Real-time association of a policy-based firewall with a dynamic DNS hostname
First Claim
1. A computer-implemented method for associating a firewall policy with a dynamic domain name system (DNS) hostname, the method comprising:
- associating, by a policy configuration portal in an external network, a first hostname with a first network address associated with a device in an internal network;
setting, by the policy configuration portal, a first firewall policy configuration associated with the first hostname to include the first network address;
receiving, by the policy configuration portal, a first address update message that associates the first hostname with a second network address, wherein the second address is associated with the device in the internal network;
in response to receiving the first address update message, associating, by the policy configuration portal, the second network address with the first hostname; and
modifying the first firewall policy configuration to include the second network address instead of the first network address.
1 Assignment
0 Petitions
Accused Products
Abstract
Various embodiments of the invention disclosed herein provide techniques for associating a firewall policy with a dynamic domain name system (DNS) hostname. A policy configuration portal associates a first hostname with a first network address. The policy configuration portal sets firewall policy configuration associated with the first hostname to include the first network address. The policy configuration portal receives a first message that associates a DNS hostname with a second network address. The policy configuration portal, in response to receiving the first message, associates the second network address with the first hostname. The policy configuration portal modifies a firewall policy configuration associated with the first hostname to include the second network address. At least one advantage of the disclosed techniques is that a firewall policy can be implemented for a residential home or small business that employs dynamic IP addressing.
-
Citations
20 Claims
-
1. A computer-implemented method for associating a firewall policy with a dynamic domain name system (DNS) hostname, the method comprising:
-
associating, by a policy configuration portal in an external network, a first hostname with a first network address associated with a device in an internal network; setting, by the policy configuration portal, a first firewall policy configuration associated with the first hostname to include the first network address; receiving, by the policy configuration portal, a first address update message that associates the first hostname with a second network address, wherein the second address is associated with the device in the internal network; in response to receiving the first address update message, associating, by the policy configuration portal, the second network address with the first hostname; and modifying the first firewall policy configuration to include the second network address instead of the first network address. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. One or more non-transitory computer-readable storage media including instructions that, when executed by one or more processors, cause the one or more processors to associate a firewall policy with a dynamic domain name system (DNS) hostname, by performing the steps of:
-
associating, by a policy configuration portal in an external network, a first hostname with a first network address associated with a device in an internal network; setting, by the policy configuration portal, a first firewall policy configuration associated with the first hostname to include the first network address; receiving, by the policy configuration portal, a first address update message that associates the first hostname with a second network address, wherein the second address is associated with the device in the internal network; in response to receiving the first address update message, associating, by the policy configuration portal, the second network address with the first hostname; and modifying the first firewall policy configuration to include the second network address instead of the first network address. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computing device in an external network, comprising:
-
a memory that includes a policy configuration application; and a processor that is coupled to the memory and, when executing the policy configuration application, is configured to; associate a first hostname with a first network address associated with a device in an internal network; set a first firewall policy configuration associated with the first hostname to include the first network address; receive a first address update message that associates the first hostname with a second network address, wherein the second address is associated with the device in the internal network; in response to receiving the first address update message, associate the second network address with the first hostname; and modify the first firewall policy configuration to include the second network address instead of the first network address. - View Dependent Claims (20)
-
Specification