(1) There are a lot of network protocol spoofing in the local area network, which will lead to your host being deceived by false information and unable to find a real device or respond to a request. For example: ARP spoofing, which is familiar to everyone.
(2) There are a lot of protocol and traffic attacks in the network, and network channels appear, which makes the network card or switch unable to transmit or exchange data. So your computer host can't access the server. For example, network protocol attacks such as DDOS attack and SYN flood attack.
Traditional solution: (1), ARP binding, which can alleviate the problem to some extent.
Note: At present, there are seven forms of network attack or deception using arp protocol, especially the second generation ARP will clear your binding. Therefore, ARP binding is a temporary solution (the effect is not necessarily).
(2), there is a rude way that is to redo the system, so that this protocol attack program can be removed.
Note: It is time-consuming and laborious, and the problem can definitely be solved at that time. You will contact through various channels and be sure that the same problem will appear again in the future.
The solution that I came into contact with can completely solve the problem that the network server can't access is: using the patrol immune network security solution to install "terminal immune driver" on each computer network card in the network, and the terminal MAC is taken from the physical network card instead of the system, which effectively prevents MAC cloning and counterfeiting; The terminal driver realizes two-way control, not only to resist external threats to the machine, but more importantly to suppress attacks from the machine. In this way, network protocol spoofing and over-attack are directly intercepted on the network card, and you can access normally.
Speaking of which, I'd like to make a brief introduction to the security solution of road patrol immune network. In fact, there are a lot of network protocol attacks in many companies' networks, which have caused some applications (the network printer can't be connected, the internal server access is fast and slow, the voice phone is unclear, and even the computer is like an old cow) to fail to work normally. For these people, including me, I thought it was caused by system virus or external network attack. It was only after communicating with professionals that it became clear. Simply put, 80% of many network problems are caused by internal network problems (network protocol attacks). The traditional solutions (firewall, intrusion detection system and antivirus) are mainly passive prevention of external network, system Trojan virus and file virus, and there is no effective solution to network protocol attacks. The patrol immune network solution is not a single product, but a set of complete components composed of software and hardware, intranet security protocols and security policies. It consists of access module, operation center, terminal immune driver, intranet security protocol and security strategy. It can solve the attack problem from the perspective of intranet, cope with the current trend of complexity and diversity of network attacks and more attacks from intranet, and solve the network threat more effectively. Through this scheme, our network can become strong and self-defense and management.