Method and apparatus for monitoring multiple network segments in local area networks for compliance with wireless security policy
First Claim
1. Method for monitoring a plurality of network segments in a local area network within a selected geographic region for compliance with one or more wireless security policies, the method comprising:
- providing a selected geographic region comprising a local area network, the local area network comprising multiple network segments, one or more selected network segments of the multiple network segments to be monitored for compliance with one or more wireless security policies, each of the selected network segments comprising at least one wired portion;
providing a network monitoring device, the network monitoring device being coupled to a connection port of the local are network, the connection port being coupled to the wired portions of the selected network segments;
providing one or more sniffers, the sniffers being adapted to interact with a wireless medium and spatially disposed within and/or in a vicinity of the selected geographic region;
determining a connectivity status of at least one wireless access device to the local area network, the connectivity status being determined by correlating information associated with signals provided on the wired portions of the selected network segments by the network monitoring device and information associated with signals provided on the wireless medium by one or more of the sniffers;
processing at least information associated with the connectivity status of at least the one wireless access device; and
determining if the at least one wireless access device is in compliance with one or more of the wireless security policies for one or more of the selected network segments in the local area network.
3 Assignments
0 Petitions
Accused Products
Abstract
Method and system for monitoring a plurality of network segments in a local area network within a selected geographic region is provided. The monitoring is performed to check compliance with one or more wireless security policies. The method comprises providing a network monitoring device and coupling the network monitoring device to a connection port of the local are network. Moreover, the method includes providing one or more sniffers that are adapted to interact with a wireless medium. The sniffers are spatially disposed within and/or in a vicinity of the selected geographic region. The method includes determining a connectivity status of at least one wireless access device to the local area network.
78 Citations
41 Claims
-
1. Method for monitoring a plurality of network segments in a local area network within a selected geographic region for compliance with one or more wireless security policies, the method comprising:
-
providing a selected geographic region comprising a local area network, the local area network comprising multiple network segments, one or more selected network segments of the multiple network segments to be monitored for compliance with one or more wireless security policies, each of the selected network segments comprising at least one wired portion;
providing a network monitoring device, the network monitoring device being coupled to a connection port of the local are network, the connection port being coupled to the wired portions of the selected network segments;
providing one or more sniffers, the sniffers being adapted to interact with a wireless medium and spatially disposed within and/or in a vicinity of the selected geographic region;
determining a connectivity status of at least one wireless access device to the local area network, the connectivity status being determined by correlating information associated with signals provided on the wired portions of the selected network segments by the network monitoring device and information associated with signals provided on the wireless medium by one or more of the sniffers;
processing at least information associated with the connectivity status of at least the one wireless access device; and
determining if the at least one wireless access device is in compliance with one or more of the wireless security policies for one or more of the selected network segments in the local area network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A network monitoring process module for monitoring a plurality of network segments in a local area network within a selected geographical region, the network monitoring process module being directed to at least determining connectivity status of wireless access devices to the network segments, the network monitoring process module comprising one or more computer readable memories, the one or more computer readable memories comprising:
-
one or more codes directed to generating one or more marker packets for a selected plurality of network segments in a local area network; and
one or more codes directed to transferring the one or more marker packets to wired portion of the selected network segments. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26)
-
-
27. A network monitoring process module for monitoring a plurality of network segments in a local area network within a selected geographic region, the network monitoring process module being directed to at least determining connectivity status of wireless access devices to the network segments, the network monitoring process module comprising one or more computer readable memories, the one or more computer readable memories comprising:
-
one or more codes directed to receiving one or more packets from wired portion of a selected plurality of network segments in a local area network; and
one or more codes directed to processing information associated with the one or more packets to identify one or more selected format in the one or more packets. - View Dependent Claims (28, 29, 30, 31, 32, 33, 34)
-
-
35. A network monitoring process module for monitoring a plurality of network segments in a local area network within a selected geographical region, the network monitoring process module being directed to at least determining connectivity status of wireless access devices to the network segments, the network monitoring process module comprising one or more computer readable memories, the one or more computer readable memories comprising:
-
one or more codes directed to receiving one or more packets from wired portion of a selected plurality of network segments in a local area network; and
one or more codes directed to processing information associated with the one or more packets to derive identity information associated with at least a subset of computer systems coupled to the selected network segments. - View Dependent Claims (36, 37, 38, 39, 40, 41)
-
Specification