Load equalizing method and device for multiple fire-proof wall

A load balancing and firewall technology, applied in the direction of error prevention, data exchange through path configuration, digital transmission system, etc., can solve problems such as network interruption, firewall cannot form complementary backup, communication reliability cannot be guaranteed, etc., and achieve simple configuration Effect

Active Publication Date: 2010-06-09
QI-ANXIN LEGENDSEC INFORMATION TECH (BEIJING) INC +1
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] With the default routing method, since there is only one egress firewall, when the egress firewall fails, the communication between all hosts in the internal network with this firewall as the default gateway and the external network will be interrupted, and the communication reliability cannot be guaranteed.
[0004] Even if multiple firewalls are used, each firewall cannot form a complementary backup, but only works independently. When one of them fails, other firewalls cannot effectively take over its work, and network interruption may occur

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Load equalizing method and device for multiple fire-proof wall
  • Load equalizing method and device for multiple fire-proof wall
  • Load equalizing method and device for multiple fire-proof wall

Examples

Experimental program
Comparison scheme
Effect test

example

[0045] Examples include:

[0046] - instance name;

[0047] - The virtual IP address of the network port on the firewall;

[0048] -Virtual route ID and priority;

[0049] - the port name to bind to;

[0050] -Select one of the master state and the slave state as the default state of the instance;

[0051] Associations include:

[0052] - the name of the association;

[0053] - the name of the instance in the association;

[0054] Instances in the user-defined configuration information established on each firewall are described in the following format:

[0055] vrrp_instance v1 {

[0056] state MASTER

[0057] interface fe2

[0058] virtual_router_id 50

[0059] priority 100

[0060] advert_int 1

[0061] authentication {

[0062] auth_type PASS

[0063] auth_pass 5678

[0064] }

[0065] virtual_ipaddress {

[0066] 10.0.2.253 / 24

[0067] }

[0068]}

[0069] keywords

Description and the above status parameters

vr...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention uses multi firewalls to construct a highly efficient and stable route link. The invention also provide an apparatus thereof used for providing a virtual gateway address for each firewall; each client is pointed to different virtual gateway so as to balance the traffic on each firewall; when one firewall fails, other firewalls can take over the address of the failure firewall to keepthe network traffic in normal state.

Description

technical field [0001] The invention relates to a multi-firewall load balancing method and device, which belong to the technical field of network communication and information security, and relate to the improvement of routing load balancing and redundant backup technology of firewalls and the improvement of performance. Background technique [0002] Usually, hosts on the internal network are configured with a default gateway, and the next hop is the internal network interface IP address of the egress firewall. In this way, all packets from hosts on the internal network to access the external network will first be sent to the egress firewall, and then the The firewall forwards packets to realize communication between internal hosts and external networks. [0003] With the default routing mode, since there is only one egress firewall, when the egress firewall fails, the communication between all the hosts using this firewall as the default gateway in the internal network and ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/56H04L1/22H04L12/28H04L12/803
Inventor 白宇肖为剑王刚宋斌
Owner QI-ANXIN LEGENDSEC INFORMATION TECH (BEIJING) INC
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap