WO2009008052A1 - 中継装置および中継方法 - Google Patents

中継装置および中継方法 Download PDF

Info

Publication number
WO2009008052A1
WO2009008052A1 PCT/JP2007/063672 JP2007063672W WO2009008052A1 WO 2009008052 A1 WO2009008052 A1 WO 2009008052A1 JP 2007063672 W JP2007063672 W JP 2007063672W WO 2009008052 A1 WO2009008052 A1 WO 2009008052A1
Authority
WO
WIPO (PCT)
Prior art keywords
packet
transmission source
address
relay
destination
Prior art date
Application number
PCT/JP2007/063672
Other languages
English (en)
French (fr)
Inventor
Jun Ogawa
Original Assignee
Fujitsu Limited
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Fujitsu Limited filed Critical Fujitsu Limited
Priority to PCT/JP2007/063672 priority Critical patent/WO2009008052A1/ja
Priority to JP2009522445A priority patent/JP4677501B2/ja
Publication of WO2009008052A1 publication Critical patent/WO2009008052A1/ja
Priority to US12/633,899 priority patent/US8276204B2/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0263Rule management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0236Filtering by address, protocol, port number or service, e.g. IP-address or URL

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Business, Economics & Management (AREA)
  • General Business, Economics & Management (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

 ネットワークシステムに含まれる各ルータ100~500は、攻撃パケットを検出した場合に、攻撃パケットに含まれる送信元IPアドレスを宛先IPアドレスに設定し、攻撃パケットに含まれる宛先IPアドレスを送信元IPアドレスに設定した送信元検査用パケット(要求用)を出力する。そして、送信元検査用パケット(回答用)を取得した場合に、送信元検査用パケット(回答用)に含まれる送信元IPアドレスと宛先IPアドレスと当該応答パケットを受信したインタフェースの識別情報とを対応付けてフィルタテーブルに登録し、フィルタテーブルに基づいて転送対象となるパケットを転送するか否かを判定する。
PCT/JP2007/063672 2007-07-09 2007-07-09 中継装置および中継方法 WO2009008052A1 (ja)

Priority Applications (3)

Application Number Priority Date Filing Date Title
PCT/JP2007/063672 WO2009008052A1 (ja) 2007-07-09 2007-07-09 中継装置および中継方法
JP2009522445A JP4677501B2 (ja) 2007-07-09 2007-07-09 中継装置および中継方法
US12/633,899 US8276204B2 (en) 2007-07-09 2009-12-09 Relay device and relay method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2007/063672 WO2009008052A1 (ja) 2007-07-09 2007-07-09 中継装置および中継方法

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US12/633,899 Continuation US8276204B2 (en) 2007-07-09 2009-12-09 Relay device and relay method

Publications (1)

Publication Number Publication Date
WO2009008052A1 true WO2009008052A1 (ja) 2009-01-15

Family

ID=40228249

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2007/063672 WO2009008052A1 (ja) 2007-07-09 2007-07-09 中継装置および中継方法

Country Status (3)

Country Link
US (1) US8276204B2 (ja)
JP (1) JP4677501B2 (ja)
WO (1) WO2009008052A1 (ja)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2010219750A (ja) * 2009-03-16 2010-09-30 Ricoh Co Ltd 情報処理装置、情報処理方法、及びプログラム

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8634084B2 (en) * 2010-03-29 2014-01-21 Kabushiki Kaisha Toshiba Data processing system and image forming apparatus
JP2018082310A (ja) * 2016-11-16 2018-05-24 富士通株式会社 PaaS接続プログラム、PaaS接続方法及びPaaS接続装置

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2000312225A (ja) * 1998-10-05 2000-11-07 Hitachi Ltd パケット中継装置
JP2002158699A (ja) * 2000-11-20 2002-05-31 Nippon Telegr & Teleph Corp <Ntt> DoS攻撃防止方法および装置およびシステムおよび記録媒体
JP2002176454A (ja) * 2000-12-05 2002-06-21 Nec Corp パケット転送制御装置、パケット転送制御方法およびパケット転送制御システム
JP2005130190A (ja) * 2003-10-23 2005-05-19 Nippon Telegr & Teleph Corp <Ntt> 攻撃パケット防御システム
JP2007060456A (ja) * 2005-08-26 2007-03-08 Alaxala Networks Corp フィルタリングを備えるパケット転送装置

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100333250B1 (ko) * 1998-10-05 2002-05-17 가나이 쓰토무 패킷 중계 장치
JP3996288B2 (ja) * 1998-12-07 2007-10-24 株式会社日立製作所 通信ネットワークシステムの管理方法および情報中継装置
US7013482B1 (en) * 2000-07-07 2006-03-14 802 Systems Llc Methods for packet filtering including packet invalidation if packet validity determination not timely made
US6772334B1 (en) * 2000-08-31 2004-08-03 Networks Associates, Inc. System and method for preventing a spoofed denial of service attack in a networked computing environment
US7536548B1 (en) * 2002-06-04 2009-05-19 Rockwell Automation Technologies, Inc. System and methodology providing multi-tier-security for network data exchange with industrial control components
US20040162992A1 (en) * 2003-02-19 2004-08-19 Sami Vikash Krishna Internet privacy protection device
KR100744530B1 (ko) * 2003-09-17 2007-08-01 한국전자통신연구원 연결 재설정 기법을 이용한 실시간 연결 역추적 장치 및그 방법
KR100834570B1 (ko) * 2006-06-23 2008-06-02 한국전자통신연구원 실시간 상태 기반 패킷 검사 방법 및 이를 위한 장치

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2000312225A (ja) * 1998-10-05 2000-11-07 Hitachi Ltd パケット中継装置
JP2002158699A (ja) * 2000-11-20 2002-05-31 Nippon Telegr & Teleph Corp <Ntt> DoS攻撃防止方法および装置およびシステムおよび記録媒体
JP2002176454A (ja) * 2000-12-05 2002-06-21 Nec Corp パケット転送制御装置、パケット転送制御方法およびパケット転送制御システム
JP2005130190A (ja) * 2003-10-23 2005-05-19 Nippon Telegr & Teleph Corp <Ntt> 攻撃パケット防御システム
JP2007060456A (ja) * 2005-08-26 2007-03-08 Alaxala Networks Corp フィルタリングを備えるパケット転送装置

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2010219750A (ja) * 2009-03-16 2010-09-30 Ricoh Co Ltd 情報処理装置、情報処理方法、及びプログラム

Also Published As

Publication number Publication date
JPWO2009008052A1 (ja) 2010-09-02
US8276204B2 (en) 2012-09-25
US20100088764A1 (en) 2010-04-08
JP4677501B2 (ja) 2011-04-27

Similar Documents

Publication Publication Date Title
WO2008020430A3 (en) Voice over ip forwarding
EP2139187A4 (en) METHOD, COMMUNICATION SYSTEM AND DEVICE FOR ARP PACKET PROCESSING
WO2009135611A3 (en) Network device and method for local routing of data traffic
WO2007050244A3 (en) Method and system for detecting and responding to attacking networks
WO2007047413A3 (en) Method and system for detecting a change in device attachment
WO2010120303A3 (en) Managing shared content in virtual collaboration systems
WO2010078076A3 (en) Systems, methods, and computer program products for adaptively adjusting a registration interval of an endpoint
JP2012533958A5 (ja)
ATE488945T1 (de) Verfahren und vorrichtung zum detektieren eines portscans mit gefälschter quelladdresse
WO2009005925A3 (en) Automated collection of forensic evidence associated with a network security incident
WO2008045302A3 (en) Device, system and method for use of micro-policies in intrusion detection/prevention
WO2009116020A3 (en) In-band dpi application awareness propagation enhancements
WO2006019701A3 (en) Inline intrusion detection using a single physical port
ATE556513T1 (de) Verfahren zur erkennung von transportlecks in hybridschaltungsnetzwerken
WO2008079337A3 (en) Systems, methods, and apparatus for communicating the state of a wireless user device in a wireless domain to an application server in an internet protocol (ip) domain
WO2009067443A3 (en) Geographic trunk groups
WO2007130416A3 (en) Title-enabled networking
WO2007050818A3 (en) A method and apparatus for processing connectionopenresponse message in wireless communication systems
EP2048832A4 (en) METHOD AND SYSTEM FOR LEADING THE MEDIA FLOW AND METHOD AND SYSTEM FOR LINE DETECTION
WO2007083899A3 (en) Method and apparatus for providing congestion and travel time information to users
DE602007004482D1 (de) Verfahren und vorrichtung zum nachweis von weiterleitungsschleifen
WO2008012792A3 (en) A method and system for detection of nat devices in a network
WO2007070889A3 (en) System and method for detection of data traffic on a network
WO2009042056A3 (en) Multiple and multi-part message methods and systems for handling electronic message content for electronic communications devices
WO2011097179A3 (en) Method and apparatus for detecting devices on a local area network

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07790493

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2009522445

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 07790493

Country of ref document: EP

Kind code of ref document: A1