Dynamic host configuration protocol data packet filtering method and system

A technology of dynamic host configuration and protocol data packets, applied in the transmission system, electrical components, etc., can solve the problems of not identifying false messages and complicated implementation process, so as to save network resources, improve forwarding efficiency, and facilitate source tracking Effect

Inactive Publication Date: 2018-01-12
PHICOMM (SHANGHAI) CO LTD
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] For example, the invention patent with the publication number CN103888481B discloses "a method for filtering DHCP data packets in a local area network". Based on this, four filtering steps including network data packet collection, network data packet screening, DHCP data packet analysis, and network data packet processing are designed, and the DHCP data packets are gradually separated from the data packets sent to the DHCP client, and the DHCP data Analyze the packets, receive the legal data packets sent by the specified DHCP server, and discard the data packets sent by the illegal DHCP server, so that the DHCP client can obtain the IP address from the specified DHCP server, and prevent the illegal DHCP server from assigning the IP address to the DHCP client. The implementation process is relatively complicated
[0006] Another example is that the patent document with the publication number CN103944867A discloses a "processing method, device and system for dynamic host configuration protocol messages", which receives the first DHCP request message carrying the MAC address information of the virtual machine; After the request message is decapsulated, it is sent to the DHCP server; the first DHCP response message sent by the DHCP server is received; wherein, the first DHCP response message is a broadcast message and carries an IP address assigned to the virtual machine; encapsulation The first DHCP response message is the second DHCP response message; wherein, the second DHCP response message is a unicast message, and the second DHCP response message is sent to the peer tunnel endpoint device, thereby realizing the unicast message in the tunnel protocol The DHCP response message is sent in broadcast form, which improves the utilization rate of network resources, but it does not have the ability to identify false messages, and may encapsulate and forward false messages.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Dynamic host configuration protocol data packet filtering method and system
  • Dynamic host configuration protocol data packet filtering method and system
  • Dynamic host configuration protocol data packet filtering method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0053] Such as figure 1 As shown, this embodiment provides a dynamic host configuration protocol packet filtering method, which is applied to a wireless access point (AP), and the method includes:

[0054] S10: Discard part of the DHCP messages received from the wide area network interface (WAN port); it can filter out all kinds of DHCP junk messages received through the WAN port.

[0055] During the actual DHCP interaction process, the WAN port of the AP will receive many DHCP spam broadcast messages. In this step, configure the AP to identify and discard these spam messages, thereby reducing the forwarding of such spam messages and resource occupation.

[0056] S20: Select a WAN port or a wireless interface to forward the DHCP message that has not been discarded.

[0057] In this step, the AP needs to respond after receiving the relevant message. According to the different types of DHCP messages, the source of the message and the forwarding target will affect the selection ...

Embodiment 2

[0060] Such as figure 2 As shown, the difference between this embodiment and the previous embodiments is that this embodiment provides a method that can also filter false messages, and before the step S10, it also includes:

[0061] S01: Save the user's MAC and the wireless interface information accessed during user association, so as to create a user information record item.

[0062] The detailed implementation process of this step is as follows: the STA finds the wireless network name (SSID) of the AP and associates with the SSID of the AP. The AP will receive the CLIENT_IN message that the STA goes online. Corresponding user information record items, which store the physical address of STA (that is, MAC address) and the wireless interface information used by STA to associate with AP. Here, the wireless interface is created by AP1. When each STA communicates with AP, it will be Assigned to a wireless interface, there can be multiple different STAs under the same wireless i...

Embodiment 3

[0068] Such as image 3 As shown, the difference between this embodiment and Embodiment 2 is that this embodiment provides another method capable of filtering false messages, and the step S10 includes:

[0069] S11: Determine the type of the DHCP message; due to the relative stability of the forwarding object of the DHCP message, only two types of messages need to be determined for judging the type of the DHCP message in this step, one is a DHCP request message, and the other is a DHCP response message.

[0070] S12: If it is a DHCP request message, then discard it all; it should be noted that, according to step S10, what is discarded is the DHCP message received from the WAN port; this is because the DHCP request message is sent by the STA to the DHCP server. It is used to request an IP address. The response message is the reply from the DHCP server to the STA, so the request message must be sent from the STA to the DHCP server. Request packets coming in from the WAN do not ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a dynamic host configuration protocol data packet filtering method and a dynamic host configuration protocol data packet filtering system, which are applied to a wireless access point. The dynamic host configuration protocol data packet filtering method comprises the steps of: S10, discarding part of dynamic host configuration protocol messages received from a wide area network interface; S20, and selecting the wide area network interface or a wireless interface to forward the dynamic host configuration protocol messages that are not discarded. The dynamic host configuration protocol data packet filtering method and the dynamic host configuration protocol data packet filtering system can specify a forwarding path, and filter DHCP junk broadcast data packets and fakeDHCP data packet, so as to realize the network cleanness and the rational utilization of network resources.

Description

technical field [0001] The invention relates to a wireless local area network, in particular to a dynamic host configuration protocol data packet filtering method and system. Background technique [0002] In network communication, in order to simplify IP address configuration operations and prevent IP address conflicts, and due to limited IP resources, it is not possible to configure a fixed IP address for each host connected to the Internet, so the Dynamic Host Configuration Protocol (Dynamic Host Configuration Protocol) is usually used. Host Configuration Protocol (DHCP) configures temporary and unique IP addresses for hosts connected to the network. [0003] Since the IP address is assigned, and the host sends a data packet that needs to be connected to the network to inform the DHCP server, it is possible to receive the IP address assignment. During this period, if the data packet is not safe, it is intercepted or otherwise If the terminal is forged, the IP address cann...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/12
Inventor 李俊奎
Owner PHICOMM (SHANGHAI) CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap