Packet data communications
First Claim
1. A method of managing data traffic received at a network node and destined therefor from a packet data communications network, said method comprising, at the network node, the steps of:
- a) monitoring tracing data allowing the identity of at least one remote packet forwarding node in the network which is responsible for forwarding at least some of the received data traffic to the network node to be found; and
b) transmitting a request from the network node for the remote packet forwarding node to alter its handling of data traffic destined for the network node.
1 Assignment
0 Petitions
Accused Products
Abstract
A method of managing a Denial of Service attack received at a network node from a packet data communications network, by tracing the path of predominantly malicious data packets arriving at the network node. The attack may be mitigated by selecting a router along the detected path and requesting the router to alter its handling of the data traffic. In one embodiment, the selected router installs a filter for data directed at the network node. In a different embodiment, the router alters a Quality of Service setting for the data directed at the network node. The network node may also request the router to mark all data being forwarded to it, to allow the network to characterise the data and determine to what exten it consists of malicious data.
-
Citations
21 Claims
-
1. A method of managing data traffic received at a network node and destined therefor from a packet data communications network, said method comprising, at the network node, the steps of:
-
a) monitoring tracing data allowing the identity of at least one remote packet forwarding node in the network which is responsible for forwarding at least some of the received data traffic to the network node to be found; and
b) transmitting a request from the network node for the remote packet forwarding node to alter its handling of data traffic destined for the network node. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method of managing data traffic received at a packet forwarding node in a packet data communications network, said method comprising, at the packet forwarding node, the steps of:
-
a) forwarding data traffic destined for a network node towards that node;
b) receiving a request from the network node for the remote packet forwarding node to alter its handling of data traffic destined for the network node; and
c) altering the handling of traffic data at the remote packet forwarding node in accordance with the request.
-
-
11. A method of detecting a path of data traffic transmitted through a packet data communications network, said method comprising;
-
(a) receiving data at a network node in the format of tracing data generated at packet forwarding nodes in the data communications network;
(b) collating the said received data to detect potential paths of the received data traffic;
(c) weighting the received data in dependence on an apparent distance of the packet forwarding node generating the tracing data from the said network node. - View Dependent Claims (12, 13)
-
-
14. A method of reducing congestion problems experienced by a network node by altering the handling of data traffic at a packet forwarding node in a packet data communications network, said method comprising, at the packet forwarding node, the steps of:
-
(a) receiving said traffic data at said packet forwarding node; and
(b) reducing a Quality of Service setting for the received traffic data, such that the traffic data is more likely to be dropped by the subsequent packet forwarding nodes in the communications network to which the traffic data is forwarded. - View Dependent Claims (15, 16, 17, 18)
-
- 19. A method of transmitting traceback data from a packet forwarding node in a packet data communications network, said method comprising transmitting said traceback data periodically in accordance with a selected probability, wherein said selected probability is variable.
Specification