×

Host-based firewall for distributed computer systems

  • US 10,142,290 B1
  • Filed: 03/30/2016
  • Issued: 11/27/2018
  • Est. Priority Date: 03/30/2016
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method, comprising:

  • executing a host-based firewall loaded into memory of a virtual machine instance operated by a customer of a plurality of customers of a computing resource service provider, where the virtual machine instance is a computing resource that is a member of a set of computing resources provided to the plurality of customers by the computing resource service provider;

    obtaining network traffic information from the host-based firewall, the network traffic information indicating a set of connection attempts between the virtual machine instance and at least one other computer system and a particular application of one or more applications executed by the virtual machine instance associated with a particular connection attempt of the set of connection attempts;

    prompting the customer for decisions to allow or deny the set of connection attempts by at least providing the customer with a notification of the set of connection attempts;

    obtaining, from the customer, a first set of decisions to allow or deny the set of connection attempts;

    obtaining, from a different customer, a second set of decisions to allow or deny another set of connection attempts between a virtual machine instance of the different customer and at least one other computer system;

    generating a rule set by the host-based firewall based at least in part on the first set of decisions and the second set of decisions; and

    enforcing, by the host-based firewall, the generated rule set.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×