×

Method and apparatus for ingress filtering using security group information

  • US 7,827,402 B2
  • Filed: 12/01/2004
  • Issued: 11/02/2010
  • Est. Priority Date: 12/01/2004
  • Status: Active Grant
First Claim
Patent Images

1. A method comprising:

  • receiving a packet at a network node of a network, after said packet has been received by an ingress node of said network, whereinsaid packet comprises access control information,said network comprises a plurality of nodes,said ingress node is the first node of said plurality of nodes to receive said packet, andsaid network node is a network node of said plurality of nodes other than said ingress node;

    performing access control processing on said packet at said network node, after said packet has been received at said network node,whereinsaid access control processing identifies said access control information of said packet,said access control information comprisessecurity group information, andan address of a destination node,said security group information identifies a security group,said destination node is a member of said security group, andsaid destination node is a destination of said packet; and

    sending another packet from said network node to said ingress node, in response to said access control processing, whereinsaid another packet comprises said access control information.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×