SASE based method of preventing exhausting attack in wireless mesh networks

Assignee

• Cisco Technology, Inc. · US

Inventors

• Lele Zhang · Shanghai, CN
• Li Zhao · Shanghai, CN
• Chuanwei Li · Shanghai, CN
• Feiliang Wang · Shanghai, CN

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04W12/009
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

The present disclosure provides a hierarchical method of identifying unauthorized network traffic in a network by applying, at one of a first plurality of nodes of a network, a first level of network traffic analysis to identify received network traffic as one of authorized or suspicious network traffic, the one of the first plurality of nodes having a first path for traffic routing and a second path to one of a second plurality of nodes of the network, the second path being used for forwarding the suspicious network traffic to the one of the second plurality of nodes; tagging the received network traffic as the suspicious network traffic; and sending the suspicious network traffic to the one of the second plurality of nodes over the second path, the second network node applying a second level of network analysis to determine if the received network traffic is authorized, unauthorized or remains suspicious.