DNS server filter
First Claim
1. A DNS server filter apparatus comprising:
- packet verification means for verifying whether there is any abnormality in contents of a received DNS (domain name system) packet before transmitting it to a DNS server; and
error response means for generating an error response packet and transmitting it to a request source if an abnormality is detected.
1 Assignment
0 Petitions
Accused Products
Abstract
A DNS server filter comprising a packet receiving section for receiving an inquiry from a terminal or a DNS server in a DNS protocol and a response packet from a DNS server, a session management section for managing inquiries and response packets for an entire control having a session management table for managing inquiry requests, a packet verification section for verifying whether the inquiry and the response packet are abnormal, a request generating section for generating an inquiry packet to the DNS server, a response generating section for generating a response packet returned to a transmission source of the inquiry packet, and a packet transmitting section for transmitting the inquiry and the response packet, wherein contents of the received DNS packet are checked that there is no abnormality before the received DNS packet is transmitted to the DNS server and an error response packet is generated and returned to a request source if an abnormality is detected.
101 Citations
18 Claims
-
1. A DNS server filter apparatus comprising:
-
packet verification means for verifying whether there is any abnormality in contents of a received DNS (domain name system) packet before transmitting it to a DNS server; and
error response means for generating an error response packet and transmitting it to a request source if an abnormality is detected. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A DNS server filter apparatus comprising:
-
a packet receiving section for receiving an inquiry from a terminal or a DNS server and a response packet from a DNS server;
a session management section for managing inquiry packets and response packets for an entire control, having a session management table for managing inquiry requests;
a packet verification section for verifying whether the inquiry packet or the response packet is abnormal;
a request generating section for generating an inquiry packet to the DNS server;
a response generating section for generating a response packet to be returned to a transmission source of the inquiry packet;
a packet transmitting section for transmitting the inquiry packet and the response packet; and
response means for verifying whether there is any abnormality in contents of the received packet in a DNS protocol before transmitting the packet to the DNS server regarding the received packet in the DNS protocol and generating an error response packet to transmit it to a request source if an abnormality is detected. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A record medium having a program recorded therein and capable of executing:
-
packet receiving processing for receiving an inquiry from a terminal or a DNS server in the DNS protocol and a response packet from a DNS server via a communication apparatus;
session management processing for managing inquiries and response packets for an entire control, having a session management table for managing the inquiry requests;
packet verification processing for verifying whether an inquiry or a response packet is abnormal;
request generation processing for generating an inquiry packet to a DNS server;
response generation processing for generating an inquiry packet to the DNS server;
response generation processing for generating a response packet to be returned to a transmission source of the inquiry packet;
packet transmission processing for controlling an operation so as to transmit an inquiry and a response packet through a communication apparatus; and
DNS server filter processing for verifying whether there is any abnormality in contents of the packet before transmitting the packet to the DNS server regarding the received DNS packet;
if an abnormality is detected, it generates and transmits an error response packet. - View Dependent Claims (14, 15, 16)
-
-
17. A program embodied as electric signals, comprising:
-
packet receiving processing for receiving an inquiry from a terminal or a DNS server in the DNS protocol and a response packet from the DNS server via a communication apparatus;
session management processing for managing the inquiry and the response packet for an entire control using a session management table for managing inquiry requests;
packet verification processing for verifying whether the inquiry and the response packet are abnormal;
request generation processing for generating an inquiry packet to the DNS server;
response generation processing for generating a response packet returned to a transmission source of the inquiry packet;
packet transmission processing for controlling an operation to transmit the inquiry and the response packet via the communication apparatus; and
DNS server filter processing for verifying whether there is any abnormality in contents of the received DNS packet before transmitting the packet to the DNS server regarding the received DNS packet and for generating and transmitting an error response packet when detecting an abnormality. - View Dependent Claims (18)
-
Specification