CN101394360A - Processing method, access device and communication system for address resolution protocol - Google Patents
Processing method, access device and communication system for address resolution protocol Download PDFInfo
- Publication number
- CN101394360A CN101394360A CNA2008102257344A CN200810225734A CN101394360A CN 101394360 A CN101394360 A CN 101394360A CN A2008102257344 A CNA2008102257344 A CN A2008102257344A CN 200810225734 A CN200810225734 A CN 200810225734A CN 101394360 A CN101394360 A CN 101394360A
- Authority
- CN
- China
- Prior art keywords
- address
- arp
- source
- gateway device
- arp message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000004891 communication Methods 0.000 title claims abstract description 26
- 238000003672 processing method Methods 0.000 title claims description 11
- 238000000034 method Methods 0.000 claims abstract description 8
- 238000004458 analytical method Methods 0.000 claims description 7
- 230000005540 biological transmission Effects 0.000 description 5
- 230000009514 concussion Effects 0.000 description 5
- 238000003860 storage Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 238000005242 forging Methods 0.000 description 1
- 230000014759 maintenance of location Effects 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 1
Images
Landscapes
- Small-Scale Networks (AREA)
Abstract
The invention discloses a method for handling an address resolution protocol (ARP) packet, and access equipment and a communication system thereof. The method comprises the following steps: access equipment receives an ARP packet through a lower interface, which carries an active Internet protocol (IP) address, a source media access control (MAC) address, a destination IP address and a destination MAC address; the access equipment judges whether the source IP address is the same as the IP address of gateway equipment configured on the lower interface, and the upper interface of the access equipment is connected with the gateway equipment; if the source IP address is the same as the IP address of gateway equipment, the access equipment discards the ARP packet; and if the source IP address is different from the IP address of gateway equipment, the access equipment forwards the ARP packet according to the destination IP address in the ARP packet. The embodiment of the invention can prevent the ARP packet which is deceived by an illegal host and passes through the gateway equipment of not performing ARP spoofing with respect to the gateway equipment, without imposing heavier load upon the gateway equipment.
Description
Technical field
The present invention relates to the network communications technology, especially a kind of processing method of address analysis protocol message, access device and communication system.
Background technology
Address resolution protocol (Address Resolution Protocol, hereinafter to be referred as: ARP) be a kind of agreement that the IP map addresses is become physical address.Because data are transmitted according to the physical address of destination in the network, therefore, need earlier the IP address of communication equipment to be resolved, obtain the physical address of this communication equipment.In Ethernet, physical address is the medium access control of 48Bit, and (Media AccessControl is hereinafter to be referred as MAC) address.
When desiring mutual communication between two main frames in the same physical network, both sides need obtain the other side's IP address earlier, utilize ARP that the other side's IP address resolution is become MAC Address then, can utilize MAC Address on Ethernet to the other side's data message transmission.In said process, ARP carries out the IP address resolution by ARP request message and arp reply message.
Sending main frame need be when an IP address transmission data message, and at first the local ARP table of inquiry searches in this ARP table whether have the MAC Address of this IP correspondence, if exist, then directly to the destination host transmission data of using this MAC Address.Otherwise, if do not exist, then broadcast an ARP request message, comprise the IP address that sends main frame and the IP address of MAC Address and destination host in this ARP request message, the MAC Address of the IP address of this destination host of request analysis.The main frame that is in same physical network all can be received this ARP request message.The main frame that receives upgrades local ARP table according to IP address that sends main frame in this ARP request message and MAC Address, and IP address and the corresponding relation between the MAC Address that sends main frame write local ARP table.After destination host receives this ARP request message, also respond an arp reply message, comprising the IP address and the MAC Address of destination host to sending main frame.After the transmission main frame receives the arp reply message, utilize the IP address of destination host and MAC Address to upgrade local ARP table.Afterwards, just can communicate between transmission main frame and the destination host according to MAC Address.
Because main frame will be shown to upgrade with the ARP of MAC Address to this locality when receiving the arp reply message according to IP address wherein, if the host A in the local area network (LAN) is pretended to be host B, adopt the IP address of host B, the MAC Address of host A to forge the arp reply message and send to host C, host C will upgrade local ARP table in view of the above, IP address at the host C host B does not become, and the MAC Address of host B has become the MAC Address of host A.Like this, in fact the data that host C mails to host B have sent to host A, and this is the ARP deception.
ARP deception at gateway device is a kind of common ARP deception form, that is: be in the ARP message that certain main frame in the local area network (LAN) is forged gateway device, comprise ARP request message and arp reply message, use the IP address of gateway device and the MAC Address of this main frame to send the ARP message of forging, cause the All hosts in this local area network (LAN) to upgrade the ARP table, think that the deception main frame that sends the ARP message is a gateway device.Therefore, in fact the message that All hosts mails to gateway device in this local area network (LAN) is forwarded to this deception main frame, thereby causes the purpose that network is obstructed or attack.As shown in Figure 1, be an ARP deception schematic diagram at gateway device.The IP address of host A and MAC Address are respectively IP A, MAC A, the IP address of host B and MAC Address are respectively IP B, MAC B, host A and host B are connected on the same access switch, they arrive gateway device with the data of extraneous exchange by access switch, shown in arrow 101 and arrow 102.At this moment, forge the ARP message that is sent by gateway device if host B sends, then host A can think that host B is a gateway device by mistake, all mails to host B just host A can mail to all the data of gateway device, shown in arrow 103.Like this, host B just can be eavesdropped or intercept the data of host A, causes the communication disruption or the information dropout of host A, thereby reaches the purpose of network attack.
Carry out cheating for fear of illegal host at the ARP of gateway device, thereby carry out network attack, prior art has been carried out the software improvement on gateway device, forbid that the gateway device direct ARP message carries out two layers of forwarding, all ARP messages are transmitted by newly-increased software, have only purpose IP address in the ARP message and gateway device IP address not simultaneously, newly-increased software is just transmitted processing to this ARP message.Owing to all will by gateway device transmit processing with all ARP messages that network is communicated by letter outward in the network, increased the weight of the burden of gateway device, under the situation of network attack, cause the faults of moving on the gateway device such as agreement concussion easily.And if also be connected with two-layer equipment and ARP message under this gateway device without gateway device, many station terminals equipment that then can't prevent to be connected on the two-layer equipment suffers the ARP deception.
Summary of the invention
The purpose of the embodiment of the invention is: processing method, access device and communication system that a kind of address analysis protocol message is provided, do not increasing the weight of under the situation of gateway device burden, that avoids that illegal host forges carries out ARP deception at gateway device through gateway device and ARP message without gateway device.
