×

Inline intrusion detection using a single physical port

  • US 7,555,774 B2
  • Filed: 08/02/2004
  • Issued: 06/30/2009
  • Est. Priority Date: 08/02/2004
  • Status: Active Grant
First Claim
Patent Images

1. A method for inline intrusion detection, comprising:

  • receiving a packet at a physical interface of an intrusion detection system, wherein the packet is tagged with a first VLAN identifier associated with an external network;

    buffering the packet at the physical interface;

    communicating a copy of the packet to a processor;

    analyzing the copy of the packet at the processor to determine whether the packet includes an attack signature;

    communicating a reply message from the processor to the interface indicating whether the packet includes an attack signature; and

    if the packet does not contain an attack signature;

    re-tagging the buffered copy of the packet with a second VLAN identifier associated with a protected network; and

    communicating the re-tagged packet to the protected network.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×