Methodology for configuring network firewall
First Claim
Patent Images
1. A method for configuring filter parameters for a network firewall, comprising:
- receiving first user input corresponding to a global set of firewall configuration parameters;
monitoring network traffic traversing a network segment, the network traffic characterized by a stream of data packets;
extracting, from each of said data packets, associated information corresponding to a core set of data parameters;
storing the associated information as a respective log entry in a database, thereby to generate a database of log entries;
establishing a set of proposed filter parameters from said log entries and the global set of firewall configuration parameters;
generating, from said set of proposed filter parameters, a set of final filter parameters based on second user input.
5 Assignments
0 Petitions
Accused Products
Abstract
Provided is a method for configuring filter parameters for a network firewall whereby information corresponding to a core set of data parameters is extracted from each of a plurality of data packets traversing a network segment. The extracted information is stored as a respective log entry within a database. A set of proposed filter parameters is established from the log entries and a final set of filter parameters is generated from the proposed filter parameters.
57 Citations
17 Claims
-
1. A method for configuring filter parameters for a network firewall, comprising:
-
receiving first user input corresponding to a global set of firewall configuration parameters;
monitoring network traffic traversing a network segment, the network traffic characterized by a stream of data packets;
extracting, from each of said data packets, associated information corresponding to a core set of data parameters;
storing the associated information as a respective log entry in a database, thereby to generate a database of log entries;
establishing a set of proposed filter parameters from said log entries and the global set of firewall configuration parameters;
generating, from said set of proposed filter parameters, a set of final filter parameters based on second user input. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for configuring filter parameters for a network firewall, comprising:
-
(a) while online;
(i) extracting, from each of a plurality of data packets traversing a network segment, associated information corresponding to a core set of data parameters;
(b) storing the associated information within a database as a respective log entry; and
(c) while offline;
(i) establishing, from log entries with said database, a set of proposed filter parameters based upon first user input; and
(ii) generating, from said set of proposed filter parameters, a set of final filter parameters based on second user input. - View Dependent Claims (12, 13, 14, 15, 17)
-
Specification