring method and a real-time monitoring device for false IP routes. Meanwhile, a BGP routing server is constructed, BGP protocol connection is established with an intra-domain route reflector RR, updating records of the whole network BGP routing are received in real time, whether the address range of the newly announced IP routing is in the globally allocated IP address range or not is checked, whether each AS number in the AS path attribute of the IP routing is in the globally allocated network AS number range or not is checked, if the AS number is not in the range, the IP routing or the AS number is an unallocated false address or AS number, and abnormal routing alarms are generated for subsequent treatment.
In order to achieve the purpose, the invention adopts the following technical scheme:
in an embodiment of the present invention, a method for real-time monitoring of a false IP route is provided, which includes:
s01, establishing AS number and IP address distribution information base, including distributed AS information base and distributed IP address base;
s02, constructing a BGP routing server, establishing BGP protocol connection with an intra-domain route reflector RR, and receiving BGP routing update records received by the whole network border router in real time;
s03, checking whether the address range of the newly announced IP route is in the IP address range allocated in the world;
s04, checking the AS path attribute of the newly announced IP route, and whether all the AS numbers contained in the AS path are within the range of the globally allocated AS numbers.
Further, the S01 includes:
s011, logging in a 5-large-area address registration mechanism website every day in an FTP mode;
s012, downloading AS numbers and IP address distribution lists of international regional registration authorities;
and S013, merging the downloaded data and constructing an AS information base and an IP address base which are distributed by the latest global network.
Further, the allocated IP address library includes: the allocated IPV4 address pool and the allocated IPV6 address pool.
Further, the route update record in S02 includes the route update records of IPV4 and IPV 6.
Further, the S03 includes:
s031, route updating record received in real time, check whether the address range of the route prefix is completely contained in the IP address base already allocated;
s032, if the address range of the route prefix is not completely contained, the route is considered as a false route, and a false route abnormal alarm is generated.
Further, the S04 includes:
s041, updating the record by the route received in real time, and checking whether all AS numbers in the ASPATH attribute are contained in the distributed AS information base;
and S042, if the AS number is not contained, the route is considered AS a false AS route, and a false AS route abnormity alarm is generated.
In an embodiment of the present invention, a false IP routing real-time monitoring device is further provided, where the device includes:
the database establishing module is used for establishing an AS number and IP address distribution information base, including a distributed AS information base and a distributed IP address base;
the BGP routing server building module builds a BGP routing server, builds BGP protocol connection with an intra-domain route reflector RR and receives BGP routing update records received by a whole network border router in real time;
the IP route checking module is used for checking whether the address range of the newly announced IP route is in the IP address range allocated in the world;
and the AS path checking module is used for checking the AS path attribute of the newly announced IP route and whether all AS numbers contained in the AS path are in the range of the globally allocated AS numbers.
Further, the database building module comprises:
the login module logs in 5 large-area address registration mechanism websites every day in an FTP mode;
downloading the AS number and the IP address distribution list of each international regional registration agency by the downloading module;
and the merging and constructing module merges the downloaded data and constructs an AS information base and an IP address base which are distributed by the latest global network.
Further, the allocated IP address library includes: the allocated IPV4 address pool and the allocated IPV6 address pool.
Further, the route update record in the BGP route server build module includes route update records of IPV4 and IPV 6.
Further, the IP routing checking module includes:
the IP receiving and checking module is used for receiving the route updating record in real time and checking whether the address range of the route prefix is completely contained in the allocated IP address library or not;
if the address ranges of the IP abnormal alarm module and the route prefix are not completely contained, the route is considered as a false route, and a false route abnormal alarm is generated.
Further, the AS path checking module includes:
the AS receives the checking module and the route updating record received in real time, and checks whether all AS numbers in the ASPATH attribute are contained in the distributed AS information base;
and if the AS abnormity warning module and the AS number are not contained, the route is considered AS a false AS route, and a false AS route abnormity warning is generated.
In an embodiment of the present invention, a computer device is further provided, which includes a memory, a processor, and a computer program stored on the memory and executable on the processor, and when the processor executes the computer program, the processor implements the foregoing real-time monitoring method for false IP routing.
In an embodiment of the present invention, a computer-readable storage medium is further provided, where a computer program for executing the real-time monitoring method for the fake IP route is stored in the computer-readable storage medium.
Has the advantages that:
1. the AS numbers and IP address distribution lists of international regional registration organizations are downloaded daily in the public website, and a global network AS and IP address distribution library is constructed to be used AS a check basis of false IP routing.
2. And constructing a BGP route server, establishing BGP protocol connection with an intra-domain route reflector RR, receiving BGP route updating records received by the whole network border router in real time, and comparing global IP addresses with an AS number distribution library to realize the detection of real-time false IP and false AS routes.
3. The detection of false IP and false AS routes of the IPV4 and the IPV6 can be completed simultaneously.
Drawings
FIG. 1 is a schematic flow chart of a real-time monitoring method for false IP routing according to an embodiment of the present invention;
FIG. 2 is a schematic structural diagram of a real-time monitoring apparatus for false IP routing according to an embodiment of the present invention;
fig. 3 is a schematic structural diagram of a computer device according to an embodiment of the present invention.
Detailed Description
The principles and spirit of the present invention will be described below with reference to several exemplary embodiments, which should be understood to be presented only to enable those skilled in the art to better understand and implement the present invention, and not to limit the scope of the present invention in any way. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the disclosure to those skilled in the art.
As will be appreciated by one skilled in the art, embodiments of the present invention may be embodied as a system, apparatus, device, method, or computer program product. Accordingly, the present disclosure may be embodied in the form of: entirely hardware, entirely software (including firmware, resident software, micro-code, etc.), or a combination of hardware and software.
The terms and explanations relating to the present invention are as follows:
autonomous System (AS):
the global internet is divided into a plurality of AS autonomous domains, and operators, organizations, even companies and the like in each country can apply for the AS numbers. The respective assigned IP addresses are marked to clearly identify to which AS number they belong.
BGP protocol:
BGP is used to exchange routing information between different Autonomous Systems (AS). When two ases need to exchange routing information, each AS must specify a node running BGP to exchange routing information with the other AS on behalf of the AS. This node may be a host. But is typically a router executing BGP. Routers in two ASs that exchange information using BGP are also called Border gateways (Border gateways) or Border routers (Border routers)
EBGP: refers to BGP protocol connection established between devices of different AS, and is used for route exchange between different AS
IBGP: refers to the BGP protocol connection established between devices of the same AS, for use in route switching between different devices within the same AS. The boundary device learns the route to the external AS through the EBGP and issues the route of the local AS, and the route learned from the external AS is notified to other devices in the AS domain through the IBGP
BGP routing Attribute-ASPATH (AS Path)
The ASPATH attribute of a BGP route marks which ASs a route passes between ASs from the publishing source AS to the recipient. When publishing a BGP route to another AS, each AS adds its own AS number to the header of the route's ASPATH attribute, thereby recording the AS path that the BGP route propagates through.
Fake routing (Bogus Route):
in the internet, an IP address field which is not allocated by a routing registry is used, and the route of the address field is externally issued. The routing of an IP address segment that is issued without an assigned registration is referred to as a fake route
False AS number (Bogus AS):
in the internet, a network AS number which is not allocated by a route registration mechanism is used, and the unallocated AS number is externally issued AS a route attribute. If any AS in the ASPATH attribute of the BGP route is not allocated, the route is considered AS an abnormal route of a false AS.
According to the embodiment of the invention, a real-time monitoring method and a real-time monitoring device for false IP routes are provided, and the method comprises the steps of logging in websites of all address registration institutions every day in an FTP mode, downloading AS numbers and IP address distribution lists of all international regional registration institutions, and constructing a latest global network AS and IP address distribution library after merging. Meanwhile, a BGP routing server is constructed, BGP protocol connection is established with an intra-domain route reflector RR, updating records of the whole network BGP routing are received in real time, whether the address range of the newly announced IP routing is in the globally allocated IP address range or not is checked, whether each AS number in the AS path attribute of the IP routing is in the globally allocated network AS number range or not is checked, if the AS number is not in the range, the IP routing or the AS number is an unallocated false address or AS number, and abnormal routing alarms are generated for subsequent treatment.
The principles and spirit of the present invention are explained in detail below with reference to several representative embodiments of the invention.
Fig. 1 is a schematic flow chart of a real-time monitoring method for false IP routing according to an embodiment of the present invention. As shown in fig. 1, the method includes:
s01, establishing AS number and IP address distribution information base, including distributed AS information base and distributed IP address base;
s02, constructing a BGP routing server, establishing BGP protocol connection with an intra-domain route reflector RR, and receiving BGP routing update records received by the whole network border router in real time;
s03, checking whether the address range of the newly announced IP route is in the IP address range allocated in the world;
s04, checking the AS path attribute of the newly announced IP route, and whether all the AS numbers contained in the AS path are within the range of the globally allocated AS numbers.
S01 includes:
s011, logging in a 5-large-area address registration mechanism website every day in an FTP mode;
s012, downloading AS numbers and IP address distribution lists of international regional registration authorities;
and S013, merging the downloaded data and constructing an AS information base and an IP address base which are distributed by the latest global network.
The allocated IP address pool includes: the allocated IPV4 address pool and the allocated IPV6 address pool.
The route update record in S02 includes the route update records of IPV4 and IPV 6.
S03 includes:
s031, route updating record received in real time, check whether the address range of the route prefix is completely contained in the IP address base already allocated;
s032, if the address range of the route prefix is not completely contained, the route is considered as a false route, and a false route abnormal alarm is generated.
S04 includes:
s041, updating the record by the route received in real time, and checking whether all AS numbers in the ASPATH attribute are contained in the distributed AS information base;
and S042, if the AS number is not contained, the route is considered AS a false AS route, and a false AS route abnormity alarm is generated.
It should be noted that although the operations of the method of the present invention have been described in the above embodiments and the accompanying drawings in a particular order, this does not require or imply that these operations must be performed in this particular order, or that all of the operations shown must be performed, to achieve the desired results. Additionally or alternatively, certain steps may be omitted, multiple steps combined into one step execution, and/or one step broken down into multiple step executions.
For a clearer explanation of the real-time monitoring method for the false IP route, a specific embodiment is described below, however, it should be noted that the embodiment is only for better explaining the present invention and is not to be construed as an undue limitation on the present invention.
Example (b):
the first step is as follows: the system downloads the address and AS allocation files from the regional address registry website, AS described below,
the file content is as follows:
apnic|JP|asn|173|1|20020801|allocated
apnic|NZ|asn|681|1|20020801|allocated
apnic|AU|asn|1221|1|20000131|allocated
apnic|JP|asn|1233|1|20020801|allocated
apnic|AU|ipv4|1.0.0.0|256|20110811|assigned
apnic|CN|ipv4|1.0.1.0|256|20110414|allocated
apnic|CN|ipv4|1.0.2.0|256|20110414|allocated
apnic|AU|ipv4|1.0.4.0|256|20110412|allocated
the second step is that: and constructing an allocated AS and an IP address information base according to the allocation file. Assigned AS numbers include, 173, 16, 1221, 1233; the allocated address segment includes:
1.0.0.0/24、1.0.1.0/24、1.0.2.0/24、1.0.4.0/24。
the third step: the system BGP route server establishes BGP protocol connection with the in-network route reflector, and receives the following BGP route update records:
and updating the route A: prefix: 1.0.0.0/24ASPATH attribute: 1221173
And B, route updating: prefix: 1.0.0.0/24ASPATH attribute: 1222
And C, route updating: prefix: 1.0.3.0/24ASPATH Attribute: 1221173
The fourth step: the system checks whether the BGP route updating record is an abnormal record according to the collected global AS and the address distribution record, and obtains the following result:
and updating the route A: checking to pass;
and B, route updating: generate alarm "abnormal route update, prefix is 1.0.0.0/24, ASPATH is 1222, exception cause AS1222 is not allocated";
and C, route updating: an alarm is generated, namely abnormal routing update with the prefix of 1.0.3.0/24 and the IP address of the abnormal reason is not allocated.