For solving the problems of the technologies described above, the processing method of a kind of address analysis protocol message that the embodiment of the invention provides comprises:
Access device receives the ARP message by second line of a couplet mouth, carries source IP address, source MAC, purpose IP address and target MAC (Media Access Control) address in this ARP message;
Described access device judges whether the IP address of the gateway device that disposes on described source IP address and the described second line of a couplet mouth is identical, and the upper united mouth of described access device is connected with described gateway device;
If described source IP address is identical with the IP address of described gateway device, described access device abandons described ARP message;
If described source IP address is different with the IP address of described gateway device, described access device is transmitted described ARP message according to the purpose IP address in the described ARP message.
A kind of access device that the embodiment of the invention provides, comprise the second line of a couplet mouth that is connected with main frame or two-layer equipment, with the upper united mouth that is connected with gateway device, with be used to transmit ARP message forwarding module, first memory module with being connected with described forwarding module, being used to store local ARP table also comprises:
Second memory module is arranged in the described second line of a couplet mouth, is used to store the IP address of described gateway device;
Receiver module is arranged in the described second line of a couplet mouth, is used to receive the ARP message, carries source IP address, source MAC, purpose IP address and target MAC (Media Access Control) address in this ARP message;
Judge module is used to judge whether described source IP address is identical with the IP address of described gateway device, and the output judged result;
Discard module is used for according to described judged result, when described source IP address is identical with the IP address of described gateway device, abandons described ARP message;
Described forwarding module is used for according to described judged result, in the IP address of described source IP address and described gateway device not simultaneously, transmits described ARP message according to the purpose IP address in the described ARP message.
A kind of communication system that the embodiment of the invention provides, comprise gateway device and access device, described access device comprises second line of a couplet mouth, upper united mouth, forwarding module and first memory module, described second line of a couplet mouth is connected with main frame or two-layer equipment, described upper united mouth is connected with described gateway device, and described forwarding module is used to transmit the ARP message, and described first memory module is connected with described forwarding module, be used to store local ARP table, described access device also comprises:
Second memory module is arranged in the described second line of a couplet mouth, is used to store the IP address of described gateway device;
Receiver module is arranged in the described second line of a couplet mouth, is used to receive the ARP message, carries source IP address, source MAC, purpose IP address and target MAC (Media Access Control) address in this ARP message;
Judge module is used to judge whether described source IP address is identical with the IP address of described gateway device, and the output judged result;
Discard module is used for according to described judged result, when described source IP address is identical with the IP address of described gateway device, abandons described ARP message;
Described forwarding module is used for according to described judged result, in the IP address of described source IP address and described gateway device not simultaneously, transmits described ARP message according to the purpose IP address in the described ARP message.
The processing method of the address analysis protocol message that provides based on the above embodiment of the present invention, access device and communication system, the IP address of h.323-configured gateway equipment on the second line of a couplet mouth of access device, second line of a couplet mouth at access device is verified the purpose IP address in the ARP message, when the source IP address in the ARP message is identical with the IP address of gateway device, abandon this ARP message, do not need gateway device to handle, compared with prior art, alleviated the burden of gateway device, the faults such as agreement concussion moved on the gateway device have been avoided, and, can effectively prevent from the main frame that is connected on the two-layer equipment to be carried out ARP deception, the fail safe that has further improved communication network without the ARP message of gateway device.
Below by drawings and Examples, technical scheme of the present invention is described in further detail.
Description of drawings
Fig. 1 is an ARP deception schematic diagram at gateway device;
Fig. 2 is the flow chart of an embodiment of processing method of ARP message of the present invention;
Fig. 3 is the flow chart of another embodiment of processing method of ARP message of the present invention;
Fig. 4 is the structural representation of an embodiment of access device of the present invention;
Fig. 5 is the structural representation of another embodiment of access device of the present invention;
Fig. 6 is the structural representation of another embodiment of access device of the present invention;
Fig. 7 is the structural representation of the unified embodiment of communication system of the present invention;
Fig. 8 is the structural representation of another embodiment of communication system of the present invention;
Fig. 9 is the structural representation of another embodiment of communication system of the present invention.
Embodiment
In the networking of reality is used, normally under a gateway device, connect a plurality of access devices, for example: access switch etc., can directly connect more main frame under the second line of a couplet mouth of access device, or connect more main frame by two layers of access device, access device arrives gateway device by the upper united mouth, thereby reaches the purpose that makes full use of gateway device.The embodiment of the invention is the IP address of h.323-configured gateway equipment on the second line of a couplet mouth of access device in advance, abandons the source IP address ARP message identical with the IP address of gateway device on access device.
As shown in Figure 2, be the flow chart of the embodiment of processing method of ARP message of the present invention, it may further comprise the steps:
Step 201, access device receives the ARP message by second line of a couplet mouth, carries source IP address, source MAC, purpose IP address and target MAC (Media Access Control) address in this ARP message.
Particularly, this ARP message can be ARP request message or arp reply message.
Step 202, access device judge whether the IP address of the gateway device that disposes on source IP address and the second line of a couplet mouth in the ARP message is identical, and wherein, the upper united mouth of access device is connected with gateway device.If source IP address is identical with the IP address of gateway device, execution in step 203.If the source IP address in the ARP message is different with the IP address of gateway device, execution in step 204.
Step 203, access device abandon described ARP message.
Step 204, access device is transmitted the ARP message according to the purpose IP address in the described ARP message.
The embodiment of the invention has disposed the IP address of gateway device in advance on the second line of a couplet mouth of access device, second line of a couplet mouth at access device is verified the source IP address in the ARP message, when the source IP address in the ARP message is identical with the IP address of gateway device, abandon this ARP message, do not need gateway device to handle, alleviated the burden of gateway device, the faults such as agreement concussion moved on the gateway device have been avoided, and, can effectively prevent from the main frame that is connected on the two-layer equipment to be carried out ARP deception, the fail safe that has further improved communication network without the ARP message of gateway device.
Access device can be realized by the hardware in the access device the processing of ARP message in the embodiment of the invention, thereby avoids reducing owing to the processing to the ARP message performance of access device.
Before step 201 embodiment illustrated in fig. 2, can also comprise: the operation of the IP address of h.323-configured gateway equipment on second line of a couplet mouth.In addition, can also be according to the actual requirements the IP address of the gateway device that disposes on the second line of a couplet mouth be upgraded; Accordingly, in the step 202, access device judges whether the IP address of the gateway device after upgrading on source IP address and the second line of a couplet mouth in the ARP message is identical.
As shown in Figure 3, be the flow chart of another embodiment of processing method of ARP message of the present invention, it may further comprise the steps:
Whether step 304 stores purpose IP address during the local ARP of access device inquiry shows.If store purpose IP address, execution in step 305 in the local ARP table.If storage purpose IP address not in the local ARP table, execution in step 306.
In step 301 embodiment illustrated in fig. 3, if the ARP message is the ARP request message, the target MAC (Media Access Control) address that then wherein carries is represented with complete 0 or complete 1.After access device receives the arp reply message that the destination host that adopts purpose IP address returns at this ARP request message, identical with the processing mode of ARP request message at the processing mode of this arp reply message.
