CN1496642A - 具有对于接入规则的索引的防火墙 - Google Patents
具有对于接入规则的索引的防火墙 Download PDFInfo
- Publication number
- CN1496642A CN1496642A CNA028063309A CN02806330A CN1496642A CN 1496642 A CN1496642 A CN 1496642A CN A028063309 A CNA028063309 A CN A028063309A CN 02806330 A CN02806330 A CN 02806330A CN 1496642 A CN1496642 A CN 1496642A
- Authority
- CN
- China
- Prior art keywords
- grouping
- value
- control device
- rule
- communication system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0263—Rule management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M7/00—Arrangements for interconnection between switching centres
- H04M7/006—Networks other than PSTN/ISDN providing telephone service, e.g. Voice over Internet Protocol (VoIP), including next generation networks with a packet-switched transport layer
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M7/00—Arrangements for interconnection between switching centres
- H04M7/006—Networks other than PSTN/ISDN providing telephone service, e.g. Voice over Internet Protocol (VoIP), including next generation networks with a packet-switched transport layer
- H04M7/0078—Security; Fraud detection; Fraud prevention
Abstract
Description
Claims (29)
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
GB0100713A GB2371186A (en) | 2001-01-11 | 2001-01-11 | Checking packets |
GB0100713.7 | 2001-01-11 |
Publications (1)
Publication Number | Publication Date |
---|---|
CN1496642A true CN1496642A (zh) | 2004-05-12 |
Family
ID=9906643
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNA028063309A Pending CN1496642A (zh) | 2001-01-11 | 2002-01-07 | 具有对于接入规则的索引的防火墙 |
Country Status (8)
Country | Link |
---|---|
US (1) | US20040100972A1 (zh) |
EP (1) | EP1352503A1 (zh) |
JP (1) | JP2004522335A (zh) |
CN (1) | CN1496642A (zh) |
AU (1) | AU2002219332B2 (zh) |
CA (1) | CA2434600A1 (zh) |
GB (1) | GB2371186A (zh) |
WO (1) | WO2002056562A1 (zh) |
Families Citing this family (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7249379B2 (en) * | 2002-02-01 | 2007-07-24 | Systems Advisory Group Enterprises, Inc. | Method and apparatus for implementing process-based security in a computer system |
US7062680B2 (en) * | 2002-11-18 | 2006-06-13 | Texas Instruments Incorporated | Expert system for protocols analysis |
US8112482B1 (en) * | 2004-04-14 | 2012-02-07 | Sprint Spectrum L.P. | System and method for securing access to electronic mail |
US8042170B2 (en) | 2004-07-15 | 2011-10-18 | Qualcomm Incorporated | Bearer control of encrypted data flows in packet data communications |
US8265060B2 (en) | 2004-07-15 | 2012-09-11 | Qualcomm, Incorporated | Packet data filtering |
CN1997010B (zh) * | 2006-06-28 | 2010-08-18 | 华为技术有限公司 | 一种包过滤的实现方法 |
US8099774B2 (en) * | 2006-10-30 | 2012-01-17 | Microsoft Corporation | Dynamic updating of firewall parameters |
IL181427A0 (en) * | 2007-02-19 | 2007-07-04 | Deutsche Telekom Ag | Novel dynamic firewall for nsp networks |
DE102007053691A1 (de) * | 2007-11-10 | 2009-05-14 | Manroland Ag | Kommunikationsnetzwerk einer Druckmaschinensteuerung |
US8102783B1 (en) | 2009-02-04 | 2012-01-24 | Juniper Networks, Inc. | Dynamic monitoring of network traffic |
JP5158021B2 (ja) * | 2009-05-27 | 2013-03-06 | 富士通株式会社 | トンネル通信装置及び方法 |
US9237128B2 (en) * | 2013-03-15 | 2016-01-12 | International Business Machines Corporation | Firewall packet filtering |
WO2014077614A1 (en) * | 2012-11-19 | 2014-05-22 | Samsung Sds Co., Ltd. | Anti-malware system, method of processing data in the same, and computing device |
US9444914B2 (en) | 2013-09-16 | 2016-09-13 | Annapurna Labs Ltd. | Configurable parser and a method for parsing information units |
US11425095B2 (en) | 2016-05-01 | 2022-08-23 | Nicira, Inc. | Fast ordering of firewall sections and rules |
US11310202B2 (en) * | 2019-03-13 | 2022-04-19 | Vmware, Inc. | Sharing of firewall rules among multiple workloads in a hypervisor |
Family Cites Families (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO1997040610A2 (en) * | 1996-04-24 | 1997-10-30 | Northern Telecom Limited | Internet protocol filter |
US6147976A (en) * | 1996-06-24 | 2000-11-14 | Cabletron Systems, Inc. | Fast network layer packet filter |
US6510151B1 (en) * | 1996-09-19 | 2003-01-21 | Enterasys Networks, Inc. | Packet filtering in connection-based switching networks |
US6233686B1 (en) * | 1997-01-17 | 2001-05-15 | At & T Corp. | System and method for providing peer level access control on a network |
US5951651A (en) * | 1997-07-23 | 1999-09-14 | Lucent Technologies Inc. | Packet filter system using BITMAP vector of filter rules for routing packet through network |
US7143438B1 (en) * | 1997-09-12 | 2006-11-28 | Lucent Technologies Inc. | Methods and apparatus for a computer network firewall with multiple domain support |
SE513828C2 (sv) * | 1998-07-02 | 2000-11-13 | Effnet Group Ab | Brandväggsapparat och metod för att kontrollera nätverksdatapakettrafik mellan interna och externa nätverk |
US6341130B1 (en) * | 1998-02-09 | 2002-01-22 | Lucent Technologies, Inc. | Packet classification method and apparatus employing two fields |
US6400707B1 (en) * | 1998-08-27 | 2002-06-04 | Bell Atlantic Network Services, Inc. | Real time firewall security |
US6798777B1 (en) * | 2000-04-17 | 2004-09-28 | Juniper Networks, Inc. | Filtering and route lookup in a switching device |
US7039053B1 (en) * | 2001-02-28 | 2006-05-02 | 3Com Corporation | Packet filter policy verification system |
US6816455B2 (en) * | 2001-05-09 | 2004-11-09 | Telecom Italia S.P.A. | Dynamic packet filter utilizing session tracking |
US7107609B2 (en) * | 2001-07-20 | 2006-09-12 | Hewlett-Packard Development Company, L.P. | Stateful packet forwarding in a firewall cluster |
-
2001
- 2001-01-11 GB GB0100713A patent/GB2371186A/en not_active Withdrawn
-
2002
- 2002-01-07 CN CNA028063309A patent/CN1496642A/zh active Pending
- 2002-01-07 CA CA002434600A patent/CA2434600A1/en not_active Abandoned
- 2002-01-07 US US10/250,958 patent/US20040100972A1/en not_active Abandoned
- 2002-01-07 WO PCT/GB2002/000040 patent/WO2002056562A1/en active Application Filing
- 2002-01-07 JP JP2002557096A patent/JP2004522335A/ja active Pending
- 2002-01-07 EP EP02729429A patent/EP1352503A1/en not_active Withdrawn
- 2002-01-07 AU AU2002219332A patent/AU2002219332B2/en not_active Ceased
Also Published As
Publication number | Publication date |
---|---|
US20040100972A1 (en) | 2004-05-27 |
GB0100713D0 (en) | 2001-02-21 |
WO2002056562A1 (en) | 2002-07-18 |
EP1352503A1 (en) | 2003-10-15 |
CA2434600A1 (en) | 2002-07-18 |
JP2004522335A (ja) | 2004-07-22 |
GB2371186A (en) | 2002-07-17 |
AU2002219332B2 (en) | 2006-12-21 |
WO2002056562A9 (en) | 2003-11-13 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP1430682B1 (en) | Protecting a network from unauthorized access | |
US7380011B2 (en) | Methods and systems for per-session network address translation (NAT) learning and firewall filtering in media gateway | |
US7782902B2 (en) | Apparatus and method for mapping overlapping internet protocol addresses in layer two tunneling protocols | |
US7346044B1 (en) | Network address translation for voice over internet protocol router | |
CN1496642A (zh) | 具有对于接入规则的索引的防火墙 | |
US8332925B2 (en) | System and method for distributed multi-processing security gateway | |
US7920548B2 (en) | Intelligent switching for secure and reliable voice-over-IP PBX service | |
US7367052B1 (en) | Access list key compression | |
EP2090024B1 (en) | Intercepting voice over ip communications and other data communications | |
EP1472849B1 (en) | Method and module for securing packet-based communications by address hopping | |
US7417978B1 (en) | Port reduction for voice over internet protocol router | |
AU2002219332A1 (en) | Firewall with index to access rule | |
US6922786B1 (en) | Real-time media communications over firewalls using a control protocol | |
US20030046403A1 (en) | Method for routing data streams of a communication connection between users of a connectionless packet data network, and a packet data network, a control device and a program module therefore | |
US20040098512A1 (en) | NAPT gateway system with method capable of extending the number of connections | |
CN1889578A (zh) | 通信控制方法、装置及系统 | |
US7920564B1 (en) | Differential services support for control traffic from privileged nodes in IP networks | |
JP2009021717A (ja) | ネットワーク機器、ネットワーク及びそれらに用いるipnapt機能の実装方法 | |
US20060227781A1 (en) | Processing communication terminal addresses by integration and/or extraction of communication interface characteristics in the address | |
US9118555B1 (en) | Secure unauthenticated virtual local area network |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1063904 Country of ref document: HK |
|
ASS | Succession or assignment of patent right |
Owner name: L.M. ERICSSON CO., LTD. Free format text: FORMER OWNER: M(DGP1) CO., LTD. Effective date: 20070302 Owner name: M(DGP1) CO., LTD. Free format text: FORMER OWNER: MARCONI UK INTELLECTUAL PROP Effective date: 20070302 |
|
C41 | Transfer of patent application or patent right or utility model | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20070302 Address after: Stockholm, Sweden Applicant after: ERICSSON AB Address before: Coventry, United Kingdom Applicant before: M (DGP1) Ltd. Effective date of registration: 20070302 Address after: Coventry, United Kingdom Applicant after: M (DGP1) Ltd. Address before: Coventry, United Kingdom Applicant before: MARCONI UK INTELLECTUAL PROPERTY Ltd. |
|
C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
WD01 | Invention patent application deemed withdrawn after publication | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: WD Ref document number: 1063904 Country of ref document: HK |