WO2009008052A1 - 中継装置および中継方法 - Google Patents
中継装置および中継方法 Download PDFInfo
- Publication number
- WO2009008052A1 WO2009008052A1 PCT/JP2007/063672 JP2007063672W WO2009008052A1 WO 2009008052 A1 WO2009008052 A1 WO 2009008052A1 JP 2007063672 W JP2007063672 W JP 2007063672W WO 2009008052 A1 WO2009008052 A1 WO 2009008052A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- packet
- transmission source
- address
- relay
- destination
- Prior art date
Links
- 230000005540 biological transmission Effects 0.000 abstract 6
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0263—Rule management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Business, Economics & Management (AREA)
- General Business, Economics & Management (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
ネットワークシステムに含まれる各ルータ100~500は、攻撃パケットを検出した場合に、攻撃パケットに含まれる送信元IPアドレスを宛先IPアドレスに設定し、攻撃パケットに含まれる宛先IPアドレスを送信元IPアドレスに設定した送信元検査用パケット(要求用)を出力する。そして、送信元検査用パケット(回答用)を取得した場合に、送信元検査用パケット(回答用)に含まれる送信元IPアドレスと宛先IPアドレスと当該応答パケットを受信したインタフェースの識別情報とを対応付けてフィルタテーブルに登録し、フィルタテーブルに基づいて転送対象となるパケットを転送するか否かを判定する。
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/JP2007/063672 WO2009008052A1 (ja) | 2007-07-09 | 2007-07-09 | 中継装置および中継方法 |
JP2009522445A JP4677501B2 (ja) | 2007-07-09 | 2007-07-09 | 中継装置および中継方法 |
US12/633,899 US8276204B2 (en) | 2007-07-09 | 2009-12-09 | Relay device and relay method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/JP2007/063672 WO2009008052A1 (ja) | 2007-07-09 | 2007-07-09 | 中継装置および中継方法 |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US12/633,899 Continuation US8276204B2 (en) | 2007-07-09 | 2009-12-09 | Relay device and relay method |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2009008052A1 true WO2009008052A1 (ja) | 2009-01-15 |
Family
ID=40228249
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2007/063672 WO2009008052A1 (ja) | 2007-07-09 | 2007-07-09 | 中継装置および中継方法 |
Country Status (3)
Country | Link |
---|---|
US (1) | US8276204B2 (ja) |
JP (1) | JP4677501B2 (ja) |
WO (1) | WO2009008052A1 (ja) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2010219750A (ja) * | 2009-03-16 | 2010-09-30 | Ricoh Co Ltd | 情報処理装置、情報処理方法、及びプログラム |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8634084B2 (en) * | 2010-03-29 | 2014-01-21 | Kabushiki Kaisha Toshiba | Data processing system and image forming apparatus |
JP2018082310A (ja) * | 2016-11-16 | 2018-05-24 | 富士通株式会社 | PaaS接続プログラム、PaaS接続方法及びPaaS接続装置 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2000312225A (ja) * | 1998-10-05 | 2000-11-07 | Hitachi Ltd | パケット中継装置 |
JP2002158699A (ja) * | 2000-11-20 | 2002-05-31 | Nippon Telegr & Teleph Corp <Ntt> | DoS攻撃防止方法および装置およびシステムおよび記録媒体 |
JP2002176454A (ja) * | 2000-12-05 | 2002-06-21 | Nec Corp | パケット転送制御装置、パケット転送制御方法およびパケット転送制御システム |
JP2005130190A (ja) * | 2003-10-23 | 2005-05-19 | Nippon Telegr & Teleph Corp <Ntt> | 攻撃パケット防御システム |
JP2007060456A (ja) * | 2005-08-26 | 2007-03-08 | Alaxala Networks Corp | フィルタリングを備えるパケット転送装置 |
Family Cites Families (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100333250B1 (ko) * | 1998-10-05 | 2002-05-17 | 가나이 쓰토무 | 패킷 중계 장치 |
JP3996288B2 (ja) * | 1998-12-07 | 2007-10-24 | 株式会社日立製作所 | 通信ネットワークシステムの管理方法および情報中継装置 |
US7013482B1 (en) * | 2000-07-07 | 2006-03-14 | 802 Systems Llc | Methods for packet filtering including packet invalidation if packet validity determination not timely made |
US6772334B1 (en) * | 2000-08-31 | 2004-08-03 | Networks Associates, Inc. | System and method for preventing a spoofed denial of service attack in a networked computing environment |
US7536548B1 (en) * | 2002-06-04 | 2009-05-19 | Rockwell Automation Technologies, Inc. | System and methodology providing multi-tier-security for network data exchange with industrial control components |
US20040162992A1 (en) * | 2003-02-19 | 2004-08-19 | Sami Vikash Krishna | Internet privacy protection device |
KR100744530B1 (ko) * | 2003-09-17 | 2007-08-01 | 한국전자통신연구원 | 연결 재설정 기법을 이용한 실시간 연결 역추적 장치 및그 방법 |
KR100834570B1 (ko) * | 2006-06-23 | 2008-06-02 | 한국전자통신연구원 | 실시간 상태 기반 패킷 검사 방법 및 이를 위한 장치 |
-
2007
- 2007-07-09 WO PCT/JP2007/063672 patent/WO2009008052A1/ja active Application Filing
- 2007-07-09 JP JP2009522445A patent/JP4677501B2/ja not_active Expired - Fee Related
-
2009
- 2009-12-09 US US12/633,899 patent/US8276204B2/en not_active Expired - Fee Related
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2000312225A (ja) * | 1998-10-05 | 2000-11-07 | Hitachi Ltd | パケット中継装置 |
JP2002158699A (ja) * | 2000-11-20 | 2002-05-31 | Nippon Telegr & Teleph Corp <Ntt> | DoS攻撃防止方法および装置およびシステムおよび記録媒体 |
JP2002176454A (ja) * | 2000-12-05 | 2002-06-21 | Nec Corp | パケット転送制御装置、パケット転送制御方法およびパケット転送制御システム |
JP2005130190A (ja) * | 2003-10-23 | 2005-05-19 | Nippon Telegr & Teleph Corp <Ntt> | 攻撃パケット防御システム |
JP2007060456A (ja) * | 2005-08-26 | 2007-03-08 | Alaxala Networks Corp | フィルタリングを備えるパケット転送装置 |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2010219750A (ja) * | 2009-03-16 | 2010-09-30 | Ricoh Co Ltd | 情報処理装置、情報処理方法、及びプログラム |
Also Published As
Publication number | Publication date |
---|---|
JPWO2009008052A1 (ja) | 2010-09-02 |
US8276204B2 (en) | 2012-09-25 |
US20100088764A1 (en) | 2010-04-08 |
JP4677501B2 (ja) | 2011-04-27 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2008020430A3 (en) | Voice over ip forwarding | |
EP2139187A4 (en) | METHOD, COMMUNICATION SYSTEM AND DEVICE FOR ARP PACKET PROCESSING | |
WO2009135611A3 (en) | Network device and method for local routing of data traffic | |
WO2007050244A3 (en) | Method and system for detecting and responding to attacking networks | |
WO2007047413A3 (en) | Method and system for detecting a change in device attachment | |
WO2010120303A3 (en) | Managing shared content in virtual collaboration systems | |
WO2010078076A3 (en) | Systems, methods, and computer program products for adaptively adjusting a registration interval of an endpoint | |
JP2012533958A5 (ja) | ||
ATE488945T1 (de) | Verfahren und vorrichtung zum detektieren eines portscans mit gefälschter quelladdresse | |
WO2009005925A3 (en) | Automated collection of forensic evidence associated with a network security incident | |
WO2008045302A3 (en) | Device, system and method for use of micro-policies in intrusion detection/prevention | |
WO2009116020A3 (en) | In-band dpi application awareness propagation enhancements | |
WO2006019701A3 (en) | Inline intrusion detection using a single physical port | |
ATE556513T1 (de) | Verfahren zur erkennung von transportlecks in hybridschaltungsnetzwerken | |
WO2008079337A3 (en) | Systems, methods, and apparatus for communicating the state of a wireless user device in a wireless domain to an application server in an internet protocol (ip) domain | |
WO2009067443A3 (en) | Geographic trunk groups | |
WO2007130416A3 (en) | Title-enabled networking | |
WO2007050818A3 (en) | A method and apparatus for processing connectionopenresponse message in wireless communication systems | |
EP2048832A4 (en) | METHOD AND SYSTEM FOR LEADING THE MEDIA FLOW AND METHOD AND SYSTEM FOR LINE DETECTION | |
WO2007083899A3 (en) | Method and apparatus for providing congestion and travel time information to users | |
DE602007004482D1 (de) | Verfahren und vorrichtung zum nachweis von weiterleitungsschleifen | |
WO2008012792A3 (en) | A method and system for detection of nat devices in a network | |
WO2007070889A3 (en) | System and method for detection of data traffic on a network | |
WO2009042056A3 (en) | Multiple and multi-part message methods and systems for handling electronic message content for electronic communications devices | |
WO2011097179A3 (en) | Method and apparatus for detecting devices on a local area network |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 07790493 Country of ref document: EP Kind code of ref document: A1 |
|
ENP | Entry into the national phase |
Ref document number: 2009522445 Country of ref document: JP Kind code of ref document: A |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 07790493 Country of ref document: EP Kind code of ref document: A1 |