Method and apparatus for providing routing and access control filters
First Claim
1. A method for providing a routing filter, comprising:
- receiving, by a processor, a new filter rule associated with a routing policy, wherein the new filter rule affects a configurable entry for the routing policy;
creating, by the processor, a filter template in accordance with the new filter rule, wherein the creating comprises generating the filter template from an existing template with a modification to implement a change for the configurable entry, wherein the new filter rule comprises a list of network resources on which the filter template is applied and a request option to request only auditing of the list of network resources;
identifying, by the processor, an affected interface;
auditing, by the processor, the affected interface;
reporting, by the processor, a trouble when the auditing of the affected interface is unsuccessful;
generating, by the processor, a command in accordance with the filter template when the auditing of the affected interface is successful; and
downloading, by the processor, filter content to a router using the command.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for providing an access control filter and/or a route filter in a network are disclosed. For example, the method receives a new filter rule or a modified filter rule associated with at least one of: a routing policy, or a security policy. The method creates or modifies one or more filter templates in accordance with the new filter rule or the modified filter rule. The method identifies one or more affected interfaces and audits the one or more affected interfaces. The method then generates one or more commands in accordance with the one or more filter templates if the auditing of the one or more affected interfaces is successful, and downloads filter content to one or more routers using the one or more commands.
-
Citations
11 Claims
-
1. A method for providing a routing filter, comprising:
-
receiving, by a processor, a new filter rule associated with a routing policy, wherein the new filter rule affects a configurable entry for the routing policy; creating, by the processor, a filter template in accordance with the new filter rule, wherein the creating comprises generating the filter template from an existing template with a modification to implement a change for the configurable entry, wherein the new filter rule comprises a list of network resources on which the filter template is applied and a request option to request only auditing of the list of network resources; identifying, by the processor, an affected interface; auditing, by the processor, the affected interface; reporting, by the processor, a trouble when the auditing of the affected interface is unsuccessful; generating, by the processor, a command in accordance with the filter template when the auditing of the affected interface is successful; and downloading, by the processor, filter content to a router using the command. - View Dependent Claims (2, 3, 4)
-
-
5. A non-transitory computer-readable medium storing a plurality of instructions which, when executed by a processor, cause the processor to perform operations for providing a routing filter, the operations comprising:
-
receiving a new filter rule associated with a routing policy, wherein the new filter rule affects a configurable entry for the routing policy; creating a filter template in accordance with the new filter rule, wherein the creating comprises generating the filter template from an existing template with a modification to implement a change for the configurable entry, wherein the new filter rule comprises a list of network resources on which the filter template is applied and a request option to request only auditing of the list of network resources; identifying an affected interface; auditing the affected interface; reporting a trouble when the auditing of the affected interface is unsuccessful; generating a command in accordance with the filter template when the auditing of the affected interface is successful; and downloading filter content to a router using the command. - View Dependent Claims (6, 7, 8)
-
-
9. An apparatus for providing a routing filter, comprising:
-
a processor; and a computer-readable medium storing a plurality of instructions which, when executed by the processor, cause the processor to perform operations, the operations comprising; receiving a new filter rule associated with a routing policy, wherein the new filter rule affects a configurable entry for the routing policy; creating a filter template in accordance with the new filter rule, wherein the creating comprises generating the filter template from an existing template with a modification to implement a change for the configurable entry, wherein the new filter rule comprises a list of network resources on which the filter template is applied and a request option to request only auditing of the list of network resources; identifying an affected interface; auditing the affected interface; reporting a trouble when the auditing of the affected interface is unsuccessful; generating a command in accordance with the filter template when the auditing of the affected interface is successful; and downloading filter content to a router using the command. - View Dependent Claims (10, 11)
-
Specification