CN1210653C - 保护网络避免数据分组过载的方法 - Google Patents
保护网络避免数据分组过载的方法 Download PDFInfo
- Publication number
- CN1210653C CN1210653C CNB998059722A CN99805972A CN1210653C CN 1210653 C CN1210653 C CN 1210653C CN B998059722 A CNB998059722 A CN B998059722A CN 99805972 A CN99805972 A CN 99805972A CN 1210653 C CN1210653 C CN 1210653C
- Authority
- CN
- China
- Prior art keywords
- packet
- source
- address
- source address
- classified counting
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1458—Denial of Service
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/40—Network security protocols
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (5)
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US09/075,289 US6189035B1 (en) | 1998-05-08 | 1998-05-08 | Method for protecting a network from data packet overload |
US09/075,289 | 1998-05-08 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN1308745A CN1308745A (zh) | 2001-08-15 |
CN1210653C true CN1210653C (zh) | 2005-07-13 |
Family
ID=22124735
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNB998059722A Expired - Fee Related CN1210653C (zh) | 1998-05-08 | 1999-04-01 | 保护网络避免数据分组过载的方法 |
Country Status (4)
Country | Link |
---|---|
US (1) | US6189035B1 (zh) |
EP (1) | EP1088261A4 (zh) |
CN (1) | CN1210653C (zh) |
WO (1) | WO1999059071A1 (zh) |
Families Citing this family (38)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6813275B1 (en) * | 2000-04-21 | 2004-11-02 | Hewlett-Packard Development Company, L.P. | Method and apparatus for preventing underflow and overflow across an asynchronous channel |
SE519317C2 (sv) * | 2000-07-07 | 2003-02-11 | Ericsson Telefon Ab L M | Förfarande och kommunikationsenhet för att blockera oönskad trafik i ett datakommunikationssystem |
US7106691B1 (en) | 2000-11-01 | 2006-09-12 | At&T Corp. | Method for tracking source and destination internet protocol data |
EP1227627B1 (en) * | 2001-01-26 | 2005-01-05 | Nec Corporation | Method and system for controlling a communication network and router used in the network |
US20020141420A1 (en) * | 2001-03-30 | 2002-10-03 | Sugiarto Basuki Afandi | Throttling control system and method |
US20020184362A1 (en) * | 2001-05-31 | 2002-12-05 | International Business Machines Corporation | System and method for extending server security through monitored load management |
US7684317B2 (en) | 2001-06-14 | 2010-03-23 | Nortel Networks Limited | Protecting a network from unauthorized access |
US20030009561A1 (en) | 2001-06-14 | 2003-01-09 | Sollee Patrick N. | Providing telephony services to terminals behind a firewall and /or network address translator |
US7412004B2 (en) * | 2001-06-29 | 2008-08-12 | Agere Systems Inc. | Method and apparatus for controlling buffer overflow in a communication system |
US7328250B2 (en) * | 2001-06-29 | 2008-02-05 | Nokia, Inc. | Apparatus and method for handling electronic mail |
US20030037260A1 (en) * | 2001-08-16 | 2003-02-20 | Gary Milo | Heuristic profiler for packet screening |
US7331060B1 (en) * | 2001-09-10 | 2008-02-12 | Xangati, Inc. | Dynamic DoS flooding protection |
DE10147771C2 (de) * | 2001-09-27 | 2003-07-31 | Siemens Ag | Verfahren zur Desensibilisierung des paketbasierten Anschlusses von Teilnehmern an ein Vermittlungssystem |
JP3590936B2 (ja) * | 2001-10-06 | 2004-11-17 | テラス テクノロジーズ,インコーポレイテッド | 動的ipフィルタリングモジュールを有する電子メールサービスシステム及び動的ipアドレスフィルタリング方法 |
US20030200441A1 (en) * | 2002-04-19 | 2003-10-23 | International Business Machines Corporation | Detecting randomness in computer network traffic |
US6800321B1 (en) | 2002-05-29 | 2004-10-05 | The Regents Of The University Of California | Reduced AC losses in HTS coated conductors |
CN100433667C (zh) * | 2002-05-29 | 2008-11-12 | 华为技术有限公司 | 网络地址转换中私网用户访问资源分配方法 |
TWI244297B (en) * | 2002-06-12 | 2005-11-21 | Thomson Licensing Sa | Apparatus and method adapted to communicate via a network |
