Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Network access control method and firewall device

A network access control and firewall technology, applied in data exchange networks, digital transmission systems, electrical components, etc., can solve problems such as low work efficiency, difficult management, and increased operational overhead, and achieve the effect of improving work efficiency.

Inactive Publication Date: 2008-07-02
O2MICRO CHINA
View PDF0 Cites 29 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Therefore, when the WAN accesses the LAN or the LAN accesses the WAN, the firewall needs to query more security policies, and the search efficiency is low. Therefore, the network packets passing through the firewall per unit time are correspondingly reduced, and the work efficiency is low.
In addition, when the network fails, more and more security policies in the firewall make management more and more difficult, and the operating expenses gradually increase
In order to solve this problem, it is a better solution to manage each department of the enterprise independently, but independent management requires each department to set up an independent firewall, which will require the purchase of more firewall devices, resulting in a substantial increase in the cost of the enterprise Increase

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network access control method and firewall device
  • Network access control method and firewall device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0011] FIG. 1 is a block diagram of a network system including a firewall device of the present invention to implement network access control functions. The network system includes a firewall device 120 provided between the LAN 100 and the WAN 110 . The firewall device 120 may be an independent device or a device such as a router or a gateway integrated with a firewall function. According to the requirements of security policy settings, users with the same security policy in the local area network 100 can be divided together to form a user group. In one embodiment of the present invention, the local area network 100 is an internal network of an enterprise and users therein are divided into N user groups 1001, 1002, 1003... 100n. The firewall device 120 provides multiple logically divided virtual firewalls to implement multiple network security domains. The number of virtual firewalls can be logically set according to the needs of users in the LAN 100 . In one embodiment of ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method for realizing network access control and a firewall device thereof. The firewall device is arranged between a first network and a second network and the device comprises a plurality of virtual firewalls divided in logic. Each virtual firewall is provided with a safety strategy. The control method comprises the following steps: the first network send a network packet which accesses the second network; the firewall device, according to the contained information in the network packet, respectively sends the network packet to the corresponding virtual firewalls; the virtual firewall carries out a safety detection to the network packet; if the network conforms to the safety strategy of the virtual firewall, the network packet is allowed to pass through the firewall device; if the network fails to conform to the safety strategy of the virtual firewall, the network packet is prohibited from passing through the firewall device. As the network flow enters the firewall device, the network is divided and then is sent to the corresponding virtual firewall. Therefore, only the safety strategy in the corresponding virtual firewall is needed to look for, thus increasing working efficiency.

Description

technical field [0001] The invention relates to a network control method and its device, in particular to a method for realizing network access control and its firewall device. Background technique [0002] As a network security device, a firewall is usually set between networks to ensure the security of network communication. For example, a firewall is set between a wide area network and a local area network requiring high security performance. The firewall determines whether a network packet sent from the LAN to the WAN or a network packet sent from the WAN to the LAN is allowed to pass through the firewall according to its preset security policy. The firewall executes the filtering program on the network packet. If the network packet conforms to the security policy configured by the firewall, the network packet is allowed to pass through the firewall. If it does not conform to the security policy, the network packet is discarded and is not allowed to pass through the fire...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L12/56
Inventor 肖海涛
Owner O2MICRO CHINA
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com