No matter be at ARP request message or arp reply message, access device in the ARP message source IP address and the IP address of gateway device not simultaneously, can inquire about the source IP address and the source MAC that whether exist in the local ARP table in the ARP message, if do not exist, then upgrade local ARP table, source IP address and source MAC are added in the local ARP table according to source IP address and source MAC.
As shown in Figure 4, be the structural representation of an embodiment of access device of the present invention, the access device of this embodiment comprises second line of a couplet mouth 401, upper united mouth 402, forwarding module 403, first memory module 404, second memory module 405, receiver module 406, judge module 407 and discard module 408.
Wherein, comprise that second line of a couplet mouth 401 is connected the packet sending and receiving of realization and main frame or two-layer equipment with main frame or two-layer equipment.Upper united mouth 402 is connected with gateway device, realizes transmitting with the message of gateway device.Forwarding module 403 is transmitted the ARP message by upper united mouth 402 or second line of a couplet mouth 401.First memory module 404 is connected with forwarding module 403, is used to store local ARP table.Second memory module 405 is arranged in the second line of a couplet mouth 401, is used to store the IP address of the gateway device that upper united mouth 402 connects.Receiver module 406 is arranged in the second line of a couplet mouth 401, is used to receive the ARP message, carries source IP address, source MAC, purpose IP address and target MAC (Media Access Control) address in this ARP message.Particularly, this ARP message can be ARP request message or arp reply message.Judge module 407 is connected with the receiver module 406 and second memory module 405 respectively, whether the IP address of the gateway device of storage is identical in the source IP address of the ARP message that is used for judging that receiver module 406 receives and second memory module 405, and the output judged result.Particularly, if source IP address is identical with the IP address of gateway device, to discard module 408 output judged results; If different, to forwarding module 403 output judged results.Discard module 408 be used for according to judged result, when source IP address is identical with the IP address of gateway device, abandon the ARP message.Forwarding module 403 is according to judged result, in the IP address of source IP address and gateway device not simultaneously, transmits the ARP message according to the purpose IP address in the ARP message.
Because the IP address of h.323-configured gateway equipment on the second line of a couplet mouth 401 of access device, realize checking at the second line of a couplet mouth 401 of access device to the source IP address in the ARP message, when the source IP address in the ARP message is identical with the IP address of gateway device, abandon this ARP message, do not need gateway device to handle, thereby alleviated the burden of gateway device, the faults such as agreement concussion moved on the gateway device have been avoided, and, can effectively prevent from the main frame that is connected on the two-layer equipment to be carried out ARP deception, the fail safe that has further improved communication network without the ARP message of gateway device.
As shown in Figure 5, be the structural representation of another embodiment of access device of the present invention.Compare with embodiment shown in Figure 4, the forwarding module 403 of this embodiment comprises query unit 501, acquiring unit 502, retransmission unit 503 and radio unit 504.Wherein, query unit 501 is connected with the judge module 407 and first memory module 404 respectively, is used for inquiring about the purpose IP address that whether stores in the ARP table of this locality of first memory module, 404 storages in the ARP message, and the output Query Result.Acquiring unit 502 is connected with first memory module 404 and query unit 501 respectively, is used for according to Query Result, when storing purpose IP address in the ARP of this locality table, obtains and the corresponding MAC Address in purpose IP address from the ARP table.Retransmission unit 503 is used for the MAC Address that inquires according to acquiring unit 502, transmits the ARP message.Radio unit 504 is connected with query unit 501, is used for according to Query Result, and when in the ARP of this locality table, not storing purpose IP address, broadcast arp message among the VLAN that VLANID identified in the ARP message.
In the access device that the above embodiment of the present invention provides, can also comprise enquiry module 601 and update module 602.Wherein, enquiry module 601 is connected with the judge module 407 and first memory module 404 respectively, be used for judged result according to judge module 407, the IP address of source IP address in the ARP message and described gateway device is not simultaneously, during showing, the local ARP of inquiry whether has source IP address and source MAC in the ARP message, and the output Query Result.Update module 402 is connected with the enquiry module 601 and first memory module 404 respectively, be used for according to Query Result, when in the ARP of this locality table, not having source IP address in the ARP message and source MAC, upgrade local ARP table according to source IP address in the ARP message and source MAC, source IP address in the ARP message and source MAC are added in the local ARP table.As shown in Figure 6, be the structural representation of another embodiment of access device of the present invention.
As shown in Figure 7, the structural representation of unifying an embodiment for communication system of the present invention.The communication system of this embodiment comprises gateway device 701 and access device 702.Wherein, Fig. 4, Fig. 5 or the access device that provides embodiment illustrated in fig. 6 can be provided access device 702.The access device that provides embodiment illustrated in fig. 4 is provided access device among this embodiment.
As shown in Figure 8, be the structural representation of another embodiment of communication system of the present invention.The access device that provides embodiment illustrated in fig. 5 is provided access device among this embodiment.
As shown in Figure 9, be the structural representation of another embodiment of communication system of the present invention.The access device that provides embodiment illustrated in fig. 6 is provided access device among this embodiment.
One of ordinary skill in the art will appreciate that: all or part of step that realizes said method embodiment can be finished by the relevant hardware of program command, aforesaid program can be stored in the computer read/write memory medium, this program is carried out the step that comprises said method embodiment when carrying out; And aforesaid storage medium comprises: various media that can be program code stored such as ROM, RAM, magnetic disc or CD.
The checking that the embodiment of the invention realizes the purpose IP address in the ARP message at the second line of a couplet mouth 401 of access device, when the purpose IP address in the ARP message is identical with the IP address of gateway device, abandon this ARP message, alleviated the burden of gateway device, the faults such as agreement concussion moved on the gateway device have been avoided, and, can effectively prevent from the main frame that is connected on the two-layer equipment to be carried out ARP deception, the fail safe that has further improved communication network without the ARP message of gateway device.
It should be noted last that: above embodiment is only in order to illustrating technical scheme of the present invention, but not the present invention is made restrictive sense.Although the present invention is had been described in detail with reference to above-mentioned preferred embodiment, those of ordinary skill in the art is to be understood that: it still can make amendment or be equal to replacement technical scheme of the present invention, and this modification or be equal to the spirit and scope that replacement does not break away from technical solution of the present invention.
Claims (10)
1, a kind of processing method of address analysis protocol message is characterized in that, comprising:
Access device receives the ARP message by second line of a couplet mouth, carries source IP address, source MAC, purpose IP address and target MAC (Media Access Control) address in this ARP message;
Described access device judges whether the IP address of the gateway device that disposes on described source IP address and the described second line of a couplet mouth is identical, and the upper united mouth of described access device is connected with described gateway device;
If described source IP address is identical with the IP address of described gateway device, described access device abandons described ARP message;
If described source IP address is different with the IP address of described gateway device, described access device is transmitted described ARP message according to the purpose IP address in the described ARP message.
2, method according to claim 1 is characterized in that, described access device is transmitted described ARP message according to the purpose IP address in the described ARP message and comprised:
During showing, the local ARP of described access device inquiry whether stores described purpose IP address;
If store described purpose IP address in the local ARP table, then from described ARP table, obtain and the corresponding MAC Address in described purpose IP address, and transmit described ARP message according to this MAC;
If do not store described purpose IP address in the local ARP table, then broadcast described ARP message among the VLAN that VLAN ID is identified in described ARP message.
3, method according to claim 1 is characterized in that, also comprises:
The IP address of the gateway device that disposes on the described second line of a couplet mouth perhaps, is upgraded in the IP address of the described gateway device of configuration on described second line of a couplet mouth;
Whether the IP address that described access device is judged the gateway device that disposes on described source IP address and the described second line of a couplet mouth identical being specially: described access device judges whether the IP address of the gateway device after upgrading on described source IP address and the described second line of a couplet mouth is identical.
4, according to claim 1,2 or 3 described methods, it is characterized in that, also comprise:
If described source IP address is different with the IP address of described gateway device, when described access device does not exist described source IP address and described source MAC in the ARP of this locality table, upgrade local ARP table according to described source IP address and described source MAC.
5, a kind of access device comprises the second line of a couplet mouth that is connected with main frame or two-layer equipment, with the upper united mouth that is connected with gateway device, with be used to transmit ARP message forwarding module, first memory module with being connected with described forwarding module, being used to store local ARP table is characterized in that, also comprises:
Second memory module is arranged in the described second line of a couplet mouth, is used to store the IP address of described gateway device;
Receiver module is arranged in the described second line of a couplet mouth, is used to receive the ARP message, carries source IP address, source MAC, purpose IP address and target MAC (Media Access Control) address in this ARP message;
Judge module is used to judge whether described source IP address is identical with the IP address of described gateway device, and the output judged result;
Discard module is used for according to described judged result, when described source IP address is identical with the IP address of described gateway device, abandons described ARP message;
Described forwarding module is used for according to described judged result, in the IP address of described source IP address and described gateway device not simultaneously, transmits described ARP message according to the purpose IP address in the described ARP message.
6, access device according to claim 5 is characterized in that, described forwarding module comprises:
Query unit is used for inquiring about local ARP table and whether stores described purpose IP address, and the output Query Result;
Acquiring unit is used for according to described Query Result, when storing described purpose IP address in the ARP of this locality table, obtains and the corresponding MAC Address in described purpose IP address from described ARP table;
Retransmission unit is used for the MAC Address that inquires according to described acquiring unit, transmits described ARP message;
Radio unit is used for according to described Query Result, when in the ARP of this locality table, not storing described purpose IP address, and the described ARP message of broadcasting among the VLAN that VLAN ID is identified in described ARP message.
7, according to claim 5 or 6 described access devices, it is characterized in that, also comprise:
Enquiry module is used for the judged result according to described judge module, in the IP address of described source IP address and described gateway device not simultaneously, whether has described source IP address and described source MAC in the local ARP table of inquiry, and exports Query Result;
Update module is used for according to described Query Result, when not having described source IP address and described source MAC in the ARP of this locality table, upgrades local ARP table according to described source IP address and described source MAC.
8, a kind of communication system, comprise gateway device and access device, described access device comprises second line of a couplet mouth, upper united mouth, forwarding module and first memory module, described second line of a couplet mouth is connected with main frame or two-layer equipment, and described upper united mouth is connected with described gateway device, and described forwarding module is used to transmit the ARP message, described first memory module is connected with described forwarding module, be used to store local ARP table, it is characterized in that described access device also comprises:
Second memory module is arranged in the described second line of a couplet mouth, is used to store the IP address of described gateway device;
Receiver module is arranged in the described second line of a couplet mouth, is used to receive the ARP message, carries source IP address, source MAC, purpose IP address and target MAC (Media Access Control) address in this ARP message;
Judge module is used to judge whether described source IP address is identical with the IP address of described gateway device, and the output judged result;
Discard module is used for according to described judged result, when described source IP address is identical with the IP address of described gateway device, abandons described ARP message;
Described forwarding module is used for according to described judged result, in the IP address of described source IP address and described gateway device not simultaneously, transmits described ARP message according to the purpose IP address in the described ARP message.
9, communication system according to claim 8 is characterized in that, described forwarding module comprises:
Query unit is used for inquiring about local ARP table and whether stores described purpose IP address, and the output Query Result;
Acquiring unit is used for according to described Query Result, when storing described purpose IP address in the ARP of this locality table, obtains and the corresponding MAC Address in described purpose IP address from described ARP table;
Retransmission unit is used for the MAC Address that inquires according to described acquiring unit, transmits described ARP message;
Radio unit is used for according to described Query Result, when in the ARP of this locality table, not storing described purpose IP address, and the described ARP message of broadcasting among the VLAN that VLAN ID is identified in described ARP message.
10, according to Claim 8 or 9 described communication systems, it is characterized in that described access device also comprises:
Enquiry module is used for the judged result according to described judge module, in the IP address of described source IP address and described gateway device not simultaneously, whether has described source IP address and described source MAC in the local ARP table of inquiry, and exports Query Result;
Update module is used for according to described Query Result, when not having described source IP address and described source MAC in the ARP of this locality table, upgrades local ARP table according to described source IP address and described source MAC.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008102257344A CN101394360B (en) | 2008-11-10 | 2008-11-10 | Processing method, access device and communication system for address resolution protocol |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008102257344A CN101394360B (en) | 2008-11-10 | 2008-11-10 | Processing method, access device and communication system for address resolution protocol |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101394360A true CN101394360A (en) | 2009-03-25 |
| CN101394360B CN101394360B (en) | 2011-07-20 |
Family
ID=40494441
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008102257344A Active CN101394360B (en) | 2008-11-10 | 2008-11-10 | Processing method, access device and communication system for address resolution protocol |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101394360B (en) |
Cited By (58)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101888329A (en) * | 2010-04-28 | 2010-11-17 | 北京星网锐捷网络技术有限公司 | Address resolution protocol (ARP) message processing method, device and access equipment |
| CN101888338A (en) * | 2010-07-01 | 2010-11-17 | 中兴通讯股份有限公司 | Information forwarding method and gateway |
| CN101540733B (en) * | 2009-05-08 | 2011-01-05 | 深圳市维信联合科技有限公司 | ARP message processing method and network side apparatus |
| CN102075426A (en) * | 2011-01-14 | 2011-05-25 | 中兴通讯股份有限公司 | Message transmission method under MFF manual mode and device |
| CN102143068A (en) * | 2011-03-01 | 2011-08-03 | 华为技术有限公司 | Method, device and system for learning MAC (Media Access Control) address |
| CN101527681B (en) * | 2009-03-31 | 2012-07-04 | 成都市华为赛门铁克科技有限公司 | Method for processing uplink message, device and system thereof |
| CN102546658A (en) * | 2012-02-20 | 2012-07-04 | 神州数码网络(北京)有限公司 | Method and system for preventing address resolution protocol (ARP) gateway spoofing |
| CN102571806A (en) * | 2012-02-08 | 2012-07-11 | 神州数码网络(北京)有限公司 | Apparatus and method for actively preventing deception of router advertisement message |
| CN102694876A (en) * | 2012-05-10 | 2012-09-26 | 北京星网锐捷网络技术有限公司 | Method and device for determining effectiveness of learned MAC (Media Access Control) address and gateway equipment |
| CN102710805A (en) * | 2012-05-14 | 2012-10-03 | 浙江宇视科技有限公司 | Method and device for updating internet protocol (IP) address |
| WO2016034006A1 (en) * | 2014-09-05 | 2016-03-10 | 华为技术有限公司 | Packet sending method and access device |
| CN105959425A (en) * | 2016-04-21 | 2016-09-21 | 北京千丁互联科技有限公司 | Communication method and system for intelligent community, talkback terminal for intelligent community, and core switch for intelligent community |
| CN105991794A (en) * | 2015-06-01 | 2016-10-05 | 杭州迪普科技有限公司 | Address learning method and address learning device |
| CN106102122A (en) * | 2016-05-16 | 2016-11-09 | 杭州华三通信技术有限公司 | MAC Address list item update method and device |
| CN109450905A (en) * | 2018-11-20 | 2019-03-08 | 郑州云海信息技术有限公司 | Transmit the method and apparatus and system of data |
| US10353800B2 (en) | 2017-10-18 | 2019-07-16 | Cisco Technology, Inc. | System and method for graph based monitoring and management of distributed systems |
| CN110062064A (en) * | 2019-05-30 | 2019-07-26 | 新华三信息安全技术有限公司 | A kind of Address Resolution Protocol ARP request message response method and device |
| US10367914B2 (en) | 2016-01-12 | 2019-07-30 | Cisco Technology, Inc. | Attaching service level agreements to application containers and enabling service assurance |
| US10382534B1 (en) | 2015-04-04 | 2019-08-13 | Cisco Technology, Inc. | Selective load balancing of network traffic |
| US10382597B2 (en) | 2016-07-20 | 2019-08-13 | Cisco Technology, Inc. | System and method for transport-layer level identification and isolation of container traffic |
| US10382274B2 (en) | 2017-06-26 | 2019-08-13 | Cisco Technology, Inc. | System and method for wide area zero-configuration network auto configuration |
| US10425288B2 (en) | 2017-07-21 | 2019-09-24 | Cisco Technology, Inc. | Container telemetry in data center environments with blade servers and switches |
| US10432532B2 (en) | 2016-07-12 | 2019-10-01 | Cisco Technology, Inc. | Dynamically pinning micro-service to uplink port |
| US10439877B2 (en) | 2017-06-26 | 2019-10-08 | Cisco Technology, Inc. | Systems and methods for enabling wide area multicast domain name system |
| US10454984B2 (en) | 2013-03-14 | 2019-10-22 | Cisco Technology, Inc. | Method for streaming packet captures from network access devices to a cloud server over HTTP |
| US10462136B2 (en) | 2015-10-13 | 2019-10-29 | Cisco Technology, Inc. | Hybrid cloud security groups |
| US10461959B2 (en) | 2014-04-15 | 2019-10-29 | Cisco Technology, Inc. | Programmable infrastructure gateway for enabling hybrid cloud services in a network environment |
| US10476982B2 (en) | 2015-05-15 | 2019-11-12 | Cisco Technology, Inc. | Multi-datacenter message queue |
| US10511534B2 (en) | 2018-04-06 | 2019-12-17 | Cisco Technology, Inc. | Stateless distributed load-balancing |
| US10523657B2 (en) | 2015-11-16 | 2019-12-31 | Cisco Technology, Inc. | Endpoint privacy preservation with cloud conferencing |
| US10523592B2 (en) | 2016-10-10 | 2019-12-31 | Cisco Technology, Inc. | Orchestration system for migrating user data and services based on user information |
| US10541866B2 (en) | 2017-07-25 | 2020-01-21 | Cisco Technology, Inc. | Detecting and resolving multicast traffic performance issues |
| US10552191B2 (en) | 2017-01-26 | 2020-02-04 | Cisco Technology, Inc. | Distributed hybrid cloud orchestration model |
| US10567344B2 (en) | 2016-08-23 | 2020-02-18 | Cisco Technology, Inc. | Automatic firewall configuration based on aggregated cloud managed information |
| US10601693B2 (en) | 2017-07-24 | 2020-03-24 | Cisco Technology, Inc. | System and method for providing scalable flow monitoring in a data center fabric |
| US10608865B2 (en) | 2016-07-08 | 2020-03-31 | Cisco Technology, Inc. | Reducing ARP/ND flooding in cloud environment |
| US10671571B2 (en) | 2017-01-31 | 2020-06-02 | Cisco Technology, Inc. | Fast network performance in containerized environments for network function virtualization |
| US10708342B2 (en) | 2015-02-27 | 2020-07-07 | Cisco Technology, Inc. | Dynamic troubleshooting workspaces for cloud and network management systems |
| US10705882B2 (en) | 2017-12-21 | 2020-07-07 | Cisco Technology, Inc. | System and method for resource placement across clouds for data intensive workloads |
| US10728361B2 (en) | 2018-05-29 | 2020-07-28 | Cisco Technology, Inc. | System for association of customer information across subscribers |
| US10764266B2 (en) | 2018-06-19 | 2020-09-01 | Cisco Technology, Inc. | Distributed authentication and authorization for rapid scaling of containerized services |
| US10805235B2 (en) | 2014-09-26 | 2020-10-13 | Cisco Technology, Inc. | Distributed application framework for prioritizing network traffic using application priority awareness |
| US10819571B2 (en) | 2018-06-29 | 2020-10-27 | Cisco Technology, Inc. | Network traffic optimization using in-situ notification system |
| US10825212B2 (en) | 2015-02-27 | 2020-11-03 | Cisco Technology, Inc. | Enhanced user interface systems including dynamic context selection for cloud-based networks |
| US10892940B2 (en) | 2017-07-21 | 2021-01-12 | Cisco Technology, Inc. | Scalable statistics and analytics mechanisms in cloud networking |
| US10904342B2 (en) | 2018-07-30 | 2021-01-26 | Cisco Technology, Inc. | Container networking using communication tunnels |
| US10904322B2 (en) | 2018-06-15 | 2021-01-26 | Cisco Technology, Inc. | Systems and methods for scaling down cloud-based servers handling secure connections |
| US10901769B2 (en) | 2015-10-06 | 2021-01-26 | Cisco Technology, Inc. | Performance-based public cloud selection for a hybrid cloud environment |
| US10917351B2 (en) | 2017-01-30 | 2021-02-09 | Cisco Technology, Inc. | Reliable load-balancer using segment routing and real-time application monitoring |
| CN112714027A (en) * | 2021-01-26 | 2021-04-27 | 浙江简捷物联科技有限公司 | Method and system for accessing terminal equipment of Internet of things to gateway |
| US11005731B2 (en) | 2017-04-05 | 2021-05-11 | Cisco Technology, Inc. | Estimating model parameters for automatic deployment of scalable micro services |
| US11005682B2 (en) | 2015-10-06 | 2021-05-11 | Cisco Technology, Inc. | Policy-driven switch overlay bypass in a hybrid cloud network environment |
| US11019083B2 (en) | 2018-06-20 | 2021-05-25 | Cisco Technology, Inc. | System for coordinating distributed website analysis |
| US11044162B2 (en) | 2016-12-06 | 2021-06-22 | Cisco Technology, Inc. | Orchestration of cloud and fog interactions |
| CN113132993A (en) * | 2021-04-23 | 2021-07-16 | 杭州网银互联科技股份有限公司 | Data stealing identification system applied to wireless local area network and use method thereof |
| US11481362B2 (en) | 2017-11-13 | 2022-10-25 | Cisco Technology, Inc. | Using persistent memory to enable restartability of bulk load transactions in cloud databases |
| US11595474B2 (en) | 2017-12-28 | 2023-02-28 | Cisco Technology, Inc. | Accelerating data replication using multicast and non-volatile memory enabled nodes |
| CN118316907A (en) * | 2022-12-30 | 2024-07-09 | 锐捷网络股份有限公司 | Uplink port identification method, device, electronic device and computer readable storage medium |
Families Citing this family (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9736065B2 (en) | 2011-06-24 | 2017-08-15 | Cisco Technology, Inc. | Level of hierarchy in MST for traffic localization and load balancing |
| US8908698B2 (en) | 2012-01-13 | 2014-12-09 | Cisco Technology, Inc. | System and method for managing site-to-site VPNs of a cloud managed network |
| US9473365B2 (en) | 2014-05-08 | 2016-10-18 | Cisco Technology, Inc. | Collaborative inter-service scheduling of logical resources in cloud platforms |
| US10122605B2 (en) | 2014-07-09 | 2018-11-06 | Cisco Technology, Inc | Annotation of network activity through different phases of execution |
| US10050862B2 (en) | 2015-02-09 | 2018-08-14 | Cisco Technology, Inc. | Distributed application framework that uses network and application awareness for placing data |
| US10034201B2 (en) | 2015-07-09 | 2018-07-24 | Cisco Technology, Inc. | Stateless load-balancing across multiple tunnels |
| US10205677B2 (en) | 2015-11-24 | 2019-02-12 | Cisco Technology, Inc. | Cloud resource placement optimization and migration execution in federated clouds |
| US10084703B2 (en) | 2015-12-04 | 2018-09-25 | Cisco Technology, Inc. | Infrastructure-exclusive service forwarding |
| US10129177B2 (en) | 2016-05-23 | 2018-11-13 | Cisco Technology, Inc. | Inter-cloud broker for hybrid cloud networks |
| US10263898B2 (en) | 2016-07-20 | 2019-04-16 | Cisco Technology, Inc. | System and method for implementing universal cloud classification (UCC) as a service (UCCaaS) |
| US10142346B2 (en) | 2016-07-28 | 2018-11-27 | Cisco Technology, Inc. | Extension of a private cloud end-point group to a public cloud |
| US10326817B2 (en) | 2016-12-20 | 2019-06-18 | Cisco Technology, Inc. | System and method for quality-aware recording in large scale collaborate clouds |
| US10334029B2 (en) | 2017-01-10 | 2019-06-25 | Cisco Technology, Inc. | Forming neighborhood groups from disperse cloud providers |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1310467C (en) * | 2003-06-24 | 2007-04-11 | 华为技术有限公司 | Port based network access control method |
| US8856372B2 (en) * | 2005-05-23 | 2014-10-07 | Telefonaktiebolaget L M Ericsson (Publ) | Method and system for local Peer-to-Peer traffic |
| CN100553259C (en) * | 2006-09-15 | 2009-10-21 | 杭州华三通信技术有限公司 | A kind of ARP message processing method and device |
-
2008
- 2008-11-10 CN CN2008102257344A patent/CN101394360B/en active Active
Cited By (88)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101527681B (en) * | 2009-03-31 | 2012-07-04 | 成都市华为赛门铁克科技有限公司 | Method for processing uplink message, device and system thereof |
| CN101540733B (en) * | 2009-05-08 | 2011-01-05 | 深圳市维信联合科技有限公司 | ARP message processing method and network side apparatus |
| CN101888329B (en) * | 2010-04-28 | 2013-04-17 | 北京星网锐捷网络技术有限公司 | Address resolution protocol (ARP) message processing method, device and access equipment |
| CN101888329A (en) * | 2010-04-28 | 2010-11-17 | 北京星网锐捷网络技术有限公司 | Address resolution protocol (ARP) message processing method, device and access equipment |
| CN101888338A (en) * | 2010-07-01 | 2010-11-17 | 中兴通讯股份有限公司 | Information forwarding method and gateway |
| CN101888338B (en) * | 2010-07-01 | 2016-06-22 | 中兴通讯股份有限公司 | information forwarding method and gateway |
| CN102075426A (en) * | 2011-01-14 | 2011-05-25 | 中兴通讯股份有限公司 | Message transmission method under MFF manual mode and device |
| CN102143068A (en) * | 2011-03-01 | 2011-08-03 | 华为技术有限公司 | Method, device and system for learning MAC (Media Access Control) address |
| CN102143068B (en) * | 2011-03-01 | 2014-04-02 | 华为技术有限公司 | Method, device and system for learning MAC (Media Access Control) address |
| CN102571806A (en) * | 2012-02-08 | 2012-07-11 | 神州数码网络(北京)有限公司 | Apparatus and method for actively preventing deception of router advertisement message |
| CN102571806B (en) * | 2012-02-08 | 2016-12-07 | 神州数码网络(北京)有限公司 | A kind of apparatus and method actively preventing router advertisement packet cheating |
| CN102546658A (en) * | 2012-02-20 | 2012-07-04 | 神州数码网络(北京)有限公司 | Method and system for preventing address resolution protocol (ARP) gateway spoofing |
| CN102694876A (en) * | 2012-05-10 | 2012-09-26 | 北京星网锐捷网络技术有限公司 | Method and device for determining effectiveness of learned MAC (Media Access Control) address and gateway equipment |
| CN102710805A (en) * | 2012-05-14 | 2012-10-03 | 浙江宇视科技有限公司 | Method and device for updating internet protocol (IP) address |
| US10454984B2 (en) | 2013-03-14 | 2019-10-22 | Cisco Technology, Inc. | Method for streaming packet captures from network access devices to a cloud server over HTTP |
| US10461959B2 (en) | 2014-04-15 | 2019-10-29 | Cisco Technology, Inc. | Programmable infrastructure gateway for enabling hybrid cloud services in a network environment |
| US10972312B2 (en) | 2014-04-15 | 2021-04-06 | Cisco Technology, Inc. | Programmable infrastructure gateway for enabling hybrid cloud services in a network environment |
| US11606226B2 (en) | 2014-04-15 | 2023-03-14 | Cisco Technology, Inc. | Programmable infrastructure gateway for enabling hybrid cloud services in a network environment |
| WO2016034006A1 (en) * | 2014-09-05 | 2016-03-10 | 华为技术有限公司 | Packet sending method and access device |
| US10805235B2 (en) | 2014-09-26 | 2020-10-13 | Cisco Technology, Inc. | Distributed application framework for prioritizing network traffic using application priority awareness |
| US10708342B2 (en) | 2015-02-27 | 2020-07-07 | Cisco Technology, Inc. | Dynamic troubleshooting workspaces for cloud and network management systems |
| US10825212B2 (en) | 2015-02-27 | 2020-11-03 | Cisco Technology, Inc. | Enhanced user interface systems including dynamic context selection for cloud-based networks |
| US11122114B2 (en) | 2015-04-04 | 2021-09-14 | Cisco Technology, Inc. | Selective load balancing of network traffic |
| US11843658B2 (en) | 2015-04-04 | 2023-12-12 | Cisco Technology, Inc. | Selective load balancing of network traffic |
| US10382534B1 (en) | 2015-04-04 | 2019-08-13 | Cisco Technology, Inc. | Selective load balancing of network traffic |
| US10476982B2 (en) | 2015-05-15 | 2019-11-12 | Cisco Technology, Inc. | Multi-datacenter message queue |
| US10938937B2 (en) | 2015-05-15 | 2021-03-02 | Cisco Technology, Inc. | Multi-datacenter message queue |
| CN105991794A (en) * | 2015-06-01 | 2016-10-05 | 杭州迪普科技有限公司 | Address learning method and address learning device |
| CN105991794B (en) * | 2015-06-01 | 2019-05-07 | 杭州迪普科技股份有限公司 | A kind of address learning method and device |
| US11005682B2 (en) | 2015-10-06 | 2021-05-11 | Cisco Technology, Inc. | Policy-driven switch overlay bypass in a hybrid cloud network environment |
| US10901769B2 (en) | 2015-10-06 | 2021-01-26 | Cisco Technology, Inc. | Performance-based public cloud selection for a hybrid cloud environment |
| US12363115B2 (en) | 2015-10-13 | 2025-07-15 | Cisco Technology, Inc. | Hybrid cloud security groups |
| US10462136B2 (en) | 2015-10-13 | 2019-10-29 | Cisco Technology, Inc. | Hybrid cloud security groups |
| US11218483B2 (en) | 2015-10-13 | 2022-01-04 | Cisco Technology, Inc. | Hybrid cloud security groups |
| US10523657B2 (en) | 2015-11-16 | 2019-12-31 | Cisco Technology, Inc. | Endpoint privacy preservation with cloud conferencing |
| US10367914B2 (en) | 2016-01-12 | 2019-07-30 | Cisco Technology, Inc. | Attaching service level agreements to application containers and enabling service assurance |
| US10999406B2 (en) | 2016-01-12 | 2021-05-04 | Cisco Technology, Inc. | Attaching service level agreements to application containers and enabling service assurance |
| CN105959425A (en) * | 2016-04-21 | 2016-09-21 | 北京千丁互联科技有限公司 | Communication method and system for intelligent community, talkback terminal for intelligent community, and core switch for intelligent community |
| CN105959425B (en) * | 2016-04-21 | 2019-04-16 | 北京千丁互联科技有限公司 | Communication means, system and its intercommunication terminal and core switch of intelligent residential district |
| CN106102122A (en) * | 2016-05-16 | 2016-11-09 | 杭州华三通信技术有限公司 | MAC Address list item update method and device |
| US10608865B2 (en) | 2016-07-08 | 2020-03-31 | Cisco Technology, Inc. | Reducing ARP/ND flooding in cloud environment |
| US10659283B2 (en) | 2016-07-08 | 2020-05-19 | Cisco Technology, Inc. | Reducing ARP/ND flooding in cloud environment |
| US10432532B2 (en) | 2016-07-12 | 2019-10-01 | Cisco Technology, Inc. | Dynamically pinning micro-service to uplink port |
| US10382597B2 (en) | 2016-07-20 | 2019-08-13 | Cisco Technology, Inc. | System and method for transport-layer level identification and isolation of container traffic |
| US10567344B2 (en) | 2016-08-23 | 2020-02-18 | Cisco Technology, Inc. | Automatic firewall configuration based on aggregated cloud managed information |
| US10523592B2 (en) | 2016-10-10 | 2019-12-31 | Cisco Technology, Inc. | Orchestration system for migrating user data and services based on user information |
| US11716288B2 (en) | 2016-10-10 | 2023-08-01 | Cisco Technology, Inc. | Orchestration system for migrating user data and services based on user information |
| US11044162B2 (en) | 2016-12-06 | 2021-06-22 | Cisco Technology, Inc. | Orchestration of cloud and fog interactions |
| US10552191B2 (en) | 2017-01-26 | 2020-02-04 | Cisco Technology, Inc. | Distributed hybrid cloud orchestration model |
| US10917351B2 (en) | 2017-01-30 | 2021-02-09 | Cisco Technology, Inc. | Reliable load-balancer using segment routing and real-time application monitoring |
| US10671571B2 (en) | 2017-01-31 | 2020-06-02 | Cisco Technology, Inc. | Fast network performance in containerized environments for network function virtualization |
| US11005731B2 (en) | 2017-04-05 | 2021-05-11 | Cisco Technology, Inc. | Estimating model parameters for automatic deployment of scalable micro services |
| US10382274B2 (en) | 2017-06-26 | 2019-08-13 | Cisco Technology, Inc. | System and method for wide area zero-configuration network auto configuration |
| US10439877B2 (en) | 2017-06-26 | 2019-10-08 | Cisco Technology, Inc. | Systems and methods for enabling wide area multicast domain name system |
| US10425288B2 (en) | 2017-07-21 | 2019-09-24 | Cisco Technology, Inc. | Container telemetry in data center environments with blade servers and switches |
| US10892940B2 (en) | 2017-07-21 | 2021-01-12 | Cisco Technology, Inc. | Scalable statistics and analytics mechanisms in cloud networking |
| US11411799B2 (en) | 2017-07-21 | 2022-08-09 | Cisco Technology, Inc. | Scalable statistics and analytics mechanisms in cloud networking |
| US11196632B2 (en) | 2017-07-21 | 2021-12-07 | Cisco Technology, Inc. | Container telemetry in data center environments with blade servers and switches |
| US11695640B2 (en) | 2017-07-21 | 2023-07-04 | Cisco Technology, Inc. | Container telemetry in data center environments with blade servers and switches |
| US11233721B2 (en) | 2017-07-24 | 2022-01-25 | Cisco Technology, Inc. | System and method for providing scalable flow monitoring in a data center fabric |
| US11159412B2 (en) | 2017-07-24 | 2021-10-26 | Cisco Technology, Inc. | System and method for providing scalable flow monitoring in a data center fabric |
| US10601693B2 (en) | 2017-07-24 | 2020-03-24 | Cisco Technology, Inc. | System and method for providing scalable flow monitoring in a data center fabric |
| US11102065B2 (en) | 2017-07-25 | 2021-08-24 | Cisco Technology, Inc. | Detecting and resolving multicast traffic performance issues |
| US12184486B2 (en) | 2017-07-25 | 2024-12-31 | Cisco Technology, Inc. | Detecting and resolving multicast traffic performance issues |
| US10541866B2 (en) | 2017-07-25 | 2020-01-21 | Cisco Technology, Inc. | Detecting and resolving multicast traffic performance issues |
| US10353800B2 (en) | 2017-10-18 | 2019-07-16 | Cisco Technology, Inc. | System and method for graph based monitoring and management of distributed systems |
| US10866879B2 (en) | 2017-10-18 | 2020-12-15 | Cisco Technology, Inc. | System and method for graph based monitoring and management of distributed systems |
| US11481362B2 (en) | 2017-11-13 | 2022-10-25 | Cisco Technology, Inc. | Using persistent memory to enable restartability of bulk load transactions in cloud databases |
| US10705882B2 (en) | 2017-12-21 | 2020-07-07 | Cisco Technology, Inc. | System and method for resource placement across clouds for data intensive workloads |
| US11595474B2 (en) | 2017-12-28 | 2023-02-28 | Cisco Technology, Inc. | Accelerating data replication using multicast and non-volatile memory enabled nodes |
| US10511534B2 (en) | 2018-04-06 | 2019-12-17 | Cisco Technology, Inc. | Stateless distributed load-balancing |
| US11233737B2 (en) | 2018-04-06 | 2022-01-25 | Cisco Technology, Inc. | Stateless distributed load-balancing |
| US10728361B2 (en) | 2018-05-29 | 2020-07-28 | Cisco Technology, Inc. | System for association of customer information across subscribers |
| US11252256B2 (en) | 2018-05-29 | 2022-02-15 | Cisco Technology, Inc. | System for association of customer information across subscribers |
| US10904322B2 (en) | 2018-06-15 | 2021-01-26 | Cisco Technology, Inc. | Systems and methods for scaling down cloud-based servers handling secure connections |
| US11968198B2 (en) | 2018-06-19 | 2024-04-23 | Cisco Technology, Inc. | Distributed authentication and authorization for rapid scaling of containerized services |
| US10764266B2 (en) | 2018-06-19 | 2020-09-01 | Cisco Technology, Inc. | Distributed authentication and authorization for rapid scaling of containerized services |
| US11552937B2 (en) | 2018-06-19 | 2023-01-10 | Cisco Technology, Inc. | Distributed authentication and authorization for rapid scaling of containerized services |
| US11019083B2 (en) | 2018-06-20 | 2021-05-25 | Cisco Technology, Inc. | System for coordinating distributed website analysis |
| US10819571B2 (en) | 2018-06-29 | 2020-10-27 | Cisco Technology, Inc. | Network traffic optimization using in-situ notification system |
| US10904342B2 (en) | 2018-07-30 | 2021-01-26 | Cisco Technology, Inc. | Container networking using communication tunnels |
| CN109450905A (en) * | 2018-11-20 | 2019-03-08 | 郑州云海信息技术有限公司 | Transmit the method and apparatus and system of data |
| CN109450905B (en) * | 2018-11-20 | 2021-05-04 | 郑州云海信息技术有限公司 | Method, device and system for transmitting data |
| CN110062064B (en) * | 2019-05-30 | 2022-06-21 | 新华三信息安全技术有限公司 | Address Resolution Protocol (ARP) request message response method and device |
| CN110062064A (en) * | 2019-05-30 | 2019-07-26 | 新华三信息安全技术有限公司 | A kind of Address Resolution Protocol ARP request message response method and device |
| CN112714027A (en) * | 2021-01-26 | 2021-04-27 | 浙江简捷物联科技有限公司 | Method and system for accessing terminal equipment of Internet of things to gateway |
| CN113132993A (en) * | 2021-04-23 | 2021-07-16 | 杭州网银互联科技股份有限公司 | Data stealing identification system applied to wireless local area network and use method thereof |
| CN118316907A (en) * | 2022-12-30 | 2024-07-09 | 锐捷网络股份有限公司 | Uplink port identification method, device, electronic device and computer readable storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101394360B (en) | 2011-07-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101394360B (en) | Processing method, access device and communication system for address resolution protocol | |
| US7222188B1 (en) | Method and apparatus for forwarding traffic between locally attached networks using level 3 addressing information | |
| US7107609B2 (en) | Stateful packet forwarding in a firewall cluster | |
| CN101572643B (en) | Method and system for realizing data transmission among private networks | |
| CN103023942B (en) | A kind of server load balancing method, Apparatus and system | |
| CN102143068B (en) | Method, device and system for learning MAC (Media Access Control) address | |
| CN101009662B (en) | Message processing method, system and device based on the load balance technology | |
| EP3422656B1 (en) | Udp protocol acceleration method and system | |
| US20040213172A1 (en) | Anti-spoofing system and method | |
| CN109361606B (en) | Message processing system and network equipment | |
| US20060050703A1 (en) | Method for automatic traffic interception | |
| US20070127459A1 (en) | Network apparatus and method for forwarding multicast packets for the same | |
| CN1981485B (en) | Communication system, wireless LAN base station control device, and wireless LAN base station device | |
| CN102859973A (en) | Method, apparatus and system for address resolution | |
| CN101582773A (en) | Redundant failover system, redundancy managing apparatus and application processing apparatus | |
| CN102100041A (en) | Outbound transmission of packet based on routing search key constructed from packet destination address and outbound interface | |
| US11283730B2 (en) | Data migration method and apparatus | |
| CN101325554B (en) | Method for establishing route, forwarding chip and three-layer switchboard | |
| CN102263774A (en) | Method and device for processing source role information | |
| US20050165885A1 (en) | Method and apparatus for forwarding data packets addressed to a cluster servers | |
| CN102014142A (en) | Source address validation method and system | |
| CN103812746B (en) | Bridging device based on linux operating systems and its communication means | |
| JP2006295938A (en) | Network type routing mechanism | |
| US8934927B2 (en) | Method and apparatus for routing short messages in mobile telephone networks | |
| CN111064825B (en) | A method and device for realizing DPI data acquisition and control based on ARP |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |