HYBRID FIREWALL FOR DATA CENTER SECURITY
First Claim
1. A method for managing firewall requirements related to a virtualized application by a cloud management entity having a processing engine, comprising:
- determining, by the processing engine, that a virtualized application, associated with a first plurality of application virtual machines and a second plurality of firewall virtual machines, requires an increased number of application virtual machines in the first plurality;
determining, by the processing engine, that an increased number of firewall virtual machines is required by the increased number of application virtual machines;
instantiating an application virtual machine; and
instantiating a firewall virtual machine.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method for managing a hybrid firewall solution, employing both hardware and software firewall components, for a cloud computing data center is provided. A virtual application is hosted by a first plurality of application virtual machines and a second plurality of firewall virtual machines provides firewalling services for traffic associated with the virtual application. A cloud management entity determines that the virtual application requires an increased number of application virtual machines. A security profile for the virtual application is verified to determine if an increased number of firewall virtual machines is required by the increased number of application virtual machines. The cloud management entity can instantiate additional application virtual machines and firewall virtual machines as required.
-
Citations
20 Claims
-
1. A method for managing firewall requirements related to a virtualized application by a cloud management entity having a processing engine, comprising:
-
determining, by the processing engine, that a virtualized application, associated with a first plurality of application virtual machines and a second plurality of firewall virtual machines, requires an increased number of application virtual machines in the first plurality; determining, by the processing engine, that an increased number of firewall virtual machines is required by the increased number of application virtual machines; instantiating an application virtual machine; and instantiating a firewall virtual machine. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A cloud management entity, comprising:
-
a memory for storing instructions; and a processing engine, configured to execute the instructions, for determining that a virtualized application, associated with a first plurality of application virtual machines and a second plurality of firewall virtual machines, requires an increased number of application virtual machines in the first plurality;
for determining that an increased number of firewall virtual machines is required by the increased number of application virtual machines;
for instantiating an application virtual machine; and
for instantiating a firewall virtual machine. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification
-
- Resources
-
Current AssigneeNovaCloud Licensing LLC
-
Original AssigneeTelefonaktiebolaget LM Ericsson
-
InventorsZhu, Zhongwen, Pourzandi, Makan
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current709/226
-
CPC Class CodesG06F 15/177 Initialisation or configura...G06F 2009/45587 Isolation or security of vi...G06F 21/53 by executing in a restricte...G06F 9/45558 Hypervisor-specific managem...G06F 9/5077 Logical partitioning of res...G06F 9/5083 Techniques for rebalancing ...H04L 63/0227 Filtering policies mail mes...
