System and method for providing security in a network environment
First Claim
Patent Images
1. An apparatus for providing security in a network environment, comprising:
- a network element operable to;
receive a flow that propagates through an access gateway, the flow associated with an end user and propagating through a network, the flow communicating an accounting START indicator and an accounting STOP indicator, the accounting START indicator indicating that accounting has started, the accounting STOP indicator indicating that accounting has stopped;
glean internet protocol (IP) address information from the flow, the IP address information comprising an IP address;
determine from the accounting START indicator that the end user is being connected to the network;
remove an outdated flow for the IP address from a table and insert the flow in place of the outdated flow in the table in response to the determination from the accounting START indicator;
determine from the accounting STOP indicator that the end user is being disconnected from the network; and
remove the flow from the table in response to the determination from the accounting STOP indicator such that the IP address information in the access gateway and the network element is synchronized independent of a connection request or a connection response, wherein the access gateway is a general packet radio gateway service (GPRS) support node (GGSN) and the network element is a firewall.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for providing security in a network environment is provided that includes receiving a flow that propagates through an access gateway, the flow being initiated by an end user associated with the flow and propagating through a network. Internet protocol (IP) address information may be gleaned from the flow at a network element. The method further includes recognizing a selected one of the end user being connected to the network and the end user being disconnected from the network such that the IP address information in the access gateway and the network element is substantially synchronized.
-
Citations
21 Claims
-
1. An apparatus for providing security in a network environment, comprising:
a network element operable to; receive a flow that propagates through an access gateway, the flow associated with an end user and propagating through a network, the flow communicating an accounting START indicator and an accounting STOP indicator, the accounting START indicator indicating that accounting has started, the accounting STOP indicator indicating that accounting has stopped; glean internet protocol (IP) address information from the flow, the IP address information comprising an IP address; determine from the accounting START indicator that the end user is being connected to the network; remove an outdated flow for the IP address from a table and insert the flow in place of the outdated flow in the table in response to the determination from the accounting START indicator; determine from the accounting STOP indicator that the end user is being disconnected from the network; and remove the flow from the table in response to the determination from the accounting STOP indicator such that the IP address information in the access gateway and the network element is synchronized independent of a connection request or a connection response, wherein the access gateway is a general packet radio gateway service (GPRS) support node (GGSN) and the network element is a firewall. - View Dependent Claims (2, 3, 4, 5, 18)
-
6. A method for providing security in a network environment, comprising:
-
receiving a flow that propagates through an access gateway, the flow associated with an end user and propagating through a network, the flow communicating an accounting START indicator and an accounting STOP indicator, the accounting START indicator indicating that accounting has started, the accounting STOP indicator indicating that accounting has stopped; gleaning internet protocol (IP) address information from the flow at a network element, the IP address information comprising an IP address; determining from the accounting START indicator that the end user is being connected to the network; removing an outdated flow for the IP address from a table and inserting the flow in place of the outdated flow in the table in response to the determination from the accounting START indicator; determining from the accounting STOP indicator that the end user is being disconnected from the network; and removing the flow from the table in response to the determination from the accounting STOP indicator such that the IP address information in the access gateway and the network element is synchronized independent of a connection request or a connection response, wherein the access gateway is a general packet radio gateway service (GPRS) support node (GGSN) and the network element is a firewall. - View Dependent Claims (7, 8, 9, 19)
-
-
10. A system for providing security in a network environment, comprising:
-
means for receiving a flow that propagates through an access gateway, the flow associated with an end user and propagating through a network, the flow communicating an accounting START indicator and an accounting STOP indicator, the accounting START indicator indicating that accounting has started, the accounting STOP indicator indicating that accounting has stopped; means for gleaning interne protocol (IP) address information from the flow at a network element, the IP address information comprising an IP address; means for determining from the accounting START indicator that the end user is being connected to the network; means for removing an outdated flow for the IP address from a table and inserting the flow in place of the outdated flow in the table in response to the determination from the accounting START indicator; means for determining from the accounting STOP indicator that the end user is being disconnected from the network; and means for removing the flow from the table in response to the determination from the accounting STOP indicator such that the IP address information in the access gateway and the network element is synchronized independent of a connection request or a connection response, wherein the access gateway is a general packet radio gateway service (GPRS) support node (GGSN) and the network element is a firewall. - View Dependent Claims (11, 12, 13, 20)
-
-
14. Software for providing security in a network environment, the software being embodied in a non-transitory computer readable medium and including computer code such that when executed is operable to:
-
receive a flow that propagates through an access gateway, the flow associated with an end user and propagating through a network, the flow communicating an accounting START indicator and an accounting STOP indicator, the accounting START indicator indicating that accounting has started, the accounting STOP indicator indicating that accounting has stopped; glean internet protocol (IP) address information from the flow at a network element, the IP address information comprising an IP address; determine from the accounting START indicator that the end user is being connected to the network; remove an outdated flow for the IP address from a table and insert the flow in place of the outdated flow in the table in response to the determination from the accounting START indicator; determine from the accounting STOP indicator that the end user is being disconnected from the network; and remove the flow from the table in response to the determination from the accounting STOP indicator such that the IP address information in the access gateway and the network element is synchronized independent of a connection request or a connection response, wherein the access gateway is a general packet radio gateway service (GPRS) support node (GGSN) and the network element is a firewall. - View Dependent Claims (15, 16, 17, 21)
-
Specification