| CPC H04L 63/0876 (2013.01) | 20 Claims |
|
1. A packet processing method implemented by a protection device, the packet processing method comprising:
configuring the protection device to protect a server;
receiving from a terminal device a first access request packet comprising a packet that is communicated based on Transmission Control Protocol/Internet Protocol (TCP/IP) and that is destined for the server;
extracting a first fingerprint feature from a transport-layer packet header and/or a network-layer packet header of the first access request packet, wherein the first fingerprint feature corresponds to a first operating system (OS) type of the terminal device;
recognizing the first fingerprint feature based on a fingerprint feature database to determine whether to allow the first access request packet to access the server, wherein the fingerprint feature database comprises a second fingerprint feature corresponding to a second OS type of the terminal device that is allowed to access the server;
determining whether the fingerprint feature database comprises the first fingerprint feature;
allowing, when the fingerprint feature database comprises the first fingerprint feature, the first access request packet to access the server;
disallowing, when the fingerprint feature database does not comprise the first fingerprint feature, the first access request packet to access the server;
allowing, when the first access request packet is allowed to access the server, the first access request packet to pass through; and
blocking, when the first access request packet is not allowed to access the server, the first access request packet.
|