METHODS AND APPARATUS TO PROVIDE A DISTRIBUTED FIREWALL IN A NETWORK
First Claim
1. A method, comprising:
- identifying, at a control plane, a network traffic rule to implement in a network;
determining, at the control plane, a distributed firewall for a first firewall in the network to enforce the network traffic rule;
instructing, using the control plane, a first software-defined networking node to instantiate the first firewall of the distributed firewall;
configuring a second software-defined networking node to route network traffic through the first firewall; and
instructing the first software-defined networking node to enforce the network traffic rule.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and apparatus to provide a distributed firewall in a network are disclosed. An example method includes identifying, at a control plane, a network traffic rule to implement in a network; determining, at the control plane, a distributed firewall for a first firewall in the network to enforce the network traffic rule; instructing, using the control plane, a first software-defined networking node to instantiate the first firewall of the distributed firewall; configuring a second software-defined networking node to route network traffic through the first firewall; and instructing the first software-defined networking node to enforce the network traffic rule.
-
Citations
20 Claims
-
1. A method, comprising:
-
identifying, at a control plane, a network traffic rule to implement in a network; determining, at the control plane, a distributed firewall for a first firewall in the network to enforce the network traffic rule; instructing, using the control plane, a first software-defined networking node to instantiate the first firewall of the distributed firewall; configuring a second software-defined networking node to route network traffic through the first firewall; and instructing the first software-defined networking node to enforce the network traffic rule. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A software-defined networking node, comprising:
-
a processor; and a memory comprising computer readable instructions which, when executed, cause the processor to perform operations, the operations comprising; identifying a network traffic rule to implement in a network; determining a distributed firewall for a first firewall in the network to enforce the network traffic rule; instructing a first software-defined networking node to instantiate the first firewall of the distributed firewall; configuring a second software-defined networking node to route network traffic through the first firewall; and instructing the first software-defined networking node to enforce the network traffic rule. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer readable storage medium comprising computer readable instructions which, when executed, cause a processor of a software-defined networking node to perform operations comprising:
-
identifying a network traffic rule to implement in a network; determining a distributed firewall for a first firewall in the network to enforce the network traffic rule; instructing a first software-defined networking node to instantiate the first firewall of the distributed firewall; configuring a second software-defined networking node to route network traffic through the first firewall; and instructing the first software-defined networking node to enforce the network traffic rule. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification