摘要 |
PROBLEM TO BE SOLVED: To provide a packet filtering method capable of dealing with continuous illegal access like a service rejection attack. SOLUTION: The packet filter device (10) is equipped with: a rule storage section (14) which stores rule information including conditions for specifying a plurality of specified packets received from a packet transmission path (100), a packet information extraction section (12) which extracts packet information for identifying the packets received from the transmission line from the packets; a statistical processing part (13) which finds statistics of the packet information each time the packet information is extracted by the packet information extraction section; and a decision section (15) which decides whether the packets received from the transmission line need to be discarded according to the statistics found by the statistical processing part and the rule information. COPYRIGHT: (C)2006,JPO&NCIPI
|