Network session wall passively listening to communication session, with use of access rules, stops further communication between network devices by emulating messages to the devices
First Claim
1. For use in a computer network facilitating communication sessions between network devices, a session wall comprising:
- (a) a network adapter for attaching the session wall to the network;
(b) data memory;
(c) a processor connected to said data memory and to said network adapter; and
(d) a communication session control system wherein data pertinent to the control of at least one of the communication sessions is stored in said memory, a portion of said at least one session is read by said processor such that said communication control system passively listens to said portion of said at least one session, said processor comparing said portion with a set of access rules stored in said memory, and, when said at least one session is not allowed according to said access rules, issuing a message to at least one of the network devices involved in said at least one session to stop further communication between the network devices.
7 Assignments
0 Petitions
Accused Products
Abstract
A session wall for a local area network is provided. This is a device connected to a local area network which listens passively to communications sent over the network. The device also sends data over the network which is interpreted by other devices connected to the network as if it were sent by another network device connected to the local network. The session wall stores access rules for the network devices which generate data communication messages over the local network. It reads a portion of each communication message it listens to and compares that data with the stored access rules to determine whether the message is permitted or not. If not, the session wall sends a message to both parties. In a message to the server it either notifies that the client wishes to close the current session, or it sends a specific message to the server that according to the protocol used causes the server to stop responding to additional client messages in that specific session. In a message to the client the session wall either emulates data from the server causing the client to misinterpret it so future responses from the server for that session will not be accepted properly, or it notifies the client that the server has dropped the connection, or it sends a pre-defined message to notify that the session was blocked.
-
Citations
24 Claims
-
1. For use in a computer network facilitating communication sessions between network devices, a session wall comprising:
-
(a) a network adapter for attaching the session wall to the network; (b) data memory; (c) a processor connected to said data memory and to said network adapter; and (d) a communication session control system wherein data pertinent to the control of at least one of the communication sessions is stored in said memory, a portion of said at least one session is read by said processor such that said communication control system passively listens to said portion of said at least one session, said processor comparing said portion with a set of access rules stored in said memory, and, when said at least one session is not allowed according to said access rules, issuing a message to at least one of the network devices involved in said at least one session to stop further communication between the network devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. For use in a computer network facilitating communication sessions between network devices, a method of controlling the communication sessions, the method comprising the steps of:
-
(a) providing network information; (b) providing access information; (c) passively listening to a portion of at least one of the communication sessions; (d) comparing said portion with said access information; and (e) when said at least one communication session is not allowed according to said access information, issuing a message to at least one of the network devices involved in said at least one session to stop further communication between the network devices. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
Specification