计算机工程 ›› 2012, Vol. 38 ›› Issue (5): 145-148.doi: 10.3969/j.issn.1000-3428.2012.05.044

• 安全技术 • 上一篇    下一篇

一种改进的Honeyd隧道路由方法

曾蛟龙,胡荣贵,黄海军   

  1. (解放军电子工程学院网络系,合肥 230037)
  • 收稿日期:2011-06-17 出版日期:2012-03-05 发布日期:2012-03-05
  • 作者简介:曾蛟龙(1984-),男,硕士研究生,主研方向:信息安全;胡荣贵,教授、博士;黄海军,讲师、博士

Improved Tunnel-routing Method for Honeyd

ZENG Jiao-long, HU Rong-gui, HUANG Hai-jun   

  1. (Department of Network, Electronic Engineering Institute of PLA, Hefei 230037, China)
  • Received:2011-06-17 Online:2012-03-05 Published:2012-03-05

摘要: 基于Honeyd的分布式蜜罐系统隧道路由存在乒乓效应。为此,提出一种改进的Honeyd隧道路由方法。研究通用路由封装(GRE)隧道通信的基本原理,分析乒乓效应产生的原因,并据此改进扩展IP协议、路由表和数据包处理流程。实验结果表明,通过该方法改进后的GRE隧道能保持原网络的拓扑结构,且对网络吞吐率和CPU占用率没有影响。

关键词: 通用路由封装, 隧道路由, 乒乓效应, 网络拓扑

Abstract: Aiming at the limitation on the old tunnel in system of distributed honeypot based on Honeyd, the ping-pong effect occurres. This paper proposes an improved tunnel-routing method of Honeyd. It studies the Generic Routing Encapsulation(GRE) communication principle of tunnel, and analyzes the causes of the table tennis effect. On the basis of it, the paper improves the expanding IP protocol, routing table and data packet processing flow. Experimental results show that using the method to improving the GRE tunnel can keep the original network topology, and has no influence on network throughput rate and CPU occupancy rate.

Key words: Generic Routing Encapsulation(GRE), tunnel-routing, ping-pong effect, network topology

中图分类号: