Forged source addresses attack construst packets that consist a series of forged source addresses. It will lead to Denial of Service by visiting the equipment or hosts that containing the destination addresses frequently. Moreover, it is difficult or impossible to trace back to the source. The Unicast RPF feature helps to mitigate problems that are caused by the introduction of malformed or forged source addresses. This article discribes a solution which can collect information about equipments' configuration automatically, check equipments' configurations and then analyzes whether the equipments config the Unicast RPF feature.%虚假源地址欺骗攻击为入侵者构造出一系列带有伪造源地址的报文,频繁访问目的地址所在设备或者主机,造成其拒绝服务.URPF(Unicast Reverse Path Forwarding,单播逆向路径转发)可以防止基于源地址欺骗的网络攻击行为.本文描述一种自动化采集设备配置信息,对设备进行配置检查,进而智能分析和判断设备是否开启URPF功能的方法.
展开▼