摘要 |
PURPOSE: A high-performance harmful site blocking system based on a network and a method thereof are provided to prevent a packet bottleneck phenomenon or a packet loss when a packet is delivered to a software-based engine by preprocessing and delivering the packet in a hardware-based engine. CONSTITUTION: A hardware-based blocking engine(120) selects a valid HTTP request packet from internet packets to extract URL(Uniform Resource Locator). The hardware-based blocking engine performs hash processing to the URL to generate a URL hash value. If the URL hash value belongs to a URL hash value list of a harmful site, the hardware-based blocking engine adds determination information indicating a blocking target to the valid HTTP request packet. [Reference numerals] (110) 1Gb or 10Gb ethernet controller(PHY/MAC); (121) First packet processing unit; (122) Second storage unit; (123) First storage unit; (130) PCI-e bridge; (210) Packet driver; (221) Second packet processing unit; (222) Blocking unit; (223) Malignant code management unit; (231) Log DB; (232) Ordinary/harmful site DB; (233) Malignant code DB; (AA) Application level; (BB) Kernel level; (CC) PCl-e interface; (DD) Host board; (EE) Packet processing board
|