US20040054925A1 (en) * | 2002-09-13 | 2004-03-18 | Cyber Operations, Llc | System and method for detecting and countering a network attack |
US7308716B2 (en) * | 2003-05-20 | 2007-12-11 | International Business Machines Corporation | Applying blocking measures progressively to malicious network traffic |
US7617526B2 (en) * | 2003-05-20 | 2009-11-10 | International Business Machines Corporation | Blocking of spam e-mail at a firewall |
DE10348207A1 (de) | 2003-10-16 | 2005-05-19 | Siemens Ag | Behandlung von Early Media-Daten II |
KR100628296B1 (ko) * | 2003-12-18 | 2006-09-27 | 한국전자통신연구원 | 네트워크 공격상황 분석 방법 |
US8176126B2 (en) * | 2004-08-26 | 2012-05-08 | International Business Machines Corporation | System, method and program to limit rate of transferring messages from suspected spammers |
US7889654B2 (en) * | 2005-03-30 | 2011-02-15 | At&T Intellectual Property Ii, L.P. | Loss tolerant transmission control protocol |
US7366132B2 (en) * | 2005-03-30 | 2008-04-29 | At&T Corp. | Loss tolerant transmission control protocol |
US10225282B2 (en) * | 2005-04-14 | 2019-03-05 | International Business Machines Corporation | System, method and program product to identify a distributed denial of service attack |
US20070255828A1 (en) * | 2006-05-01 | 2007-11-01 | Michael Paradise | Method and apparatus for controlling registration traffic for a server in a communication network |
US8510859B2 (en) | 2006-09-26 | 2013-08-13 | Intel Corporation | Methods and arrangements to launch trusted, co-existing environments |
US9961094B1 (en) | 2007-07-25 | 2018-05-01 | Xangati, Inc | Symptom detection using behavior probability density, network monitoring of multiple observation value types, and network monitoring using orthogonal profiling dimensions |
US8199641B1 (en) | 2007-07-25 | 2012-06-12 | Xangati, Inc. | Parallel distributed network monitoring |
US8639797B1 (en) | 2007-08-03 | 2014-01-28 | Xangati, Inc. | Network monitoring of behavior probability density |
WO2009130906A1 (ja) * | 2008-04-25 | 2009-10-29 | パナソニック株式会社 | 通信装置及び通信方法 |
US8108536B1 (en) * | 2008-06-30 | 2012-01-31 | Symantec Corporation | Systems and methods for determining the trustworthiness of a server in a streaming environment |
US10992555B2 (en) | 2009-05-29 | 2021-04-27 | Virtual Instruments Worldwide, Inc. | Recording, replay, and sharing of live network monitoring views |
US9270556B2 (en) | 2011-07-28 | 2016-02-23 | Hewlett Packard Development Company, L.P. | Flow control in packet processing systems |
US9654501B1 (en) * | 2014-12-15 | 2017-05-16 | Amazon Technologies, Inc. | Mitigation of distributed denial-of-service attacks |
CN110608517A (zh) * | 2019-09-20 | 2019-12-24 | 广东美的暖通设备有限公司 | 室内机地址的防误改方法、多联机系统及可读存储介质 |
Family Cites Families (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5835726A (en) * | 1993-12-15 | 1998-11-10 | Check Point Software Technologies Ltd. | System for securing the flow of and selectively modifying packets in a computer network |
US5864683A (en) * | 1994-10-12 | 1999-01-26 | Secure Computing Corporartion | System for providing secure internetwork by connecting type enforcing secure computers to external network for limiting access to data based on user and process access rights |
US5892900A (en) * | 1996-08-30 | 1999-04-06 | Intertrust Technologies Corp. | Systems and methods for secure transaction management and electronic rights protection |
GB9511314D0 (en) * | 1995-06-05 | 1995-08-02 | Gen Datacomm Adv Res | ATM network switch with congestion control |
JP2001519973A (ja) * | 1995-07-19 | 2001-10-23 | フジツウ ネットワーク コミュニケーションズ,インコーポレイテッド | 共用バッファへの優先度付きアクセス |
US5826014A (en) * | 1996-02-06 | 1998-10-20 | Network Engineering Software | Firewall system for protecting network elements connected to a public network |
JP3315588B2 (ja) * | 1996-05-16 | 2002-08-19 | 株式会社日立製作所 | トラヒック流量制御を行うatm交換機 |
-
1998
- 1998-05-08 US US09/075,289 patent/US6189035B1/en not_active Expired - Lifetime
-
1999
- 1999-04-01 CN CNB998059722A patent/CN1210653C/zh not_active Expired - Fee Related
- 1999-04-01 WO PCT/US1999/007235 patent/WO1999059071A1/en not_active Application Discontinuation
- 1999-04-01 EP EP99915214A patent/EP1088261A4/en not_active Withdrawn
Also Published As
Publication number | Publication date |
---|---|
CN1308745A (zh) | 2001-08-15 |
EP1088261A4 (en) | 2004-09-15 |
US6189035B1 (en) | 2001-02-13 |
WO1999059071A1 (en) | 1999-11-18 |
EP1088261A1 (en) | 2001-04-04 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN1210653C (zh) | 保护网络避免数据分组过载的方法 | |
US6738378B2 (en) | Method and apparatus for intelligent sorting and process determination of data packets destined to a central processing unit of a router or server on a data packet network | |
Abdelsayed et al. | An efficient filter for denial-of-service bandwidth attacks | |
CN101616129B (zh) | 防网络攻击流量过载保护的方法、装置和系统 | |
CN101106518B (zh) | 为中央处理器提供负载保护的拒绝服务方法 | |
EP1482709A2 (en) | Queuing methods for mitigation of packet spoofing | |
US20080134328A1 (en) | Scalable Filtering and Policing Mechanism for Protecting User Traffic in a Network | |
WO2002019109A1 (en) | Method for inoculating infected email | |
JP4768020B2 (ja) | IPネットワークにおいてターゲット被害者自己識別及び制御によってDoS攻撃を防御する方法 | |
CN1484148A (zh) | 用于syn/fin对应关系的秘密散列 | |
US7478168B2 (en) | Device, method and program for band control | |
CN101351781B (zh) | 在通信网络中处理传入分组的方法和系统 | |
US8904534B2 (en) | Method and apparatus for detecting scans in real-time | |
CN1697397A (zh) | 一种实现网络设备防攻击的方法 | |
CN106657126A (zh) | 检测及防御DDoS攻击的装置及方法 | |
US7464398B2 (en) | Queuing methods for mitigation of packet spoofing | |
CN1152517C (zh) | 防范网络攻击的方法 | |
CN114830113A (zh) | 保护有状态连接管理器中资源分配的系统和方法 | |
CN1741473A (zh) | 一种网络数据包有效性判定方法及系统 | |
CN1549496A (zh) | 一种网际协议报文的统计方法 | |
US20050021842A1 (en) | Real-time packet classification and rate-limiting control packets in a network processor based data-plane | |
EP2090061A2 (en) | Filtering and policing for defending against denial of service attacks a network | |
CN100536481C (zh) | Ip地址管理 | |
US20050138201A1 (en) | Technique for monitoring source addresses through statistical clustering of packets | |
CN1192577C (zh) | 网络设备中带流量控制的快速分发网帧的方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
ASS | Succession or assignment of patent right |
Owner name: MOTOROLA MOBILE CO., LTD. Free format text: FORMER OWNER: MOTOROLA INC. Effective date: 20101230 |
|
C41 | Transfer of patent application or patent right or utility model | ||
TR01 | Transfer of patent right |
Effective date of registration: 20101230 Address after: Illinois Instrunment Patentee after: MOTOROLA MOBILITY, Inc. Address before: Illinois Instrunment Patentee before: Motorola, Inc. |
|
C41 | Transfer of patent application or patent right or utility model | ||
C56 | Change in the name or address of the patentee | ||
CP01 | Change in the name or title of a patent holder |
Address after: Illinois State Patentee after: MOTOROLA MOBILITY LLC Address before: Illinois State Patentee before: MOTOROLA MOBILITY, Inc. |
|
CP02 | Change in the address of a patent holder |
Address after: Illinois State Patentee after: MOTOROLA MOBILITY, Inc. Address before: Illinois Instrunment Patentee before: MOTOROLA MOBILITY, Inc. |
|
TR01 | Transfer of patent right |
Effective date of registration: 20160623 Address after: California, USA Patentee after: Google Technology Holdings LLC Address before: Illinois State Patentee before: MOTOROLA MOBILITY LLC |
|
CF01 | Termination of patent right due to non-payment of annual fee | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20050713 Termination date: 20160401 |