Tactic management based firewall system and dispatching method

A scheduling method and policy management technology, applied in the field of network security, can solve problems such as conflicts between operations, difficult functions to cooperate with each other, and inability to coordinate the use of system resources.

Inactive Publication Date: 2008-01-30
ZTE CORP
View PDF0 Cites 17 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The main purpose of the present invention is to provide a firewall system and scheduling method based on policy management, which is used to overcome the limitations and defects of the prior art that the functions of the security firewall system are independent

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Tactic management based firewall system and dispatching method
  • Tactic management based firewall system and dispatching method
  • Tactic management based firewall system and dispatching method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0028] Hereinafter, the present invention will be described in detail with reference to the accompanying drawings.

[0029] Referring to Fig. 1, the firewall system 10 based on policy management of the present invention includes: a firewall function set module 20, including one or more firewall modules 30, for running or stopping security firewall functions according to a schedule; and a policy module 50, including a central The processing unit 60 is configured to execute scheduling on the firewall module 30 according to a preset system policy.

[0030] The system policy may include at least one of a user configuration policy, a resource-based policy, a firewall-based policy, a priority-based policy, and an intelligent response policy.

[0031] The policy module 50 may include a database interface for the central processing unit 60 to access a database storing algorithms or policies.

[0032] The policy module 50 may include a planned task module, which is used to temporarily...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a firewall system and scheduling method based on strategy management. The system comprises a firewall function set module that is provided with one or a plurality of firewall modules used for running or stopping a security firewall according to schedule; and a strategy module that contains a central processing unit used for performing schedule on the firewall module according to preset system strategies. The system strategy consists of a user configuration strategy, a strategy based on resources, a strategy based on the firewall, a strategy based on priority, and one of the intelligent response strategies which consist of a time strategy, an interface strategy, a port strategy, and at least one of intelligent strategies. The strategy security firewall system provided by the invention can effectively manage system resources and dynamically allocate the system resources to different function modules according to priority, so that maximum utilization of the system resources is realized. By making use of the system structure of the strategy firewall, complex security firewall functions can be accomplished and intelligent firewall can be realized.

Description

technical field [0001] The invention relates to network security technology, in particular to a firewall technology. Background technique [0002] At present, in the field of security and firewall, a series of functions have been developed in the prior art, such as IP filtering, MAC filtering, DMZ (divided zone), port forwarding, etc. Under the joint action of these functions, the entire security firewall system has been completed. However, when these functions are running, the normal operation of the functions is often limited due to the conflict of resources used (such as using the same port, resource conflicts affect the function can not work normally), at the same time, because the functional modules are independent of each other, there is a lack of effective Resource sharing cannot cooperate well with each other, and complex firewall work cannot be completed (such as IP filtering function and MAC filtering function cooperate with each other to complete the anti-attack f...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L12/24H04L12/26
Inventor 缪伟周衍坚
Owner ZTE CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap