Network traffic flow control system
First Claim
1. A network traffic flow control system installed between two or more broadcasting based networks is connected to one or more intrusion cut off systems that determine whether or not to cut off transmission/receiving of the packets between said networks in accordance with predetermined rules, and is connected to one or more intrusion detecting systems that monitors flow of the packets between said networks in accordance with predetermined rules, comprising:
- an internal interface for transmitting/receiving the packets while connected to the internal network;
an external interface for transmitting/receiving the packets while connected to the external network;
a rule inquiring and filtering module which determines whether or not to cut off the packets received from said internal interface or said external interface determines in accordance with predetermined rules, while it is connected to said internal interface, said external interface, and said intrusion cut off system; and
a mirroring interface, which mirrors selectively the packets received from said internal interface or said external interface to said intrusion detecting system in accordance with predetermined rules, while it is connected to said internal interface, said external interface, and said intrusion detecting system, wherein said predetermined rules in said rule inquiring and filtering module and in said mirroring interface control flow of the packets on the data link layer.
0 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to a network traffic flow control system, more specifically to a system which separates networks physically and controls the flow of packets moving on the computer networks at the data link level without changing the constitution and environment of current network.
-
Citations
12 Claims
-
1. A network traffic flow control system installed between two or more broadcasting based networks is connected to one or more intrusion cut off systems that determine whether or not to cut off transmission/receiving of the packets between said networks in accordance with predetermined rules, and is connected to one or more intrusion detecting systems that monitors flow of the packets between said networks in accordance with predetermined rules, comprising:
-
an internal interface for transmitting/receiving the packets while connected to the internal network;
an external interface for transmitting/receiving the packets while connected to the external network;
a rule inquiring and filtering module which determines whether or not to cut off the packets received from said internal interface or said external interface determines in accordance with predetermined rules, while it is connected to said internal interface, said external interface, and said intrusion cut off system; and
a mirroring interface, which mirrors selectively the packets received from said internal interface or said external interface to said intrusion detecting system in accordance with predetermined rules, while it is connected to said internal interface, said external interface, and said intrusion detecting system, wherein said predetermined rules in said rule inquiring and filtering module and in said mirroring interface control flow of the packets on the data link layer. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
- 10. A network traffic flow control system which is installed between two or more networks based on broadcasting through the switching device is characterized by being connected to one or more intrusion detecting systems that monitor flow of the packets in accordance with predetermined rules, and by performing multiple mirroring to said one or more intrusion detecting systems through a plurality of network interfaces.
Specification