Firewall and method for configuring same

US 20050010822A1
Filed: 04/29/2004
Published: 01/13/2005
Est. Priority Date: 07/09/2003
Status: Abandoned Application

First Claim

Patent Images

1. A firewall system, comprising:

a user interface for a user to enter a configuration command;

a shared library providing information packet filtering and management application programming interfaces;

a configuration management module for finding out which service is responsible for the configuration command, and for calling a corresponding application programming interface; and

a kernel component for performing packet filtering, network address translation and port address translation.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A firewall includes a user interface (21) for inputting a configuration command; a shared library (25) providing information packet filtering and management application programming interfaces; a configuration management module (23) for finding out which service is responsible for the configuration command, and a kernel component (27) for performing packet filtering, network address translation and port address translation. The firewall further comprises an access database (251) for storing access lists and access rules, a NAT database (252) for storing rules on network address translation, an interface database (253) for storing information on interfaces of the firewall of the present invention, and a pool database (254) for storing NAT pool lists. A related method for configuring the firewall is also disclosed.

40 Citations

View as Search Results

14 Claims

1. A firewall system, comprising:
- a user interface for a user to enter a configuration command;
  
  a shared library providing information packet filtering and management application programming interfaces;
  
  a configuration management module for finding out which service is responsible for the configuration command, and for calling a corresponding application programming interface; and
  
  a kernel component for performing packet filtering, network address translation and port address translation.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The firewall system as recited in claim 1, wherein the user interface is a command line interface.
  - 3. The firewall system as recited in claim 1, wherein the user interface is a web based graphic user interface.
  - 4. The firewall system as recited in claim 1, further comprising an access database for storing access lists and access rules.
  - 5. The firewall system as recited in claim 1, further comprising a network address translation database for storing rules on network address translation.
  - 6. The firewall system as recited in claim 1, further comprising an interface database for storing information on interfaces of the firewall.
  - 7. The firewall system as recited in claim 1, further comprising a pool database for storing network address translation pool lists.

8. A method for configuring a firewall, the method comprising the steps of:
- entering a configuration command via a user interface;
  
  transmitting the configuration command to a shared library, the shared library providing information packet filtering and management application programming interfaces;
  
  determining whether the configuration command is legal;
  
  processing the configuration command if the configuration command is legal; and
  
  executing the configuration command for configuring the firewall.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The method as recited in claim 8, wherein the user interface is a command line interface.
  - 10. The method as recited in claim 8, wherein the user interface is a web based graphic user interface.
  - 11. The method as recited in claim 8, further comprising the step of:
    - submitting the configuration command to a configuration management module, for the configuration management module to find out which service is responsible for the configuration command.
  - 12. The method as recited in claim 8, wherein the step of determining whether the configuration command is legal further comprises the step of:
    - returning error information if the configuration command is not legal.
  - 13. The method as recited in claim 8, wherein the step of processing the configuration command further comprises the step of:
    - parsing the configuration command to a predetermined rule.
  - 14. The method as recited in claim 8, further comprising the steps of:
    - saving configuration results; and
      
      returning the configuration results to the user interface.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hon Hai Precision Industry Co., Ltd.
Original Assignee
Hon Hai Precision Industry Co., Ltd.
Inventors
Zhou, Xinyu, He, Tang

Application Number

US10/837,482
Publication Number

US 20050010822A1
Time in Patent Office

Days
Field of Search
US Class Current

726/4
CPC Class Codes

H04L 63/0263 Rule management

H04L 63/20 for managing network securi...

Firewall and method for configuring same

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

40 Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

Firewall and method for configuring same

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

40 Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links