Method and apparatus for dynamic packet filter assignment
First Claim
1. A method for filtering IP packets in a computer network that includes one or more client systems, the method comprising the steps, performed by one or more computer systems, of:
- detecting an event associated with one of the client systems;
selecting one or more filtering rules based on the type of event detected; and
establishing a packet filter in the computer network, the packet filter using the selected rules to selectively discard packets originating at the client system associated with the detected event.
3 Assignments
0 Petitions
Accused Products
Abstract
The present invention includes a method and apparatus for filtering IP packets based on events within a computer network. More specifically, the present invention includes a services management system, or SMS. The SMS manages network connections between a series of client systems and a router. An access network control server (ANCS) manages the configuration of the router. The SMS monitors activities or events that occur within the network. In response to these events, the SMS dynamically downloads filtering profiles to the ANCS. The ANCS then uses the downloaded filtering profiles to reconfigure the router. The router then uses the filtering rules to selectively discard or forward IP packets received from the client systems.
299 Citations
25 Claims
-
1. A method for filtering IP packets in a computer network that includes one or more client systems, the method comprising the steps, performed by one or more computer systems, of:
-
detecting an event associated with one of the client systems; selecting one or more filtering rules based on the type of event detected; and establishing a packet filter in the computer network, the packet filter using the selected rules to selectively discard packets originating at the client system associated with the detected event. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer program product comprising:
a computer usable medium having computer readable code embodied therein for filtering IP packets in a computer network that includes one or more client systems, the computer program product comprising; first computer readable program code devices configured to cause a computer system to detect an event associated with one of the client systems; second computer readable program code devices configured to cause a computer system to provide one or more filtering rules based on the type of event detected; and third computer readable program code devices configured to cause a computer system to establish a packet filter in the computer network, the packet filter using the selected rules to selectively discard packets originating at the client system associated with the detected event. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
15. An apparatus for filtering IP packets in a computer network that includes one or more client systems, the apparatus comprising:
-
a first portion configured to cause a computer system to detect an event associated with one of the client systems; a second portion configured to cause a computer system to provide one or more filtering rules based on the type of event detected; and a third portion configured to cause a computer system to establish a packet filter in the computer network, the packet filter using the selected rules to selectively discard packets originating at the client system associated with the detected event. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
-
Specification