System and method for behavior-based firewall modeling
First Claim
1. A method for controlling data flow through a firewall comprising:
- establishing a firewall model for the firewall, wherein the firewall model defines nodes representing sources and destinations for data packets and connections between the nodes;
associating node-specific rules with each node that govern whether a packet sent to that node and from that node is blocked; and
blocking packets to and from a particular node based on the node-specific rules associated with that node.
10 Assignments
0 Petitions
Accused Products
Abstract
One embodiment of the present invention creates a model of the traffic through a network firewall and uses that model to dynamically manipulate the network firewall based on human intervention or based on the automatic invocations of processes and protocols that implement firewall policy. Another embodiment of the invention creates a model of the physical and virtual network interfaces that a firewall system controls and presents abstracted entities representing both the interface abstractions and the processing nodes (network segments or network client devices) to and through which network traffic flows.
-
Citations
5 Claims
-
1. A method for controlling data flow through a firewall comprising:
-
establishing a firewall model for the firewall, wherein the firewall model defines nodes representing sources and destinations for data packets and connections between the nodes;
associating node-specific rules with each node that govern whether a packet sent to that node and from that node is blocked; and
blocking packets to and from a particular node based on the node-specific rules associated with that node. - View Dependent Claims (2, 3, 4, 5)
-
Specification