| CPC H04L 63/0236 (2013.01) [H04L 12/66 (2013.01); H04L 45/72 (2013.01); H04L 45/748 (2013.01); H04L 61/5007 (2022.05); H04L 63/0263 (2013.01); H04L 63/1416 (2013.01); H04L 63/1466 (2013.01); H04L 69/325 (2013.01); H04L 45/04 (2013.01)] | 19 Claims |
|
1. A method for blocking spoofed traffic within communications networks, the method comprising:
obtaining, at a computing system, routing information for an autonomous system of a communications network, the routing information identifying Internet Protocol (IP) addresses associated with the autonomous system;
in response to receiving the routing information, generating, at the computing system, a prefix list based on the routing information, the prefix list including one or more prefixes encompassing the IP addresses identified by the routing information; and
automatically transmitting, from the computing system to a network device of the communications network in response to generating the prefix list, instructions configured to cause the network device to update a filter function of the network device based on the prefix list such that the network device permits network traffic that originates from IP addresses within the one or more prefixes of the prefix list,
wherein the network device is a router and the filter function is an interface filter implemented between the autonomous system of the communications network and an autonomous system of a second network that blocks network traffic that originates from IP addresses not within the one or more prefixes of the prefix list from the autonomous system of the second network.
|