×

Method and system for network security

  • US 7,562,389 B1
  • Filed: 07/30/2004
  • Issued: 07/14/2009
  • Est. Priority Date: 07/30/2004
  • Status: Active Grant
First Claim
Patent Images

1. A method, comprising:

  • receiving a packet at a physical interface of a network security gateway, wherein the packet is tagged with a first virtual local area network (VLAN) identifier associated with an external network;

    communicating a copy of the packet to a first processor;

    analyzing the copy of the packet at the first processor to determine whether the packet violates a security condition;

    communicating a reply message from the first processor to the interface indicating whether the packet violates a security condition; and

    if the packet does not violate a security condition;

    at the physical interface, re-tagging the packet with a second VLAN identifier associated with a protected network; and

    communicating the re-tagged packet to the protected network.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×