Network traffic screening method and system

• Main Authors: GANG ZHANHUI, HUANG DAN, ZHANG XIAOFAN, YANG JIANING, WANG LIJUN, FAN JIAXUN, HAO ZHIQIANG, CHEN KEYU, JU YUAN, YANG AN, GUO XIAN, YANG JIE
• Format: Patent
• Language: Chinese; English
• Published: 11.11.2022
• Subjects: ELECTRIC COMMUNICATION TECHNIQUE; ELECTRICITY; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION

The invention provides a network traffic screening method and system, and the method comprises the steps: obtaining and analyzing traffic needing to be analyzed on a network, and obtaining a DNS protocol; analyzing the DNS protocol to obtain a requested domain name, a domain name server IP address and a returned IP address list corresponding to the requested domain name; if the domain name requested by query is in the domain name white list, querying the IP address in the returned IP address list in the IP address white list; if the IP address is not in the IP address white list, updating the IP address to the current IP address white list; if the queried IP address of the domain name server is not in the domain name server list, initiating domain name query to the domain name server by using the domain name white list, and updating the current IP address white list by using the obtained IP address; and screening the traffic needing to be analyzed by using the updated IP address white list. The filtering effi