Unlock instant, AI-driven research and patent intelligence for your innovation.

Method, system and proxy apparatus for regulating rule and policy of through apparatus

A technology for proxy equipment and equipment, applied in the field of communication, can solve the problems of relatively high firewall requirements, unable to adjust MN filtering rules and policies, unable to notify CN firewall normally, etc., and achieve the effect of small upgrade changes

Inactive Publication Date: 2013-03-20
HUAWEI TECH CO LTD
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0018] The inventor found in the process of implementing the present invention that since the above solution only solves the method of firewall traversal in the tunnel mode, for the situation where there is a firewall between the MN and the CN in the routing optimization mode, the AAAH server cannot normally notify the firewall on the CN side , so that the firewall on the CN side cannot adjust the filtering rules and policies for the MN; at the same time, for the firewall A, the MN is a node inside the firewall A, so it is redundant to notify the firewall A to adjust the filtering rules and policies through AAAL ; In addition, because firewall A and firewall B need to communicate with AAAL and AAAH respectively, the requirements for firewalls are relatively high, that is, both firewall A and firewall B need to support the AAA extension protocol

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, system and proxy apparatus for regulating rule and policy of through apparatus
  • Method, system and proxy apparatus for regulating rule and policy of through apparatus
  • Method, system and proxy apparatus for regulating rule and policy of through apparatus

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0038] In the following, in the mobile IPv6 network environment, the mobile node MN leaves the home network and communicates with the peer node CN in the foreign network through traversal equipment as an example. In order to solve the defects of the existing solutions, the embodiments of the present invention provide The Proxy functional entity is deployed in a region, which is referred to as ProxyA for the convenience of subsequent descriptions; the Proxy functional entity is deployed in the home domain where the HA to which the MN belongs is located, and is referred to as ProxyB for the convenience of subsequent descriptions; Through the problem of traversing devices, the Proxy functional entity can be deployed in the access domain where the peer node CN is located. For the convenience of subsequent descriptions, it is referred to as ProxyC. Here, the access domain where the peer node CN is located refers to the possibility of the peer node CN In the home domain to which it b...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the invention discloses a method, a system and a proxy device for adjusting rules and strategies of a traversal device, the embodiment of the invention implements the authentication mechanism of a packet which passes through the traversal device through the introduction of an authentication proxy and dynamically adjusts the rules and the strategies of the traversal device through the introduction of a strategy proxy in the vicinity of a protective network of the traversal device, thereby solving the packet processing problem of the traversal device under the two-way tunnel and the route optimization mode in mobile IPv6 network environment and solving the problem of dynamically adjusting the rules and the strategies of the traversal device in a fixed network; the embodiment of the invention does not need the traversal device to support the AAA extension protocol and has smaller changes for upgrading the prior traversal device.

Description

technical field [0001] The present invention relates to communication technology, in particular to a method, system and proxy device for adjusting rules and policies of traversal devices. Background technique [0002] As a kind of network security middleware, the firewall has become an indispensable part of the IP (Internet Protocol) network. It monitors the network traffic and implements corresponding filtering policies and access control to protect internal communication network elements. It can be viewed as a library of rules and actions consisting of rules and policies by which network traffic is allowed or blocked. An important role of a firewall is to detect and prevent denial of service attacks. [0003] The earliest firewalls were designed for IPv4 (Internet Protocol version4) networks. Although the current IP network is still dominated by IPv4, with the saturation of network addresses, IPv6 (Internet Protocol version6) networks are deployed on a large scale, and IP...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/70
Inventor 吴钦
Owner HUAWEI TECH CO LTD