Subscriber line accommodation device and packet filtering method
First Claim
Patent Images
1. A subscriber line accommodation device comprising:
- a subscriber line termination section that terminates a plurality of subscriber lines individually;
an address information allocating section that, when a communication terminal of any of the plurality of subscriber lines terminated by said subscriber line termination section has made a request for acquisition of own-station address information that is given to a packet when performing packet communication, allocates own-station address information to said communication terminal by limiting a usable time;
a filter condition registering section that registers a pair of the own-station address information allocated by said address information allocating section and an Identification number of the subscriber line having made said request for acquisition of the own-station address information; and
a packet communication allowing section that allows packet communication only for a packet In which a pair of own-station address information and an identification number agree to the pair thereof registered in said filter condition registering section.
1 Assignment
0 Petitions
Accused Products
Abstract
In response to a request for acquisition of an IP address from a user terminal, a DHCP server 171B in a subscriber line accommodation device 102 allocates an IP address, registers a set of the allocated IP address, an MAC address of the user terminal, and a line number thereof in a DHCP management table 201, and sets it in an input filter section 184 as a packet passing condition. Among packets sent from user terminals, the input filter section 184 sends only those packets satisfying registered conditions toward a bridge forwarder 135, while discards those packets not satisfying the conditions. Even when access is attempted by illegally using an IP address, a packet concerned is discarded unless a line number or an MAC address agrees.
46 Citations
13 Claims
-
1. A subscriber line accommodation device comprising:
-
a subscriber line termination section that terminates a plurality of subscriber lines individually;
an address information allocating section that, when a communication terminal of any of the plurality of subscriber lines terminated by said subscriber line termination section has made a request for acquisition of own-station address information that is given to a packet when performing packet communication, allocates own-station address information to said communication terminal by limiting a usable time;
a filter condition registering section that registers a pair of the own-station address information allocated by said address information allocating section and an Identification number of the subscriber line having made said request for acquisition of the own-station address information; and
a packet communication allowing section that allows packet communication only for a packet In which a pair of own-station address information and an identification number agree to the pair thereof registered in said filter condition registering section. - View Dependent Claims (3, 5, 7, 8, 9, 10)
-
-
2. A subscriber line accommodation device comprising:
-
a subscriber line termination section that terminates a plurality of subscriber lines individually;
an IP address allocating section that, when a communication terminal of any of the plurality of subscriber lines terminated by said subscriber line termination section has made a request for acquisition of an IP address that is given to a packet when performing packet communication, allocates an IP address to said communication terminal by limiting a usable time;
a filter condition registering section that registers a set of the IP address allocated by said IP address allocating section, an identification number of the subscriber line having made said request for acquisition of the IP address, and an MAC address as unique information of the communication terminal having made said request for acquisition of the IP address; and
a packet communication allowing section that allows packet communication only for a packet in which a set of an IP address, an identification number, and an MAC address agree to the set thereof registered in said filter condition registering section. - View Dependent Claims (4, 6, 11)
-
-
12. A packet filtering method comprising:
-
an address information allocating step of, when a communication terminal of any of a plurality of subscriber lines has made a request for acquisition of own-station address information that is given to a packet when performing packet communication, allocating own-station address information to said communication terminal by limiting a usable time;
a filter condition registering step of, when said address information allocating step has allocated the own-station address information, registering a pair of said own-station address information and an identification number of the subscriber line having made said request for acquisition of the own-station address information, along with said usable time; and
a packet communication allowing step of, when a packet has arrived, allowing packet communication only for such a packet that agrees to the pair of the own-station address information within said usable time and the identification number of the subscriber line having made said request for acquisition of the own-station address information.
-
-
13. A packet filtering method comprising:
-
an IP address allocating step of, when a communication terminal of any of a plurality of subscriber lines has made a request for acquisition of an IP address that is given to a packet when performing packet communication, allocating an IP address to said communication terminal by limiting a usable time;
a filter condition registering step of, when said IP address allocating step has allocated the IP address, registering a set of said IP address, an identification number of the subscriber line having made said request for acquisition of the IP address, and an MAC address as unique information of the communication terminal having made said request for acquisition of the IP address, along with said usable time; and
a packet communication allowing step of, when a packet has arrived, allowing packet communication only for such a packet that agrees to the set of the IP address within said usable time, the identification number, and the MAC address.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeNEC Corporation
-
Original AssigneeNEC Corporation
-
InventorsSekine, Minoru, Sato, So
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current709/245
-
CPC Class CodesH04L 12/2876 Handling of subscriber poli...H04L 61/103 across network layers, e.g....H04L 61/5014 using dynamic host configur...H04L 63/0236 Filtering by address, proto...
