METHOD FOR DYNAMIC FILTERING OF NETWORK PACKETS BY SESSIONS Russian patent published in 2022 - IPC H04L47/10 H04L12/66 

FIELD: network packets dynamic filtering.

SUBSTANCE: invention relates to the methods for dynamic filtering of network packets. To resolve collisions that occur when tracking a session based on a HASH sum, one RAM cell contains records with information about four sessions. The information includes the destination IP address, the source IP address, the L4 protocol code, the destination port, the source port, the time the last session packet was received, and the code for the action to be performed on the packet. Next, the HASH sum is transmitted to the session tracking unit (106), which checks the address in the RAM memory cell, which is equal to the HASH sum, the presence of information consisting of packet header fields, which were used to calculate the HASH sum of the already received packet with such the same HASH sum, while the counter of the number of packets in the session is increased by 1 packet. If the RAM cell already contains information about the session, then it is compared with the data from the packet descriptor. If the information matches and the packet does not contain the SYN flag in the TCP header, then the packet is considered to belong to an already existing session and the action identifier stored in this RAM memory cell is added to the packet descriptor, which is an 8-bit number based on which the filter block performs packet filtering. If the information matches, but the packet contains the SYN flag in the TCP header, then a new session identifier is assigned and information about the current packet is entered into the RAM memory cell. If the information does not match, then the other three records about other sessions are checked in the same way; if there is no match, a new record is created in the RAM-memory cell.

EFFECT: invention improves throughput and performance.

1 cl, 4 dwg