Based on the same invention concept, the invention also provides a false IP route real-time monitoring device. The implementation of the device can be referred to the implementation of the method, and repeated details are not repeated. The term "module," as used below, may be a combination of software and/or hardware that implements a predetermined function. Although the means described in the embodiments below are preferably implemented in software, an implementation in hardware, or a combination of software and hardware is also possible and contemplated.
Fig. 2 is a schematic structural diagram of a real-time monitoring apparatus for false IP routing according to an embodiment of the present invention. As shown in fig. 2, the apparatus includes:
the database establishing module 101 establishes an AS number and IP address distribution information base which comprises a distributed AS information base and a distributed IP address base;
a BGP route server construction module 102, which constructs a BGP route server, and receives, in real time, a BGP route update record received by the border router of the entire network by establishing a BGP protocol connection with the intra-domain route reflector RR;
the IP route checking module 103 checks whether the address range of the newly announced IP route is within the IP address range allocated in the world;
the AS path checking module 104 checks the AS path attribute of the newly advertised IP route, and whether all the AS numbers included in the AS path are within the globally allocated AS number range.
The database building module 101 includes:
the login module logs in 5 large-area address registration mechanism websites every day in an FTP mode;
downloading the AS number and the IP address distribution list of each international regional registration agency by the downloading module;
and the merging and constructing module merges the downloaded data and constructs an AS information base and an IP address base which are distributed by the latest global network.
The allocated IP address repository includes: the allocated IPV4 address pool and the allocated IPV6 address pool.
The route update record in the BGP route server build module 102 includes route update records for IPV4 and IPV 6.
The IP route checking module 103 includes:
the IP receiving and checking module is used for receiving the route updating record in real time and checking whether the address range of the route prefix is completely contained in the allocated IP address library or not;
if the address ranges of the IP abnormal alarm module and the route prefix are not completely contained, the route is considered as a false route, and a false route abnormal alarm is generated.
The AS path checking module 104 includes:
the AS receives the checking module and the route updating record received in real time, and checks whether all AS numbers in the ASPATH attribute are contained in the distributed AS information base;
and if the AS abnormity warning module and the AS number are not contained, the route is considered AS a false AS route, and a false AS route abnormity warning is generated.
It should be noted that although several modules of the false IP route real-time monitoring device are mentioned in the above detailed description, such division is merely exemplary and not mandatory. Indeed, the features and functionality of two or more of the modules described above may be embodied in one module according to embodiments of the invention. Conversely, the features and functions of one module described above may be further divided into embodiments by a plurality of modules.
Based on the aforementioned inventive concept, as shown in fig. 3, the present invention further provides a computer device 200, which includes a memory 210, a processor 220, and a computer program 230 stored on the memory 210 and operable on the processor 220, wherein the processor 220 implements the aforementioned real-time monitoring method for false IP routing when executing the computer program 230.
Based on the above inventive concept, the present invention further provides a computer readable storage medium storing a computer program for executing the above method for real-time monitoring of false IP routes.
The invention provides a real-time monitoring method and a real-time monitoring device for false IP routes.A global network AS and an IP address distribution library are constructed by downloading AS numbers and IP address distribution lists of registration organizations of international regions every day on an open website, and are used AS a check basis for the false IP routes; constructing a BGP route server, establishing BGP protocol connection with an intra-domain route reflector RR, receiving BGP route updating records received by a whole network border router in real time, and comparing global IP addresses with an AS number distribution library to realize detection of real-time false IP and false AS routes; the detection of false IP and false AS routes of the IPV4 and the IPV6 can be completed simultaneously.
While the spirit and principles of the invention have been described with reference to several particular embodiments, it is to be understood that the invention is not limited to the disclosed embodiments, nor is the division of aspects, which is for convenience only as the features in such aspects may not be combined to benefit. The invention is intended to cover various modifications and equivalent arrangements included within the spirit and scope of the appended claims.
The limitation of the protection scope of the present invention is understood by those skilled in the art, and various modifications or changes which can be made by those skilled in the art without inventive efforts based on the technical solution of the present invention are still within the protection scope of the present invention.
Claims (14)
1. A real-time monitoring method for false IP route is characterized in that the method comprises the following steps:
s01, establishing AS number and IP address distribution information base, including distributed AS information base and distributed IP address base;
s02, constructing a BGP routing server, establishing BGP protocol connection with an intra-domain route reflector RR, and receiving BGP routing update records received by the whole network border router in real time;
s03, checking whether the address range of the newly announced IP route is in the IP address range allocated in the world;
s04, checking the AS path attribute of the newly announced IP route, and whether all the AS numbers contained in the AS path are within the range of the globally allocated AS numbers.
2. The real-time monitoring method for false IP routing according to claim 1, wherein the S01 includes:
s011, logging in a 5-large-area address registration mechanism website every day in an FTP mode;
s012, downloading AS numbers and IP address distribution lists of international regional registration authorities;
and S013, merging the downloaded data and constructing an AS information base and an IP address base which are distributed by the latest global network.
3. The real-time monitoring method for false IP routing according to claim 1 or 2, wherein the allocated IP address library comprises: the allocated IPV4 address pool and the allocated IPV6 address pool.
4. The real-time monitoring method for false IP routing as claimed in claim 1, wherein the route update record in S02 includes the route update records of IPV4 and IPV 6.
5. The real-time monitoring method for false IP routing according to claim 1, wherein the S03 includes:
s031, route updating record received in real time, check whether the address range of the route prefix is completely contained in the IP address base already allocated;
s032, if the address range of the route prefix is not completely contained, the route is considered as a false route, and a false route abnormal alarm is generated.
6. The real-time monitoring method for false IP routing according to claim 1, wherein the S04 includes:
s041, updating the record by the route received in real time, and checking whether all AS numbers in the ASPATH attribute are contained in the distributed AS information base;
and S042, if the AS number is not contained, the route is considered AS a false AS route, and a false AS route abnormity alarm is generated.
7. A real-time monitoring apparatus for false IP routing, the apparatus comprising:
the database establishing module is used for establishing an AS number and IP address distribution information base, including a distributed AS information base and a distributed IP address base;
the BGP routing server building module builds a BGP routing server, builds BGP protocol connection with an intra-domain route reflector RR and receives BGP routing update records received by a whole network border router in real time;
the IP route checking module is used for checking whether the address range of the newly announced IP route is in the IP address range allocated in the world;
and the AS path checking module is used for checking the AS path attribute of the newly announced IP route and whether all AS numbers contained in the AS path are in the range of the globally allocated AS numbers.
8. The real-time monitoring device for false IP routing as claimed in claim 7, wherein the database establishing module comprises:
the login module logs in 5 large-area address registration mechanism websites every day in an FTP mode;
downloading the AS number and the IP address distribution list of each international regional registration agency by the downloading module;
and the merging and constructing module merges the downloaded data and constructs an AS information base and an IP address base which are distributed by the latest global network.
9. The real-time monitoring device for false IP routing according to claim 7 or 8, wherein the allocated IP address library comprises: the allocated IPV4 address pool and the allocated IPV6 address pool.
10. The real-time monitoring device of false IP routing of claim 7, wherein the route update record in the BGP route server build module includes route update records of IPV4 and IPV 6.
11. The apparatus according to claim 7, wherein the IP routing checking module comprises:
the IP receiving and checking module is used for receiving the route updating record in real time and checking whether the address range of the route prefix is completely contained in the allocated IP address library or not;
if the address ranges of the IP abnormal alarm module and the route prefix are not completely contained, the route is considered as a false route, and a false route abnormal alarm is generated.
12. The apparatus according to claim 7, wherein the AS path checking module comprises:
the AS receives the checking module and the route updating record received in real time, and checks whether all AS numbers in the ASPATH attribute are contained in the distributed AS information base;
and if the AS abnormity warning module and the AS number are not contained, the route is considered AS a false AS route, and a false AS route abnormity warning is generated.
13. A computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, characterized in that the processor implements the method of claims 1-6 when executing the computer program.
14. A computer-readable storage medium, characterized in that the computer-readable storage medium stores a computer program for executing the method of claims 1-6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111325467.XA CN114172838A (en) | 2021-11-10 | 2021-11-10 | False IP route real-time monitoring method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111325467.XA CN114172838A (en) | 2021-11-10 | 2021-11-10 | False IP route real-time monitoring method and device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114172838A true CN114172838A (en) | 2022-03-11 |
Family
ID=80478488
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111325467.XA Pending CN114172838A (en) | 2021-11-10 | 2021-11-10 | False IP route real-time monitoring method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114172838A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115314466A (en) * | 2022-05-06 | 2022-11-08 | 保升(中国)科技实业有限公司 | Operation and maintenance perception technology based on IP/E1 network |
Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030051048A1 (en) * | 2001-06-29 | 2003-03-13 | Watson Thomas Lee | System and method for router virtual networking |
| US6952740B1 (en) * | 1999-10-04 | 2005-10-04 | Nortel Networks Limited | Apparatus and method of maintaining a route table |
| CN1764122A (en) * | 2004-10-22 | 2006-04-26 | 中国人民解放军国防科学技术大学 | Route between fields abnormity detecting method based on multi view |
| US20060256711A1 (en) * | 2004-11-01 | 2006-11-16 | Kazuhiro Kusama | Communication path monitoring system and communication network system |
| EP2207372A1 (en) * | 2009-01-12 | 2010-07-14 | Juniper Networks, Inc. | Network-based macro mobility in cellular networks using an extended routing protocol |
| CN101867602A (en) * | 2010-05-21 | 2010-10-20 | 王升 | Network information technology for background audit, issue and fake prevention of supply and demand information |
| US20110072157A1 (en) * | 2008-05-29 | 2011-03-24 | Ya Liu | Method, device, and communications system for managing querying mapping information |
| CN102158469A (en) * | 2011-01-27 | 2011-08-17 | 电子科技大学 | Method for defending border gateway protocol prefix hijacking attack |
| WO2015194829A2 (en) * | 2014-06-16 | 2015-12-23 | 주식회사 플랜티넷 | Method for detecting number of selected devices among plurality of client terminals on private network using same public ip by web server provided with additional non-specified domain name from internet access request traffic of client terminal making request for internet access, and selective detection system for device in state in which public ip is shared |
| CN105959225A (en) * | 2016-04-28 | 2016-09-21 | 杭州华三通信技术有限公司 | Method and device for improving convergence speed of BGP route |
| CN106649476A (en) * | 2016-09-29 | 2017-05-10 | 北京中联网盟科技股份有限公司 | IP address information query system |
-
2021
- 2021-11-10 CN CN202111325467.XA patent/CN114172838A/en active Pending
Patent Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6952740B1 (en) * | 1999-10-04 | 2005-10-04 | Nortel Networks Limited | Apparatus and method of maintaining a route table |
| US20030051048A1 (en) * | 2001-06-29 | 2003-03-13 | Watson Thomas Lee | System and method for router virtual networking |
| CN1764122A (en) * | 2004-10-22 | 2006-04-26 | 中国人民解放军国防科学技术大学 | Route between fields abnormity detecting method based on multi view |
| US20060256711A1 (en) * | 2004-11-01 | 2006-11-16 | Kazuhiro Kusama | Communication path monitoring system and communication network system |
| US20110072157A1 (en) * | 2008-05-29 | 2011-03-24 | Ya Liu | Method, device, and communications system for managing querying mapping information |
| EP2207372A1 (en) * | 2009-01-12 | 2010-07-14 | Juniper Networks, Inc. | Network-based macro mobility in cellular networks using an extended routing protocol |
| CN101867602A (en) * | 2010-05-21 | 2010-10-20 | 王升 | Network information technology for background audit, issue and fake prevention of supply and demand information |
| CN102158469A (en) * | 2011-01-27 | 2011-08-17 | 电子科技大学 | Method for defending border gateway protocol prefix hijacking attack |
| WO2015194829A2 (en) * | 2014-06-16 | 2015-12-23 | 주식회사 플랜티넷 | Method for detecting number of selected devices among plurality of client terminals on private network using same public ip by web server provided with additional non-specified domain name from internet access request traffic of client terminal making request for internet access, and selective detection system for device in state in which public ip is shared |
| CN105959225A (en) * | 2016-04-28 | 2016-09-21 | 杭州华三通信技术有限公司 | Method and device for improving convergence speed of BGP route |
| CN106649476A (en) * | 2016-09-29 | 2017-05-10 | 北京中联网盟科技股份有限公司 | IP address information query system |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115314466A (en) * | 2022-05-06 | 2022-11-08 | 保升(中国)科技实业有限公司 | Operation and maintenance perception technology based on IP/E1 network |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11792041B2 (en) | Private alias endpoints for isolated virtual networks | |
| JP6737965B2 (en) | Virtual network verification service | |
| US8380870B2 (en) | Method and system for filtering of network traffic | |
| JP5480265B2 (en) | Secure resource name resolution | |
| EP3354000B1 (en) | Device for providing domain names resolution services | |
| Schuba et al. | Addressing weaknesses in the domain name system protocol | |
| US20240048579A1 (en) | Identification of malicious domain campaigns using unsupervised clustering | |
| US10341286B2 (en) | Methods and systems for updating domain name service (DNS) resource records | |
| JP2007036374A (en) | Packet transfer apparatus, communication network, and packet transfer method | |
| US8935430B2 (en) | Secondary service updates into DNS system | |
| CN114172838A (en) | False IP route real-time monitoring method and device | |
| Cisco | Cisco PIX Release Notes Version 6.2(1) | |
| Cisco | Cisco PIX Release Notes Version 6.2(1) | |
| CN114006724A (en) | Method and system for discovering and authenticating encrypted DNS (Domain name Server) resolver | |
| CN115943603A (en) | Block chain enhanced routing authorization | |
| US20210136030A1 (en) | Method for Sending an Information Item and for Receiving an Information Item for the Reputation Management of an IP Resource | |
| Ghani et al. | PHDS: IP prefix hijack detection system | |
| Röthke | A Test Framework for RPKI Prefix Validation in BGP Implementations | |
| CN116260751A (en) | Abnormal route monitoring method, device, computer equipment and storage medium | |
| CN115665086A (en) | Domain name resolution method and device based on network management equipment and electronic equipment | |
| Rafiee et al. | Challenges and Solutions for DNS Security in IPv6 | |
| Vouteva et al. | Automated configuration of BGP on edge routers | |
| Goth | Should we stop trusting trust? | |
| SCHEERDER et al. | SHAPING DNS SECURITY WITH CURVES |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |