Network router security method
First Claim
Patent Images
1. A network routing device for connecting to computer network devices, comprising:
- a housing enclosing a circuit configured for connecting a plurality of external network devices to a network;
a non-volatile memory connected to the circuit; and
a switch connected to the circuit and configured to switch the circuit between different operational states, a first operational state wherein the circuit is configured to permit connections to all of the plurality of external network devices then connected to the circuit in response to the switch being in the first operational state, to receive MAC addresses for all of the plurality of external network devices then connected to the circuit, and to store the MAC addresses in the non-volatile memory as authorized MAC addresses for all of the plurality of external devices then connected to the circuit in response to the switch being in the first operational state so long as the switch is in the first operational state without further approval, and a second operational state wherein the circuit is configured to only allow connections with external network devices corresponding to the MAC addresses stored in the non-volatile memory when the switch was in the first operational state and to refuse connections to new external network devices not having an authorized MAC address stored in the non-volatile memory.
4 Assignments
0 Petitions
Accused Products
Abstract
A local network is secured using a router or hub that includes a security switch. During or immediately after initial network configuration, the router or hub records MAC addresses of connected network devices. After initial configuration is completed, the switch is activated. After the switch is activated, the router or hub will not allow connection of additional devices, as determined by the MAC addresses of connected devices. The security switch can be deactivated to permit connection of additional devices.
14 Citations
17 Claims
-
1. A network routing device for connecting to computer network devices, comprising:
-
a housing enclosing a circuit configured for connecting a plurality of external network devices to a network; a non-volatile memory connected to the circuit; and a switch connected to the circuit and configured to switch the circuit between different operational states, a first operational state wherein the circuit is configured to permit connections to all of the plurality of external network devices then connected to the circuit in response to the switch being in the first operational state, to receive MAC addresses for all of the plurality of external network devices then connected to the circuit, and to store the MAC addresses in the non-volatile memory as authorized MAC addresses for all of the plurality of external devices then connected to the circuit in response to the switch being in the first operational state so long as the switch is in the first operational state without further approval, and a second operational state wherein the circuit is configured to only allow connections with external network devices corresponding to the MAC addresses stored in the non-volatile memory when the switch was in the first operational state and to refuse connections to new external network devices not having an authorized MAC address stored in the non-volatile memory. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
- 10. A network routing device having a switch, the network routing device configured for connecting a plurality of external network devices to a network and having a non-volatile memory, the network routing device configured to operate in an unsecured mode when the switch is in a first position and in a secured mode when the switch is in a second position, wherein the network routing device is configured to permit connections to all of the plurality of external network devices then connected in response to the network routing device being in the unsecured mode, to receive MAC addresses for all of the plurality of external network devices then connected to the circuit, and to store the MAC addresses in the non-volatile memory as authorized MAC addresses for all of the plurality of external network devices then connected in response to the network routing device being in the unsecured mode so long as the network routing device is configured to operate in the unsecured mode without further approval, and to only allow connections with external network devices corresponding to the MAC addresses stored in the non-volatile memory when the network routing device was in the unsecured mode and to refuse connections to new external network devices not having respective authorized MAC addresses stored in the non-volatile memory when the switch is in the second position.
Specification