Method, system, and computer program product for restricting access to a network using a network communications device
First Claim
Patent Images
1. A method in a data processing system, said method comprising the steps of:
- providing a network communications device that includes multiple ports for providing access to a network;
receiving a specification of one of said multiple ports;
receiving a specification of a time period; and
blocking access to said network through said one of said multiple ports during said time period, wherein blocking access to said network further comprises;
receiving, within said network communications device, a first network packet;
responsive to a determination that said one of said multiple ports through which said first network packet was received is said specified one of said multiple ports and that a current time is within said time period, discarding said network packet;
storing a media access control address of a computer system that transmitted said first network packet and storing an identification of said one of said multiple ports through which said first network packet was received within said network communications device;
receiving a second packet;
identifying a second one of said multiple ports through which said second packet was received;
determining whether said second one of said multiple ports is said specified one of said multiple ports;
determining a time period associated with said second one of said multiple ports;
determining whether a current time is within said determined time period;
determining a media access control address of a computer system that transmitted said second packet;
responsive to a determination that either said second one of said multiple ports is not said specified one of said multiple ports or that said current time is not within said determined time period, determining whether said media access control address of said computer system that transmitted said second packet is stored in said network communications device; and
responsive to a determination that said media access control address of said computer system that transmitted said second packet is stored in said network communications device, discarding said second packet.
3 Assignments
0 Petitions
Accused Products
Abstract
A system, method, and computer program product are disclosed for restricting access to a network using a network communications device. The network communications device includes multiple ports for providing access to a data processing system to the network. A specification of one of the multiple ports is received. A specification of a time period is also received. Access to the network is then blocked through the specified port during the specified time period.
-
Citations
30 Claims
-
1. A method in a data processing system, said method comprising the steps of:
-
providing a network communications device that includes multiple ports for providing access to a network; receiving a specification of one of said multiple ports; receiving a specification of a time period; and blocking access to said network through said one of said multiple ports during said time period, wherein blocking access to said network further comprises; receiving, within said network communications device, a first network packet; responsive to a determination that said one of said multiple ports through which said first network packet was received is said specified one of said multiple ports and that a current time is within said time period, discarding said network packet; storing a media access control address of a computer system that transmitted said first network packet and storing an identification of said one of said multiple ports through which said first network packet was received within said network communications device; receiving a second packet; identifying a second one of said multiple ports through which said second packet was received; determining whether said second one of said multiple ports is said specified one of said multiple ports; determining a time period associated with said second one of said multiple ports; determining whether a current time is within said determined time period; determining a media access control address of a computer system that transmitted said second packet; responsive to a determination that either said second one of said multiple ports is not said specified one of said multiple ports or that said current time is not within said determined time period, determining whether said media access control address of said computer system that transmitted said second packet is stored in said network communications device; and responsive to a determination that said media access control address of said computer system that transmitted said second packet is stored in said network communications device, discarding said second packet. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A data processing system comprising:
-
a network communications device that includes multiple ports for providing access to a network; said network communications device including a CPU executing code for receiving a specification of one of said multiple ports; said CPU executing code for receiving a specification of a time period; and said network communications device for blocking access to said network through said one of said multiple ports during said time period, wherein blocking access to said network further comprises; said network communications device for receiving a first network packet; said network communications device discarding said network packet in response to a determination that said one of said multiple ports through which said first network packet was received is said specified one of said multiple ports and that a current time is within said time period said network communications device for storing a media access control address of a computer system that transmitted said first network packet and an identification of said one of said multiple ports through which said first network packet was received within said network communications device; said network communications device for receiving a second packet; said CPU executing code for identifying a second one of said multiple ports through which said second packet was received; said CPU executing code for determining whether said second one of said multiple ports is said specified one of said multiple ports; said CPU executing code for determining a time period associated with said second one of said multiple ports; said CPU executing code for determining whether a current time is within said determined time period; said CPU executing code for determining a media access control address of a computer system that transmitted said second packet; said CPU executing code for determining whether said media access control address of said computer system that transmitted said second packet is stored in said network communications device in response to a determination that either said second one of said multiple ports is not said specified one of said multiple ports or that said current time is not within said determined time period; and said CPU executing code for discarding said second packet in response to a determination that said media access control address of said computer system that transmitted said second packet is stored in said network communications device. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A computer readable medium encoded with a computer program, which, when executed in a data processing system, causes said data processing system to perform the following steps:
-
providing a network communications device that includes multiple ports for providing access to a network; receiving a specification of one of said multiple ports; receiving a specification of a time period; and blocking access to said network through said one of said multiple ports during said time period, wherein blocking access to said network further comprises; receiving a first network packet; discarding said network packet in response to a determination that said one of said multiple ports through which said first network packet was received is said specified one of said multiple ports and that a current time is within said time period; storing a media access control address of a computer system that transmitted said first network packet and an identification of said one of said multiple ports through which said first network packet was received within said network communications device; receiving a second packet; identifying a second one of said multiple ports through which said second packet was received; determining whether said second one of said multiple ports is said specified one of said multiple ports; determining a time period associated with said second one of said multiple ports; determining whether a current time is within said determined time; determining a media access control address of a computer system that transmitted said second packet; determining whether said media access control address of said computer system that transmitted said second packet is stored in said network communications device in response to a determination that either said second one of said multiple ports is not said specified one of said multiple ports or that said current time is not within said determined time period; and discarding said second packet in response to a determination that said media access control address of said computer system that transmitted said second packet is stored in said network communications device. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30)
-
Specification