Method and device for merging network access policies

A network access and policy technology, applied in the field of data processing, can solve problems such as difficult maintenance policies and system performance degradation

Active Publication Date: 2019-03-05
NEUSOFT CORP
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Due to the complexity of the non-marginal network, the data forwarding device of the non-marginal network will self-learn a large number of "point-to-point" policies, and directly writing these "point-to-point" policies into the device will cause matching policies during the policy use process. When the system performance is reduced, it is also difficult to maintain too many policies

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for merging network access policies
  • Method and device for merging network access policies
  • Method and device for merging network access policies

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0050] The following will clearly and completely describe the technical solutions in the embodiments of the application with reference to the drawings in the embodiments of the application. Apparently, the described embodiments are only some of the embodiments of the application, not all of them. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the scope of protection of this application.

[0051] Under normal circumstances, user access to the network has strong group characteristics, that is, certain types of users will access specific network resources relatively regularly. Therefore, the embodiment of the present invention can merge policies based on a huge amount of "point-to-point" policies obtained by self-learning of the device to generate a "group-to-group" policy, greatly reducing the number of policies and improving the policy matching time. system performanc...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and a device for combining network access strategies. The method comprises the following steps: acquiring a set of strategies to be combined, determining any dimension as a current dimension, and determining dimensions other than the current dimension as dimensions to be combined; finding the strategies to be combined in which elements corresponding to the dimensions to be combined have an equivalence relation, and combining elements corresponding to the current dimension; determining the current dimension as a combined dimension, and determining a dimension to be combined as the current dimension once again; after that dimensions to be combined exist is determined, finding strategies to be combined in which elements corresponding to the dimensions to be combined have an equivalence relation, finding the strategies to be combined in which elements corresponding the combined dimensions have the equivalence relation or an inclusion relation in the found strategies to be combined, and finishing combination; and after that the dimensions to be combined do not exist is determined, finding the strategies to be combined in which the elements corresponding to the combined dimensions have the equivalence relation or the inclusion relation, and finishing combination. Through adoption of the method and the device, self-learned point-to-point strategies are combined reasonably, so that the number of the strategies is reduced, and the strategy matching system performance is enhanced.

Description

technical field [0001] The invention relates to the field of data processing, in particular to a method and device for merging network access policies. Background technique [0002] A network access policy is a forwarding rule that includes source and destination network addresses and corresponding forwarding actions (allow or deny). It is a simple and effective means of network traffic control and is widely used in network data forwarding devices such as gateways, routers, and firewalls. . [0003] As a device parameter, the network access policy is usually manually configured in advance by the administrator before the device goes online. However, data forwarding devices in non-marginal networks, such as routers of network operators, egress gateways or firewall devices of a company, usually need to support more complex network topologies and service access, and the network access policies that need to be configured are relatively complex. Many and complex, which requires ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/801
CPCH04L47/10
Inventor 于玉龙
Owner NEUSOFT CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap