FIELD: network traffic processing.
SUBSTANCE: HASH sum is calculated using a method based on the IP addresses and TCP/UDP ports of the received packet. In the RAM-memory cell, the address of which is equal to the received HASH-sum, information about the already received packet with the same HASH-sum belonging to the same session is searched. Based on the results of comparing the counter of received packets of the TCP session and analyzing the presence of the SYN or FIN flags in the TCP header, or the time when the last packet of the session was received, used to account for time in UDP sessions, a decision is made to transfer the packet to the output interface or remove it.
EFFECT: to provide packet filtering for a TCP/UDP session in pre-processing devices.
1 cl, 3 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| METHOD FOR DYNAMIC FILTERING OF NETWORK PACKETS BY SESSIONS | 2022 |
|
RU2779135C1 |
| METHOD FOR TRACKING SESSIONS IN NETWORK TRAFFIC | 2022 |
|
RU2786178C1 |
| A WAY TO TRACK FRAGMENTS OF PACKETS IN NETWORK TRAFFIC | 2022 |
|
RU2778462C1 |
| BALANCING METHOD WHILE MAINTAINING INTEGRITY OF DATA FLOWS | 2023 |
|
RU2807656C1 |
| METHOD FOR DETECTING DUPLICATE PACKETS IN A NETWORK TRAFFIC FLOW | 2022 |
|
RU2790636C1 |
| METHOD FOR ENSURING BALANCING IDENTITY FOR BIDIRECTIONAL NETWORK SESSION DATA FLOW | 2022 |
|
RU2786629C1 |
| METHOD FOR FILTERING NETWORK TRAFFIC BASED ON RULES WITH A MASK DURING PACKET SWITCHING | 2022 |
|
RU2795295C1 |
| METHOD OF DETECTION OF COMPUTER ATTACKS IN INFORMATION AND TELECOMMUNICATION NETWORK | 2013 |
|
RU2531878C1 |
| DETECTOR OF REMOTE COMPUTER ATTACKS | 2014 |
|
RU2540838C1 |
| METHOD OF MANAGING CONNECTIONS IN FIREWALL | 2012 |
|
RU2517411C1 |
