Dynamic updating of firewall parameters
First Claim
Patent Images
1. A method for dynamically updating a firewall parameter, the method comprising:
- receiving a policy rule comprising a reference to a predefined container that specifies a permissible value range of at least one firewall parameter allowable under the policy rule;
receiving a firewall parameter value; and
populating the predefined container with the firewall parameter value if the firewall parameter value is within the permissible value range.
2 Assignments
0 Petitions
Accused Products
Abstract
The dynamic updating of firewall parameters is described. One exemplary embodiment includes receiving a policy rule that includes a reference to a predefined container that specifies a permissible value range of at least one firewall parameter allowable under the policy rule, receiving a firewall parameter value, and populating the predefined container with the firewall parameter value if the firewall parameter value is within the permissible value range, thereby updating the policy rule.
-
Citations
20 Claims
-
1. A method for dynamically updating a firewall parameter, the method comprising:
-
receiving a policy rule comprising a reference to a predefined container that specifies a permissible value range of at least one firewall parameter allowable under the policy rule; receiving a firewall parameter value; and populating the predefined container with the firewall parameter value if the firewall parameter value is within the permissible value range. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 13)
-
-
11. A method for dynamically updating a policy rule of a firewall located between a program and a network, the method comprising:
-
sending, to a non-policy level interface on the firewall, a message-comprising a keyword defined for the program and a firewall parameter value resolved to the keyword; sending a message to a remote network device located across the firewall; and receiving a message from the remote network device according to a firewall rule implementing the firewall parameter value. - View Dependent Claims (12, 14)
-
-
15. A firewall for implementing security policy for controlling network traffic, the firewall comprising:
-
code executable to present a policy level interface at which the firewall can receive an input of a policy rule referencing a predefined container that specifies a permissible value range of at least one firewall parameter allowable under the policy rule; code executable to present a non-policy level interface at which the firewall service can receive a firewall parameter value from a program for populating the predefined container; code executable to populate the predefined container with the firewall parameter value if the firewall parameter value is within the permissible value range; and code executable to enforce the policy rule. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification