Network gateway system having rules for exchanging packet, network gateway method, and network gateway device therefor
First Claim
1. A network gateway system having a network gateway device that interconnects networks, said network gateway system comprising:
- an administration center that holds and creates a gateway rule for controlling a packet,wherein said network gateway device holds the gateway rule;
wherein when receiving a packet, if a gateway rule corresponding to the received packet exists, said network gateway device handles the received packet according to the gateway rule;
wherein if there is no gateway rule corresponding to the received packet, said network gateway device transfers the received packet to the administration center, and then receives a gateway rule corresponding to the packet from the administration center to perform update;
wherein in the network gateway device, an effective time during which the gateway rule is held is determined, and thereby a gateway rule whose effective time has expired is deleted, andwherein said network gateway device comprises a gateway-rule storing table for holding the gateway rules; and
wherein when receiving the gateway rule from the administration center, if no space area in the gateway-rule storing table exists, a gateway-rule entry with the shortest remaining effective time is first deleted from among the gateway rules stored in the gateway-rule storing table.
1 Assignment
0 Petitions
Accused Products
Abstract
Handling a packet according to a gateway rule in a network gateway device ensures security. Centrally controlling the gateway rule in an administration center eliminates the need for individual user'"'"'s consciousness of operation such as a firewall, which makes a network gateway system easy to use. Also, under certain conditions, the packet is handled according to a gateway rule in the network gateway device to reduce a network load. The administration center that holds and creates a gateway rule is provided. The network gateway device holds the gateway rule. When receiving a packet, if a gateway rule corresponding to the packet exists, the received packet is handled according to the gateway rule. If no gateway rule corresponding to the packet exists, the packet is transferred to the administration center, and then the corresponding gateway rule is received from the administration center so that update is performed.
-
Citations
12 Claims
-
1. A network gateway system having a network gateway device that interconnects networks, said network gateway system comprising:
-
an administration center that holds and creates a gateway rule for controlling a packet, wherein said network gateway device holds the gateway rule; wherein when receiving a packet, if a gateway rule corresponding to the received packet exists, said network gateway device handles the received packet according to the gateway rule; wherein if there is no gateway rule corresponding to the received packet, said network gateway device transfers the received packet to the administration center, and then receives a gateway rule corresponding to the packet from the administration center to perform update; wherein in the network gateway device, an effective time during which the gateway rule is held is determined, and thereby a gateway rule whose effective time has expired is deleted, and wherein said network gateway device comprises a gateway-rule storing table for holding the gateway rules; and wherein when receiving the gateway rule from the administration center, if no space area in the gateway-rule storing table exists, a gateway-rule entry with the shortest remaining effective time is first deleted from among the gateway rules stored in the gateway-rule storing table. - View Dependent Claims (2)
-
-
3. A network gateway system having a network gateway device that interconnects networks, said network gateway system comprising:
-
an administration center that holds and creates a gateway rule for controlling a packet, wherein said network gateway device holds the gateway rule; wherein when receiving a packet, if a gateway rule corresponding to the received packet exists, said network gateway device handles the received packet according to the gateway rule; wherein if no gateway rule corresponding to the received packet exists, an inquiry about a gateway rule corresponding to the received packet is sent to the administration center, and the gateway rule corresponding to the packet is received from the administration center so that update is performed, and according to the received gateway rule, the received packet is controlled; wherein in the network gateway device, an effective time during which the gateway rule is held is determined, and thereby a gateway rule whose effective time has expired is deleted; wherein said network gateway device comprises a gateway-rule storing table for holding the gateway rules; and wherein when receiving the gateway rule from the administration center, if no space area in the gateway-rule storing table exists, a gateway-rule entry with the shortest remaining effective time is first deleted from among the gateway rules stored in the gateway-rule storing table. - View Dependent Claims (4)
-
-
5. A network gateway method of a network gateway system having a network gateway device that interconnects networks, wherein said network gateway system comprises an administration center that holds and creates a gateway rule for controlling a packet, said network gateway device executing the steps of:
-
holding the gateway rules, and when receiving a packet, if a gateway rule corresponding to the received packet exists, handling the received packet according to the gateway rule; if no gateway rule corresponding to the received packet exists, transferring the received packet to the administration center; receiving a gateway rule corresponding to the packet from the administration center to perform update; in the network gateway device, determining an effective time during which the gateway rule is held, and deleting a gateway rule whose effective time has expired, wherein said network gateway device comprises a gateway-rule storing table for holding the gateway rules; and wherein said network gateway device further executes the step of; when receiving the gateway rule from the administration center, if no space area in the gateway-rule storing table exists, first deleting a gateway-rule entry with the shortest remaining effective time from among the gateway rules stored in the gateway-rule storing table. - View Dependent Claims (6)
-
-
7. A network gateway method of a network gateway system having a network gateway device that interconnects networks, wherein said network gateway system comprises an administration center that holds and creates a gateway rule for controlling a packet, said network gateway device executing the steps of:
-
holding the gateway rule, and when receiving a packet, if a gateway rule corresponding to the received packet exists, handling the received packet according to the gateway rule; if no gateway rule corresponding to the received packet exists, sending an inquiry about a gateway rule corresponding to the received packet to the administration center; and receiving the gateway rule corresponding to the packet from the administration center to perform update, and thereby controlling the received packet according to the received gateway rule; in the network gateway device, determining an effective time during which the gateway rule is held, and deleting a gateway rule whose effective time has expired, wherein said network gateway device comprises a gateway-rule storing table for holding the gateway rules; and wherein said network gateway device further executes the step of; when receiving the gateway rule from the administration center, if no space area in the gateway-rule storing table exists, first deleting a gateway-rule entry with the shortest remaining effective time from among the gateway rules stored in the gateway-rule storing table. - View Dependent Claims (8)
-
-
9. A computer readable medium including instructions to be executed in a network gateway device that interconnects networks, wherein a network gateway system comprises said network gateway device and an administration center that holds and creates a gateway rule for controlling a packet, said instructions comprising steps for:
-
holding the gateway rules, and when receiving a packet, if a gateway rule corresponding to the received packet exists, handling the received packet according to the gateway rule; if no gateway rule corresponding to the received packet exists, transferring the received packet to the administration center; receiving a gateway rule corresponding to the packet from the administration center to perform update; in the network gateway device, determining an effective time during which the gateway rule is held, and deleting a gateway rule whose effective time has expired, wherein said network gateway device comprises a gateway-rule storing table for holding the gateway rules; and wherein said instructions further comprises; when receiving the gateway rule from the administration center, if no space area in the gateway-rule storing table exists, first deleting a gateway-rule entry with the shortest remaining effective time from among the gateway rules stored in the gateway-rule storing table. - View Dependent Claims (10)
-
-
11. A computer readable medium including instructions to be executed in a network gateway device that interconnects networks, wherein a network gateway system comprises said network gateway device and an administration center that holds and creates a gateway rule for controlling a packet, said instructions comprising steps for:
-
holding the gateway rule, and when receiving a packet, if a gateway rule corresponding to the received packet exists, handling the received packet according to the gateway rule; if no gateway rule corresponding to the received packet exists, sending an inquiry about a gateway rule corresponding to the received packet to the administration center; and receiving the gateway rule corresponding to the packet from the administration center to perform update, and thereby controlling the received packet according to the received gateway rule; in the network gateway device, determining an effective time during which the gateway rule is held, and deleting a gateway rule whose effective time has expired, wherein said network gateway device comprises a gateway-rule storing table for holding the gateway rules; and wherein said instructions further comprises; when receiving the gateway rule from the administration center, if no space area in the gateway-rule storing table exists, first deleting a gateway-rule entry with the shortest remaining effective time from among the gateway rules stored in the gateway-rule storing table. - View Dependent Claims (12)
-
Specification