System and method for extending server security through monitored load management
First Claim
1. A method for preventing malicious network attacks said method comprising:
- receiving a packet from a client computer;
determining a number of packets received during a time interval; and
rejecting the packet in response to the number of packets exceeding a packet limit.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for extending server security based on source IP addresses is provided. When the server receives a packet request, it determines if the request is legitimate or a malicious attempt to cause denial of service. The determination is made by a server background IP packet monitor that looks up the amount of packets previously requested by the same source IP address in a given time interval. If the packet request is legitimate, the server processes the request and sends a response to the client. If the server background IP packet monitor determines that the packet request was from a malicious client, an predetermined action is taken. The action can be notifying the system administrator or denying the packet request and not sending a response.
81 Citations
20 Claims
-
1. A method for preventing malicious network attacks said method comprising:
-
receiving a packet from a client computer;
determining a number of packets received during a time interval; and
rejecting the packet in response to the number of packets exceeding a packet limit. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An information handling system comprising:
-
one or more processors;
a memory accessible by the processors;
one or more nonvolatile storage devices accessible by the processors;
a network interface for receiving packets from a computer network; and
an packet handling tool to manage packets received from the network interface, the packet handling tool including;
means for receiving a packet from a client computer through the network interface;
means for determining a number of packets received during a time interval; and
means for rejecting the packet in response to the number of packets exceeding a packet limit. - View Dependent Claims (9, 10, 11, 12, 13, 15, 16, 17, 18, 19, 20)
-
-
14. A computer program product for preventing malicious network attacks, said computer program product comprising:
-
means for receiving a packet from a client computer;
means for detecting a number of packets received during a time interval; and
means for rejecting the packet in response to detecting that the number of packets exceeds a packet limit.
-
Specification