Method for fire wall package filtering dynamic switch H.323 protocol communication channel

A H.323, dynamic switch technology, applied in the direction of instrumentation, computing, electrical digital data processing, etc., can solve the problem of address information location is not fixed, to achieve the effect of ensuring safe operation

Inactive Publication Date: 2009-05-20
LENOVO (BEIJING) CO LTD
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] 2. The call may be initiated from the outside or inside; therefore, the network address transmission (NAT for short) of the firewall must dynamically support the H.323 protocol
[0008] 3. The control information adopts ASN.1 encoding, and the location of its address information is not fixed
The same version of the application connected to the same destination address may negotiate different options, resulting in the location of address information is not fixed

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for fire wall package filtering dynamic switch H.323 protocol communication channel
  • Method for fire wall package filtering dynamic switch H.323 protocol communication channel
  • Method for fire wall package filtering dynamic switch H.323 protocol communication channel

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] see figure 2 , the dynamic packet filtering of the H.323 protocol is implemented at the link layer using the stateful packet filtering mechanism of the link layer. When the connection is TCP port 1720, search for the port and address information of the H.245 connection from the data transmitted by the connection according to the protocol Q.931, and write the port and address information into the status table; When an H.245 connection is initiated, the data packet will be allowed to pass because the port and address information records of the H.245 connection have been saved in the state table. When the processing steps of the protocol Q.931 are completed, it is necessary to further search for the port and address information of RTP and RTCP in the data transmitted by the H.245 connection, and record the port and address information of the RTP and RTCP into the status table middle. Similarly, when a data packet sent to the above address and port arrives again, the dat...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

This invention is a method for opening and closing dynamically the H.323 protocol communication channels with filtering file wall packet data. The method preprocesses the packet data first; then performs an analysis according to the protocol and performs a corresponding process to the packet data according to the result of the analysis. More particularly, the method includes opening and closing dynamically the H.323 protocol communiation channels in the chain circuits layer and in the IP layer. Using the filtering system of the status packet data, the invention realizes opening and closing dynamically the H.323 protocol communication channels with the file wall through the analysis of the communication packet data according to H.323 protocol in the layer of chain circuits of web or in the IP layer.

Description

Technical field: [0001] The invention relates to a firewall packet filtering dynamic switch H. 323 protocol communication channel method, in particular to a method applied in packet filtering of firewall and capable of dynamically opening or closing the H.323 protocol dynamic negotiation port. Background technique: [0002] The H.323 protocol is a protocol family defined by the International Telecommunication Union. It is a communication protocol used by most video conferences. This protocol dynamically negotiates the ports used. A high-security firewall must be able to dynamically open the ports it uses. The port can be closed in time after the communication ends. However, the traditional firewall packet filtering technology cannot dynamically open and close the ports dynamically negotiated by the H.323 protocol; therefore, if you want to allow the communication information of the video conferencing system based on the H.323 protocol to pass through the firewall, you have ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06G06F17/00
Inventor 宋斌杨聪毅刘春梅宋春雨胡民
Owner LENOVO (BEIJING) CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap