System and method for performing storage operations through a firewall
First Claim
1. A method for performing storage operations through a firewall in a networked computer system, the method comprising:
- identifying, based on configuration data, whether each of a set of network elements is within a trusted network or not within the trusted network, wherein traffic between elements within the trusted network and elements not within the trusted network must pass through the firewall; and
prior to performing a storage operation through the firewall, allocating a specific set of ports, in accordance with at least one security parameter, for use in performing the storage operation.
6 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides systems and methods for performing storage operations through a firewall. Methods are provided that include, in a networked computer system, identifying, based on configuration data, whether each of a set of network elements is within a trusted network or not within the trusted network. Traffic between elements within the trusted network and elements not within the trusted network must pass through a firewall. The methods also include, prior to performing a storage operation through the firewall, allocating a specific set of ports, in accordance with at least one security parameter, for use in performing the storage operation. Methods are also provided which include monitoring traffic through the specific ports, and, if traffic is determined to be inactive through a first port of the specific ports, sending a packet through the first port.
-
Citations
23 Claims
-
1. A method for performing storage operations through a firewall in a networked computer system, the method comprising:
-
identifying, based on configuration data, whether each of a set of network elements is within a trusted network or not within the trusted network, wherein traffic between elements within the trusted network and elements not within the trusted network must pass through the firewall; and
prior to performing a storage operation through the firewall, allocating a specific set of ports, in accordance with at least one security parameter, for use in performing the storage operation. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method for performing storage operations through a firewall in a networked computer system, the method comprising:
-
identifying, based on configuration data, a first set of network elements which are within a trusted network and a second set of network elements which are not within the trusted network, wherein traffic between elements within the trusted network and elements not within the trusted network must pass through the firewall;
prior to performing a storage operation through the firewall, allocating a specific set of ports, according to at least one security parameter, for use in performing the storage operation;
during the storage operation, monitoring traffic through each of the specific ports; and
if, through the monitoring, traffic is determined to be inactive through a first port of the specific ports for a specified time period, sending a packet through the first port. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. A system for performing storage operations through a firewall in a networked computer system, the system comprising:
-
a firewall;
a plurality of network elements, comprising;
one or more client computers; and
one or more storage devices;
a storage manager; and
one or more media agents which conduct data between the one or more client computers and the one or more storage devices under the direction of the storage manager;
wherein the storage manager;
identifies, based on configuration data, a first set of network elements which are within a trusted network and a second set of network elements which are not within the trusted network, wherein traffic between elements of the trusted network and elements not within the trusted network must pass through the firewall; and
prior to performing a storage operation through the firewall, allocates a specific set of ports, according to at least one security parameter, for use in performing the storage operation; and
wherein, during a storage operation, the firewall opens ports in accordance with the allocation. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
-
Specification