Method and apparatus for firewall with multiple addresses
First Claim
Patent Images
1. A method of processing packets at a firewall in a packet-switched network comprising:
- receiving an outbound packet from a process group network address; and
authorizing subsequent inbound packet traffic destined for the process group network address.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention takes advantage of the capability of assigning multiple addresses to a single host to improve the processing performed by a firewall in a packet-switched network. The host utilizes a plurality of addresses to refer to groups of related tasks on the host. When the firewall receives an outbound packet having one of these source addresses, it authorizes further inbound packets addressed to the particular source address.
15 Citations
18 Claims
-
1. A method of processing packets at a firewall in a packet-switched network comprising:
-
receiving an outbound packet from a process group network address; and
authorizing subsequent inbound packet traffic destined for the process group network address. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method of processing packets at a host which are destined for a firewall in a packet-switched network comprising the steps of:
-
assigning a process group network address to a first outbound packet commencing a process;
transmitting the outbound packet to a firewall on its path to its destination in a packet-switched network;
receiving inbound packets addressed to the process group network address; and
receiving and associating inbound packets addressed to the process group network address with the process. - View Dependent Claims (7, 8, 9)
-
-
10. A computer readable medium containing executable program instructions for performing a method on a firewall connected to a packet-switched network comprising the steps of:
-
receiving an outbound packet from a process group network address; and
authorizing subsequent inbound packet traffic destined for the process group network address. - View Dependent Claims (11, 12, 13, 14)
-
-
15. A computer readable medium containing executable program instructions for performing a method on a host connected to a packet-switched network comprising the steps of:
-
assigning a process group network address to a first outbound packet commencing a process;
transmitting the outbound packet to a firewall on its path to its destination in a packet-switched network;
receiving inbound packets addressed to the process group network address; and
receiving and associating inbound packets addressed to the process group network address with the process. - View Dependent Claims (16, 17, 18)
-
Specification