Methods, devices, systems and computer program products for providing secure communications between managed devices in firewall protected areas and networks segregated therefrom
First Claim
1. A method for providing secure communications of between managed devices in a firewall protected area defined by a firewall and a network management station (NMS) in a network segregated from the firewall protected area, comprising the following carried out by a de-militarized zone (DMZ) controller in the firewall protected area:
- obtaining from at least one managed device in the firewall protected area management information associated with the at least one managed device; and
transmitting the obtained management information from the DMZ controller through the firewall to a gateway module associated with the NMS, communications between the DMZ controller and the gateway module being enabled by a single firewall rule.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, devices, systems and computer program products for providing secure communications between managed devices in a firewall protected area defined by a firewall and a network management station (NMS) in a network segregated from the firewall protected area are provided. Management information associated with managed devices in the firewall protected area is obtained from the managed devices by a de-militarized zone (DMZ) controller. The obtained management information is transmitted from the DMZ controller through the firewall to a gateway module associated with the NMS. Communications between the DMZ controller and the gateway module are enabled by a single firewall rule.
36 Citations
49 Claims
-
1. A method for providing secure communications of between managed devices in a firewall protected area defined by a firewall and a network management station (NMS) in a network segregated from the firewall protected area, comprising the following carried out by a de-militarized zone (DMZ) controller in the firewall protected area:
-
obtaining from at least one managed device in the firewall protected area management information associated with the at least one managed device; and
transmitting the obtained management information from the DMZ controller through the firewall to a gateway module associated with the NMS, communications between the DMZ controller and the gateway module being enabled by a single firewall rule. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for providing secure communications between managed devices in a firewall protected area defined by a firewall and a network management station (NMS) in a network segregated from the firewall protected area, comprising:
-
receiving at a demilitarized zone (DMZ) controller in the firewall protected area, from least one managed device in the firewall protected area, management information associated with the at least one managed device; and
managing a flow of the received management information before transmitting the received management information from the DMZ controller through the firewall to a gateway module associated with the NMS. - View Dependent Claims (13)
-
- 14. A method of communicating simple network management protocol (SNMP) requests and responses through a firewall between a network management station (NMS) in a network and managed devices in a firewall protected area defined by the firewall associated with the network, comprising generating a SNMP request in the form of a protocol data unit (PDU) at the NMS, the SNMP request including a community string including a target community string, an identification of a de-militarized zone (DMZ) controller and a target hostname associated with one of the managed devices.
-
18. A method for providing secure communications between managed devices in a firewall protected area defined by a firewall and a network management station (NMS) in a network segregated from the firewall protected area, comprising the following carried out by a gateway module associated with the NMS:
receiving management information, from a DMZ controller through the firewall, the management information being associated with at least one managed device in the firewall protected area and obtained from the at least one managed device, communications between the DMZ controller and the gateway module being enabled by a single firewall rule. - View Dependent Claims (28)
-
19. A method of communicating simple network management protocol (SNMP) requests and responses through a firewall between a network management station (NMS) in a network and managed devices in a firewall protected area defined by the firewall associated with the network, comprising receiving an SNMP request at a DMZ controller in the form of a protocol data unit (PDU) from the NMS, the SNMP request including a community string including a target community string, an identification of a de-militarized zone (DMZ) controller and a target hostname associated with one of the managed devices.
-
20. A system for providing secure communications between managed devices in a firewall protected area defined by a firewall and a network management station (NMS) in a network segregated from the firewall protected area, comprising:
a de-militarized zone (DMZ) controller in the firewall protected area configured to obtain management information associated with at least one managed device in the firewall protected area and to transmit the obtained management information through the firewall to a gateway module associated with the network management station, communications between the DMZ controller and the gateway module being enabled by a single firewall rule. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27)
- 29. A de-militarized zone (DMZ) controller in a firewall protected area defined by a firewall for providing secure communications between managed devices in the firewall protected area and a network management station (NMS) in a network segregated from the firewall protected area, the DMZ controller being configured to receive from at least one managed device in the firewall protected area management information associated with the at least one managed device and to manage a flow of the received management information before transmitting the received management information from the DMZ controller through the firewall to a gateway module associated with the NMS.
- 31. A system for communicating simple network management protocol (SNMP) requests and responses through a firewall between a network management station (NMS) in a network and managed devices in a firewall protected area defined by the firewall and associated with the network, wherein the NMS is configured to generate a SNMP request in the form of a protocol data unit (PDU), the SNMP request including a community string including a target community string, an identification of a de-militarized zone (DMZ) controller and a target hostname associated with one of the managed devices.
-
35. A computer program product for providing secure communications between managed devices in a firewall protected area defined by a firewall and a network management station (NMS) in a network segregated from the firewall protected area, the computer program product comprising:
-
a computer readable medium having computer readable program code embodied therein, the computer readable program product comprising;
computer readable program code configured to obtain, from a de-militarized zone (DMZ) controller in the firewall protected area, management information from at least one managed device in the firewall protected area and associated with the at least one managed device; and
computer readable program code configured to transmit the obtained management information from the DMZ controller through the firewall to a gateway module associated with the NMS, communications between the DMZ controller and the gateway module being enabled by a single firewall rule. - View Dependent Claims (36, 37, 38, 39, 40, 41, 42, 43)
-
-
44. A computer program product for providing secure communications between managed devices in a firewall protected area defined by a firewall and a network management station (NMS) in a network segregated from the firewall protected area, the computer program product comprising:
-
a computer readable medium having computer readable program code embodied therein, the computer readable program product comprising;
computer readable program code configured to receive at a de-militarized zone (DMZ) controller in the firewall protected area, from least one managed device in the firewall protected area, management information associated with the at least one managed device; and
computer readable program code configured to manage a flow of the received management information before transmitting the received management information from the DMZ controller through the firewall to a gateway module associated with the NMS. - View Dependent Claims (45)
-
-
46. A computer program product for communicating simple network management protocol (SNMP) requests and responses through a firewall between a network management station (NMS) in a network and managed devices in a firewall protected area defined by the firewall and associated with the network, the computer program product comprising:
-
a computer readable medium having computer readable program code embodied therein, the computer readable program product comprising;
computer readable program code configured to generate a SNMP request in the form of a protocol data unit (PDU) at the NMS, the SNMP request including a community string including a target community string, an identification of a de-militarized zone (DMZ) controller and a target hostname associated with one of the managed devices. - View Dependent Claims (47, 48, 49)
-
Specification