Dynamically switching on/off TNS protocol communication port in firewall packet filtering

A protocol communication and dynamic switching technology, applied in digital transmission systems, data exchange networks, electrical components, etc., can solve problems such as the impact of firewall security, inability to dynamically open and close ports, and achieve the effect of protecting communication security.

Inactive Publication Date: 2007-08-29
BEIJING LEADSEC TECH
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the traditional firewall packet filtering technology cannot dynamically open and close the port dynamically negotiated by the TNS protocol; therefore, if normal communication between the client and server of the Oracle database based on the TNS protocol is to be allowed, it has to be opened Transmission Control Protocol (TCP) high port above 1024
But in this way, it will have a great impact on the security of the firewall.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Dynamically switching on/off TNS protocol communication port in firewall packet filtering
  • Dynamically switching on/off TNS protocol communication port in firewall packet filtering
  • Dynamically switching on/off TNS protocol communication port in firewall packet filtering

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0018] The present invention proposes a method for dynamically switching the TNS protocol communication port for firewall packet filtering, that is, using the dynamic packet filtering mechanism to realize the dynamic opening and closing of the TNS protocol communication port of the firewall, which not only ensures the safe operation of the firewall, but also protects the Oracle database Client and server communication security purposes.

[0019] Please refer to Figure 1, let us first understand the working process of Oracle data communication. In the Oracle database system, the communication mode mainly adopts the Client / Server mode, that is, the client / server mode. The client of the Oracle database achieves the purpose of reading and writing the database through communication with the server. The working process is like this:

[0020] First of all, the client sends 1521 to the server (note: port 1521 is the default port for the Oracle database server to receive the client’s...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method of fire wall packet filtration dynamic switch TNS protocol communication ports comprising the steps of, taking a data packet from the buffer zone queue of the fire wall data receiving packet, performing state packet filtration to the data packet, performing dynamic TNS state detecting with respect to TNS protocol to the admission data packet after filtration, and the fire wall transferring the data packet.

Description

technical field [0001] The invention relates to the technical field of firewall dynamic packet filtering, in particular to a method for dynamically switching communication ports by firewall packet filtering. Background technique [0002] A firewall is a barrier between the protected network and the external network to prevent unpredictable and potentially destructive intrusions. According to different working mechanisms, firewalls are divided into two types: packet filtering firewalls and application-level agents. Packet filtering firewall is divided into static packet filtering and dynamic packet filtering. [0003] The static packet filtering firewall examines each data packet according to the defined filtering rules to determine whether it matches a certain packet filtering rule. Packet filtering rules are formulated based on the header information of the data packet, which includes IP source address, IP destination address, transmission protocol (TCP, UDP, ICMP, etc.),...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/24H04Q3/545
Inventor 杨聪毅李江力
Owner BEIJING LEADSEC TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap