Method and system for transmitting and receiving data across virtual firewall

A virtual firewall and data sending technology, applied in the field of communication, can solve problems such as complex configuration, complex processing process, difficult management of firewall inter-domain relations, etc., and achieve the effect of simple configuration, easy management, and resource saving

Active Publication Date: 2009-07-08
HUAWEI TECH CO LTD
View PDF0 Cites 30 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] In the prior art, when processing the data flow crossing the firewall, it is necessary to configure a VZONE domain for each firewall, and in addition to configuring the security policy between the original security zones of the firewall, it is also necessary to separately configure the private security zone in the firewall and the VZONE domain. As the number of VFWs increases, the number of VZONE domains to be configured also increases, and more and more security policies need to be configured. The configuration is very complicated.
Moreover, in the prior art, when data streams are forwarded across firewalls, each data stream must be securely filtered at the sending end and the receiving end to realize the forwarding of data streams. Relationships are very difficult to manage

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for transmitting and receiving data across virtual firewall
  • Method and system for transmitting and receiving data across virtual firewall
  • Method and system for transmitting and receiving data across virtual firewall

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0020] In order to implement the embodiment of the present invention, it is first necessary to understand the schematic configuration diagram of the firewall required by the technical solution of the embodiment of the present invention. For the convenience of description, three virtual firewalls created on one root firewall are used as an example for a brief description. It should be noted that the root firewall can be regarded as a special virtual firewall.

...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method for transmitting data by spanning a virtual fireproof wall. The virtual fireproof wall has a corresponding security tunnel which has a protected field. When the data is transmitted, in a first virtual fireproof wall a security policy between the protected fields of a safety zone where data entrance port is and the security tunnel of the first virtual fireproof wall filters the data safety, transmits the safely filtered data to the security tunnel of the first virtual fireproof wall for encryption, and transmits the encrypted data through a second virtual fireproof wall. The method for transmitting data by spanning the virtual fireproof wall of the invention simplifies field relation management between the safe fields in the multiple different virtual fireproof walls, effectively implements repeated use of the virtual fireproof port and saves resource.

Description

technical field [0001] The invention relates to the field of communication technology, in particular to a method and system for sending and receiving data across a virtual firewall. Background technique [0002] A firewall (FW, Firewall) refers to a combination of a series of components set between different networks, such as a trusted intranet and an untrusted public network or network security zone. Firewalls often formulate security policies based on security zones to monitor, restrict, or change data flows across the firewall, and shield the information, structure, and operating conditions of the network from the outside as much as possible, so as to achieve security protection for the internal network . [0003] In recent years, with the rise and continuous development of the VPN technology, a virtual firewall (Virtual-firewall, VFW) technology emerges as the times require. A virtual firewall is a logical sub-entity derived from the main firewall system, and acts as a...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/46H04L12/56
CPCH04L12/4633
Inventor 朱志强张日华侯贵斌徐勇谢文辉马擘高国鲁陆晓萍付翠花
Owner HUAWEI TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap