Method and apparatus for providing routing and access control filters

US 8,819,201 B2
Filed: 08/07/2008
Issued: 08/26/2014
Est. Priority Date: 08/07/2008
Status: Active Grant

First Claim

Patent Images

1. A method for providing a routing filter, comprising:

receiving, by a processor, a new filter rule associated with a routing policy, wherein the new filter rule affects a configurable entry for the routing policy;

creating, by the processor, a filter template in accordance with the new filter rule, wherein the creating comprises generating the filter template from an existing template with a modification to implement a change for the configurable entry, wherein the new filter rule comprises a list of network resources on which the filter template is applied and a request option to request only auditing of the list of network resources;

identifying, by the processor, an affected interface;

auditing, by the processor, the affected interface;

reporting, by the processor, a trouble when the auditing of the affected interface is unsuccessful;

generating, by the processor, a command in accordance with the filter template when the auditing of the affected interface is successful; and

downloading, by the processor, filter content to a router using the command.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus for providing an access control filter and/or a route filter in a network are disclosed. For example, the method receives a new filter rule or a modified filter rule associated with at least one of: a routing policy, or a security policy. The method creates or modifies one or more filter templates in accordance with the new filter rule or the modified filter rule. The method identifies one or more affected interfaces and audits the one or more affected interfaces. The method then generates one or more commands in accordance with the one or more filter templates if the auditing of the one or more affected interfaces is successful, and downloads filter content to one or more routers using the one or more commands.

Citations

11 Claims

1. A method for providing a routing filter, comprising:
- receiving, by a processor, a new filter rule associated with a routing policy, wherein the new filter rule affects a configurable entry for the routing policy;
  
  creating, by the processor, a filter template in accordance with the new filter rule, wherein the creating comprises generating the filter template from an existing template with a modification to implement a change for the configurable entry, wherein the new filter rule comprises a list of network resources on which the filter template is applied and a request option to request only auditing of the list of network resources;
  
  identifying, by the processor, an affected interface;
  
  auditing, by the processor, the affected interface;
  
  reporting, by the processor, a trouble when the auditing of the affected interface is unsuccessful;
  
  generating, by the processor, a command in accordance with the filter template when the auditing of the affected interface is successful; and
  
  downloading, by the processor, filter content to a router using the command.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1, further comprising:
    - monitoring a session.
  - 3. The method of claim 1, wherein a set of configurable entries for the routing policy is stored in a database.
  - 4. The method of claim 3, wherein the set of configurable entries is provided in a format supported by the router.

5. A non-transitory computer-readable medium storing a plurality of instructions which, when executed by a processor, cause the processor to perform operations for providing a routing filter, the operations comprising:
- receiving a new filter rule associated with a routing policy, wherein the new filter rule affects a configurable entry for the routing policy;
  
  creating a filter template in accordance with the new filter rule, wherein the creating comprises generating the filter template from an existing template with a modification to implement a change for the configurable entry, wherein the new filter rule comprises a list of network resources on which the filter template is applied and a request option to request only auditing of the list of network resources;
  
  identifying an affected interface;
  
  auditing the affected interface;
  
  reporting a trouble when the auditing of the affected interface is unsuccessful;
  
  generating a command in accordance with the filter template when the auditing of the affected interface is successful; and
  
  downloading filter content to a router using the command.
- View Dependent Claims (6, 7, 8)
- - 6. The non-transitory computer-readable medium of claim 5, further comprising:
    - monitoring a session.
  - 7. The non-transitory computer-readable medium of claim 5, wherein a set of configurable entries for the routing policy is stored in a database.
  - 8. The non-transitory computer-readable medium of claim 7, wherein the set of configurable entries is provided in a format supported by the router.

9. An apparatus for providing a routing filter, comprising:
- a processor; and
  
  a computer-readable medium storing a plurality of instructions which, when executed by the processor, cause the processor to perform operations, the operations comprising;
  
  receiving a new filter rule associated with a routing policy, wherein the new filter rule affects a configurable entry for the routing policy;
  
  creating a filter template in accordance with the new filter rule, wherein the creating comprises generating the filter template from an existing template with a modification to implement a change for the configurable entry, wherein the new filter rule comprises a list of network resources on which the filter template is applied and a request option to request only auditing of the list of network resources;
  
  identifying an affected interface;
  
  auditing the affected interface;
  
  reporting a trouble when the auditing of the affected interface is unsuccessful;
  
  generating a command in accordance with the filter template when the auditing of the affected interface is successful; and
  
  downloading filter content to a router using the command.
- View Dependent Claims (10, 11)
- - 10. The apparatus of claim 9, further comprising:
    - monitoring a session.
  - 11. The apparatus of claim 9, wherein a set of configurable entries for the routing policy is stored in a database.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
AT&T Intellectual Property I LP (AT&T, Inc.)
Original Assignee
AT&T Intellectual Property I LP (AT&T, Inc.)
Inventors
Netrakanti, Mallikarjun, Dutta, Sumita, Flack, Gary, Lamont, William, Stoltzfus, Rodney, Suntrup, Paul
Primary Examiner(s)
KIM, TAE K

Application Number

US12/187,556
Publication Number

US 20100037287A1
Time in Patent Office

2,210 Days
Field of Search

709/206, 709/224, 709220-222, 726/1, 726/3, 713/201
US Class Current

709/222
CPC Class Codes

H04L 41/022   Multivendor or multi-standa...

H04L 41/0226   Mapping or translating mult...

H04L 45/04   Interdomain routing, e.g. h...

H04L 45/308   Route determination based o...

H04L 45/42   Centralised routing

H04L 63/0263   Rule management

H04L 63/102   Entity profiles

Method and apparatus for providing routing and access control filters

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for providing routing and access control filters

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links