Network connection blocker, method, and computer readable memory for monitoring connections in a computer network and blocking the unwanted connections
First Claim
1. A network connection blocker for monitoring connections between host computers in a computer network and blocking unwanted ones of the monitored connections, the host computers transmitting monitored connection packets over the computer network that are addressed to each other and, in accordance with a connection oriented transport layer protocol, establish, provide network services with, and close the monitored connections, the network connection blocker comprising:
- a central processing unit;
a network interface configured to receive the transmitted monitored connection packets over the computer network without blocking their reception by the host computers; and
a blocking module running on the central processing unit and configured to (a) process the received monitored connection packets to detect the unwanted connections, and (b) generate blocking connection packets that are addressed to those of the host computers that have the detected unwanted connections therebetween and, in accordance with the connection oriented transport layer protocol, cause the detected unwanted connections to be closed by the host computers that have the unwanted connections therebetween;
the network interface being further configured to transmit the generated blocking connection packets over the computer network to the host computers that have the detected unwanted connections therebetween.
5 Assignments
0 Petitions
Accused Products
Abstract
A network connection blocker for monitoring connections between host computers in a network and blocking the unwanted connections. The host computers transmit connection packets between each other in accordance with a network protocol suite when seeking to establish, providing network services with, and close the connections. The network protocol suite includes a connection oriented transport layer protocol. The network connection blocker comprises a network interface that receives the connection packets transmitted between the host computers. It also comprises a blocking module that processes the received connection packets to detect the unwanted connections. The blocking module then generates connection packets in accordance with the network protocol suite to cause the detected unwanted connections to be closed by the corresponding host computers between which are the unwanted connections. The network interface then transmits the generated connection packets to these host computers.
-
Citations
15 Claims
-
1. A network connection blocker for monitoring connections between host computers in a computer network and blocking unwanted ones of the monitored connections, the host computers transmitting monitored connection packets over the computer network that are addressed to each other and, in accordance with a connection oriented transport layer protocol, establish, provide network services with, and close the monitored connections, the network connection blocker comprising:
-
a central processing unit; a network interface configured to receive the transmitted monitored connection packets over the computer network without blocking their reception by the host computers; and a blocking module running on the central processing unit and configured to (a) process the received monitored connection packets to detect the unwanted connections, and (b) generate blocking connection packets that are addressed to those of the host computers that have the detected unwanted connections therebetween and, in accordance with the connection oriented transport layer protocol, cause the detected unwanted connections to be closed by the host computers that have the unwanted connections therebetween; the network interface being further configured to transmit the generated blocking connection packets over the computer network to the host computers that have the detected unwanted connections therebetween. - View Dependent Claims (2, 3, 8, 9, 10, 11)
-
-
4. A method of monitoring connections between host computers in a computer network and blocking unwanted ones of the monitored connections, the host computers transmitting monitored connection packets over the computer network that are addressed to each other and, in accordance with a connection oriented transport layer protocol, establish, provide network services with, and close the monitored connections, the method comprising the steps of:
-
receiving the transmitted monitored connection packets over the computer network without blocking their reception by the host computers; processing the received monitored connection packets to detect the unwanted connections; generating blocking connection packets that are addressed to those of the host computers that have the detected unwanted connections therebetween and, in accordance with the connection oriented transport layer protocol, cause the detected unwanted connections to be closed by the host computers that have the unwanted connections therebetween; and transmitting the generated blocking connection packets over the computer network to the host computers that have the detected unwanted connections therebetween. - View Dependent Claims (5, 6, 12, 13)
-
-
7. A computer readable memory for directing a computer in a computer network to monitor connections between host computers in the computer network and block unwanted ones of the connections, the host computers transmitting monitored connection packets over the computer network that are addressed to each other and, in accordance with a connection oriented transport layer protocol, establish, provide network services with, and close the monitored connections, the computer being configured to receive the monitored connection packets over the computer network without blocking their reception by the host computers and to transmit generated blocking connection packets over the computer network to those of the host computers that have the unwanted connections therebetween, the memory comprising:
a blocking module configured to (a) run on the computer, (b) process the received monitored connection packets to detect the unwanted connections, and (c) generate the generated blocking connection packets so that they are addressed to those of the host computers that have the detected unwanted connections therebetween and, in accordance with the connection oriented transport layer protocol, cause the detected unwanted connections to be closed by the host computers that have the unwanted connections therebetween. - View Dependent Claims (14, 15)
Specification