Invention Grant
- Patent Title: Detection method for abnormal traffic and packet relay apparatus
- Patent Title (中): 异常流量和分组中继设备的检测方法
-
Application No.: US11365500Application Date: 2006-03-02
-
Publication No.: US07729271B2Publication Date: 2010-06-01
- Inventor: Kazuaki Tsuchiya , Hiroshi Sato
- Applicant: Kazuaki Tsuchiya , Hiroshi Sato
- Applicant Address: JP Kawasaki
- Assignee: Alaxala Networks Corporation
- Current Assignee: Alaxala Networks Corporation
- Current Assignee Address: JP Kawasaki
- Agency: Brundidge & Stanger, P.C.
- Priority: JP2005-305443 20051020
- Main IPC: H04J1/16
- IPC: H04J1/16 ; H04L12/28
Abstract:
The present invention provides a technology including, for example, a packet relay processing section to carry out packet relay, a packet sampling section to carry out packet sampling, a flow statistics counting section to take statistics of each flow, and a flow statistics generating section to generate a NetFlow export datagram, wherein the flow statistics counting section collectively counts the number of the packets or bytes received per unit time when the number does not exceed a threshold value and individually counts the number for each flow when the number exceeds the threshold value, and thereby a flow of abnormal traffic which is suspected to be DoS attack is efficiently detected with small amounts of resources (mainly memories).
Public/Granted literature
- US20070115850A1 Detection method for abnormal traffic and packet relay apparatus Public/Granted day:2007-05-24
Information query
