CN2819663Y - Intranet IP address discovering and blocking system - Google Patents
Intranet IP address discovering and blocking system Download PDFInfo
- Publication number
- CN2819663Y CN2819663Y CN 200520039242 CN200520039242U CN2819663Y CN 2819663 Y CN2819663 Y CN 2819663Y CN 200520039242 CN200520039242 CN 200520039242 CN 200520039242 U CN200520039242 U CN 200520039242U CN 2819663 Y CN2819663 Y CN 2819663Y
- Authority
- CN
- China
- Prior art keywords
- module
- address
- information
- illegal
- blocking
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
- 230000000903 blocking effect Effects 0.000 title claims abstract description 9
- 238000012544 monitoring process Methods 0.000 claims 1
- 230000005540 biological transmission Effects 0.000 abstract description 3
- 238000005516 engineering process Methods 0.000 description 8
- 238000007726 management method Methods 0.000 description 8
- 238000000034 method Methods 0.000 description 4
- 238000013475 authorization Methods 0.000 description 3
- 238000013497 data interchange Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 238000013507 mapping Methods 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 206010019233 Headaches Diseases 0.000 description 1
- 241001362551 Samba Species 0.000 description 1
- 238000004458 analytical method Methods 0.000 description 1
- 230000015572 biosynthetic process Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000008878 coupling Effects 0.000 description 1
- 238000010168 coupling process Methods 0.000 description 1
- 238000005859 coupling reaction Methods 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 231100000869 headache Toxicity 0.000 description 1
- 230000002452 interceptive effect Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000011897 real-time detection Methods 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 230000001360 synchronised effect Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The utility model provides an intranet IP address discovering and blocking system which comprises a network scanning module, an information comparing module and an illegality blocking module, wherein the network scanning module scans on-line host information, such as IP address, mac address, host name, a workgroup, etc., and sends the information flow to the information comparing module; the information comparing module compares the received information flow with legal configuration which has been set and sends a list of compared illegal web sites to the illegality blocking module which blocks and attacks an illegal host. Thus, on the premise that the integral performance of the network is ensured, the utility model can timely discover and block a local-area network host without influencing any international standard of network flow and transmission.
Description
Technical field
The utility model relates to a kind of LAN safety management system, relates in particular to a kind of Intranet IP address discovery and blocking system.
Background technology
The application of internet has now become that each major company raises labour productivity and the revolutionary factor of profit margin, and they have obtained new business opportunity by ecommerce and wide area network.Meanwhile, increasing employee connects together by the standard agreement TCP/IP of internet, and this has just caused a serious problem, the long IP address of multiplication exceeded the scope that IT department of company can control.The expansion of current each major company's network is extremely swift and violent, simultaneously the order and the reliability of network ip address and name space is also had higher requirement.Therefore, how effectively to prevent the IP address illegally usurp and illegal network equipment access network is a problem of much organizing headache.
ARP(Address Resolution Protocol) is used to realize the mapping of IP address to the network interface hardware address.When certain main frame will be in Ethernet another main frame when sending the IP data, it is at first according to the IP address of the destination host mapping table to corresponding ethernet address.If find the node of coupling, then corresponding ethernet address is written into the ethernet frame stem, and data are put on record and joined output queue and wait transmission.If inquiry failure, ARP can keep IP datagram to be sent earlier, broadcasts the ARP message of an inquiry destination host hardware address then, waits IP datagram to be sent after receiving answer again.
Summary of the invention
Technical problem to be solved in the utility model provides a kind of Intranet IP address discovery and blocking system, it can guarantee under the overall performance of network prerequisite, realization is to the timely discovery and the blocking-up of local host machine, and do not influence the international standard of any network traffics and transmission.
In order to solve the problems of the technologies described above, the technical solution of the utility model is: a kind of Intranet IP address discovery and blocking system are provided, comprise:
The network sweep module, the information such as IP address, mac address, host name, working group that it scans online main frame sends to information comparison module with information flow;
Information comparison module, it compares information flow that receives and the legal configuration of having set, and the tabulation of the illegal website compared out is sent to illegal blocking-up module;
Illegal blocking-up module, it blocks attack to illegal host.
Like this, advantage of the present utility model is as follows:
System of the present utility model is a framework with Java, Web technology, adopts object-oriented and MessageQueueing technology component information switching plane, and the every formation function that makes product makes whole system possess autgmentability flexibly on this platform.The utility model can be achieved as follows function: 1, physical port protection; 2, the real-time detection and the analysis of online IP address of equipment; 3, the validity decision of information such as IP address, MAC Address; 4, warning and the illegal IP address of blocking-up automatically; 5, the use history of inquiry illegal IP address; 6, support multiple detection modes such as active detecting, passive listening; 7, support dynamic assignment IP address and the static IP of setting address simultaneously.
Description of drawings
Fig. 1 is the structural representation of system of the present utility model.
Embodiment
As shown in Figure 1: service system of the present utility model uses Java Servlet (Servlet is the Server end program of writing with Java) container Tomcat (title of a Web container) as the webserver 1, at the top operation interface that the Web mode is provided to the user, the built-in Postgresql of system (a kind of title of database) database 2, this system mainly is divided into network sweep module 3, information comparison module 4, illegal blocking-up module 5,7 seven modules of authentication module 6 and entitlement management module, intercom mutually by the right method of message (Message Queueing) between each module, pass through ICMP (Internet Control Message Protocol) at the bottom, ARP (address resolution protocol), SNMP (Simple Network Management Protocol), TELNET (Telnet), FTP standard agreements such as (file transfer protocol (FTP)) obtains the information of managed device.
Wherein, the webserver 1 (WebService) provides external interface interchange;
Information such as the IP address of the online main frame of network sweep module 3 scannings, mac (Media Access Control, medium access control) address, host name, working group send to information comparison module with information flow;
5 pairs of illegal host of illegal blocking-up module are blocked attack.
When user's login system, 6 pairs of identify labels of authentication module are handled, and call the page loading that entitlement management module 7 has this user authority.Each submodule is by ODBC (Open DatabaseConnectivity, Open Database Connection) or JDBC (Java Database Connectivity, the interconnection of Java database) accessing database.
Wherein, described entitlement management module 7 adopts ePass authorization verification management system.EPass authorization verification management system is the general Software System of the access authorization for resource of the one or more application systems of management, it can be to the resource in using, the right to use such as resources such as application system menu, picture, form and documents is managed concentratedly, simultaneously the account number of using the user of system is managed concentratedly, unified standard login interface is provided and uses screen template, provide specifying the interface of account number, allocated resource scope check.
The automatic scan of 3 pairs of IP addresses of described network sweep module is found and can be finished by agreements such as ICMP, ARP, considers the situation that scan efficiency and MAC Address are found, the utility model adopts the ARP agreement to carry out network sweep.The automatic discovery of host name then can be passed through multiple technologies such as SNMP, Samba, Ftp, Telnet in conjunction with realization.
Method for interchanging data of the present utility model can adopt two kinds of methods, and a kind of is by MessageQueue message synchronization mechanism, uses pass-along message between different system, makes certain processing by application program again, finishes data sync work; Another is to represent database data by the XML file, by network the XML file is sent to synchronous end again.Message Queue Data Interchange Technology is applicable to that real-time requires than higher, the occasion that data volume is less relatively, it is lower that XML (eXtensibleMarkup Language, extend markup language) Data Interchange Technology is applicable to that then real-time requires, the occasion that data volume is relatively large.
This reality has the basic technology of novel employing BSMQ (Baosight Message Queuing, precious letter message queue) communication middleware as data sync.BSMQ provides the connectedness on different vendor platforms, and the information interactive method of standard is provided to the developer.
Claims (1)
1, a kind of Intranet IP address discovery and blocking system is characterized in that, comprising:
Network sweep module (3), the information such as IP address, mac address, host name, working group that it scans online main frame sends to information comparison module with information flow;
Information comparison module (4), it compares information flow that receives and the legal configuration of having set, and the tabulation of the illegal website compared out is sent to illegal blocking-up module;
Illegal blocking-up module (5), it blocks attack to illegal host;
The webserver (1), it provides external interface interchange;
Authentication module (6) is handled identify label when it is used for the user and lands;
Entitlement management module (7), it loads the page that this user has authority;
Described network sweep module (3), information contrast module (4), illegally block module (5), dialing monitoring module, device management module, authentication module (6), entitlement management module and communicate to connect mutually between (7).
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200520039242 CN2819663Y (en) | 2005-01-25 | 2005-01-25 | Intranet IP address discovering and blocking system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200520039242 CN2819663Y (en) | 2005-01-25 | 2005-01-25 | Intranet IP address discovering and blocking system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN2819663Y true CN2819663Y (en) | 2006-09-20 |
Family
ID=37005724
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200520039242 Expired - Lifetime CN2819663Y (en) | 2005-01-25 | 2005-01-25 | Intranet IP address discovering and blocking system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN2819663Y (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102487386A (en) * | 2010-12-06 | 2012-06-06 | 中兴通讯股份有限公司 | Blocking method of identity position separation network and system thereof |
| CN112801531A (en) * | 2021-02-07 | 2021-05-14 | 上海汉询软件有限公司 | Full-process receivable management system |
| CN114826674A (en) * | 2022-03-28 | 2022-07-29 | 深圳市智微智能软件开发有限公司 | Method, system and storage medium for realizing ARP blocking |
-
2005
- 2005-01-25 CN CN 200520039242 patent/CN2819663Y/en not_active Expired - Lifetime
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102487386A (en) * | 2010-12-06 | 2012-06-06 | 中兴通讯股份有限公司 | Blocking method of identity position separation network and system thereof |
| WO2012075770A1 (en) * | 2010-12-06 | 2012-06-14 | 中兴通讯股份有限公司 | Blocking method and system in an identity and location separation network |
| CN102487386B (en) * | 2010-12-06 | 2016-02-10 | 中兴通讯股份有限公司 | The blocking-up method of identity position separation network and system |
| CN112801531A (en) * | 2021-02-07 | 2021-05-14 | 上海汉询软件有限公司 | Full-process receivable management system |
| CN114826674A (en) * | 2022-03-28 | 2022-07-29 | 深圳市智微智能软件开发有限公司 | Method, system and storage medium for realizing ARP blocking |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP4554609B2 (en) | Network asset tracker that identifies users of networked computers | |
| US20080107131A1 (en) | Method and system for initialization configuration of managed device | |
| JP2002521748A (en) | Information security analysis system | |
| CN110659481A (en) | Vulnerability scanning method based on agent | |
| CN112714137A (en) | Method for deploying honey nets across vlan in large scale based on virtual switching | |
| CN101599857B (en) | Method, device and network detection system for detecting number of host computers accessed to sharing | |
| CN1556611A (en) | Comprehensive management method of network information security based on security application server | |
| CN2819663Y (en) | Intranet IP address discovering and blocking system | |
| CN116719868A (en) | Methods, devices and equipment for identifying network assets | |
| CN107959602A (en) | A kind of method of network entry and device | |
| CN1713584A (en) | Discovering and blocking system and method for intranet IP address | |
| CN106059787A (en) | State obtaining method and device of miniature machine servers | |
| CN121077808A (en) | Proxy-free honeypot mapping method and device | |
| CN104065766B (en) | One kind bypass caching domain name analytic method | |
| CN107733941A (en) | A kind of realization method and system of the data acquisition platform based on big data | |
| CN1595885A (en) | Network equipment panel management system | |
| CN201657204U (en) | System for realizing network video monitoring off internet platform | |
| CN102131072A (en) | System and method for realizing network video monitoring under internet platform | |
| CN114268457A (en) | Multi-protocol multi-service public network security access method | |
| CN100466537C (en) | Device and method for detecting computer access status in network | |
| CN101478406A (en) | Method for real-time monitoring network operation behavior of remote user | |
| JP2010183214A (en) | Apparatus, method and program for analysis of packet | |
| CN114070830A (en) | Internet agent single-arm deployment architecture and internet agent remote deployment system | |
| KR101047152B1 (en) | Data Driven Traffic Management System and Traffic Management Method | |
| CN1136504C (en) | Dynamic dispersive-information exchange method and the module for it |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CX01 | Expiry of patent term |
Expiration termination date: 20150125 Granted publication date: 20060920 |