Methods, systems, and computer readable media for providing diameter signaling router with firewall functionality
First Claim
1. A system for Diameter routing and firewall filtering, the system comprising:
- a Diameter signaling router, comprising;
a network interface for receiving a plurality of Diameter messages, wherein receiving the plurality of Diameter messages includes receiving, from a first Diameter node, a first Diameter message having Diameter information;
a firewall module implemented using computing hardware within the Diameter signaling router, wherein the firewall module is configured to determine whether the first Diameter message satisfies a firewall policy, wherein the firewall policy includes a rule for examining a Diameter level parameter in the first Diameter message, wherein the rule specifies a whitelist or blacklist associated with the Diameter level parameter usable by the firewall module of the Diameter signaling router to determine whether the first Diameter message should be allowed to be forwarded; and
a routing module implemented using the computing hardware, wherein the routing module is configured to forward at least a portion of the first Diameter message towards a second Diameter node in response to the determination by the firewall module of the Diameter signaling router that the first Diameter message should be allowed to be forwarded.
0 Assignments
0 Petitions
Accused Products
Abstract
According to one aspect, the subject matter described herein includes a system for Diameter routing and firewall filtering. The system includes a Diameter signaling router comprising a network interface for receiving, from a first Diameter node, a first Diameter message having Diameter information. The Diameter signaling router also includes a firewall module for determining whether the first Diameter message satisfies a firewall policy. The firewall policy is based on at least a portion of the Diameter information in the first Diameter message. The Diameter signaling router further includes a routing module for forwarding at least a portion of the first Diameter message towards a second Diameter node in response to the first Diameter message satisfying the firewall policy.
248 Citations
20 Claims
-
1. A system for Diameter routing and firewall filtering, the system comprising:
a Diameter signaling router, comprising; a network interface for receiving a plurality of Diameter messages, wherein receiving the plurality of Diameter messages includes receiving, from a first Diameter node, a first Diameter message having Diameter information; a firewall module implemented using computing hardware within the Diameter signaling router, wherein the firewall module is configured to determine whether the first Diameter message satisfies a firewall policy, wherein the firewall policy includes a rule for examining a Diameter level parameter in the first Diameter message, wherein the rule specifies a whitelist or blacklist associated with the Diameter level parameter usable by the firewall module of the Diameter signaling router to determine whether the first Diameter message should be allowed to be forwarded; and a routing module implemented using the computing hardware, wherein the routing module is configured to forward at least a portion of the first Diameter message towards a second Diameter node in response to the determination by the firewall module of the Diameter signaling router that the first Diameter message should be allowed to be forwarded. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
10. A method for Diameter routing and firewall filtering, the method comprising:
at a Diameter signaling router; receiving a plurality of Diameter messages, wherein receiving the plurality of Diameter messages includes receiving, from a first Diameter node, a first Diameter message having Diameter information; determining whether the first Diameter message satisfies a firewall policy, wherein the firewall policy includes a rule for examining a Diameter level parameter in the first Diameter message, wherein the rule specifies a whitelist or blacklist associated with the Diameter level parameter usable by the Diameter signaling router to determine whether the first Diameter message should be allowed to be forwarded; and forwarding at least a portion of the first Diameter message towards a second Diameter node in response to the determination by the Diameter signaling router that the first Diameter message should be allowed to be forwarded. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19)
-
20. A non-transitory computer readable medium having stored thereon executable instructions that when executed by a processor of a computer control the computer to perform steps comprising:
at a Diameter signaling router; receiving a plurality of Diameter messages, wherein receiving the plurality of Diameter messages includes receiving, from a first Diameter node a first Diameter message having Diameter information; determining whether the first Diameter message satisfies a firewall policy, wherein the firewall policy includes a rule for examining a Diameter level parameter in the first Diameter message, wherein the rule specifies a whitelist or blacklist associated with the Diameter level parameter usable by the Diameter signaling router to determine whether the first Diameter message should be allowed to be forwarded; and forwarding at least a portion of the first Diameter message towards a second Diameter node in response to the determination by the Diameter signaling router that the first Diameter message should be allowed to be forwarded.
Specification