Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

WAF (Web Application Firewall) migration method and device

A first-class flow table and MAC address technology, applied in the communication field, can solve the problem that WAF equipment cannot be freely migrated, and achieve the effect of flexible deployment

Active Publication Date: 2018-02-02
NEW H3C TECH CO LTD
View PDF3 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Due to business requirements, WAF needs to be able to migrate freely within the business network, but the management network that WAF accesses at the same time does not necessarily have the conditions for free migration of WAF. The reason is that the management network belongs to the Underlay network (traditional single-layer network), and It is not automatically deployed by the controller. After the migration of the WAF, the gateway address and the IP address of the management interface of the WAF are not necessarily on the same network segment, so the WAF device cannot be freely migrated within the management network.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • WAF (Web Application Firewall) migration method and device
  • WAF (Web Application Firewall) migration method and device
  • WAF (Web Application Firewall) migration method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0052] Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, the same numerals in different drawings refer to the same or similar elements unless otherwise indicated. The implementations described in the following exemplary embodiments do not represent all implementations consistent with this application. Rather, they are merely examples of apparatuses and methods consistent with aspects of the present application as recited in the appended claims.

[0053] The terminology used in this application is for the purpose of describing particular embodiments only, and is not intended to limit the application. As used in this application and the appended claims, the singular forms "a", "the", and "the" are intended to include the plural forms as well, unless the context clearly dictates otherwise. It should also be understood that the term...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The application provides a WAF (Web Application Firewall) migration method and device. When being applied to a controller in a SDN (Software Defined Network) data center management network, the methodcomprises the steps of: receiving a LLDP message and a first port identifier which are uploaded by a first switch, and by the first switch, receiving the LLDP message through a port corresponding tothe first port identifier; determining a second switch which takes charge of uploading the LLDP message last time and an uploaded second port identifier; if the first switch is inconsistent with the second switch or the first port identifier is inconsistent with the second port identifier, confirming that a WAF is migrated; issuing a first flow table to the first switch, wherein the first flow table is used for indicating the first switch to send a message to be sent to the WAF to the WAF through the port corresponding to the first port identifier; and issuing a command of deleting a second flow table to the second switch, wherein the second flow table is used for indicating the second switch to send a message to be sent to the WAF to the WAF by a port corresponding to the second port identifier.

Description

technical field [0001] The present application relates to the technical field of communications, and in particular to a WAF (Web Application Firewall, website application firewall) migration method and device. Background technique [0002] SDN (Software Defined Network, Software Defined Network) is a new type of network architecture, which can separate the control plane and data plane of network equipment, and the controller (Controller) realizes the function of the control plane, and several switches (Switch) Realize the data surface function. [0003] WAF can be used to solve web application security problems that cannot be solved by traditional security devices such as firewalls, such as web intrusion prevention, DDoS (Distributed Denial of service, distributed denial of service) protection, CC (Challenge Collapsar) protection, DNS (Domain NameSystem, Domain Name System) protection, etc. [0004] Currently, in the data center network based on the SDN architecture (herei...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/24H04L12/741H04L12/751H04L45/02H04L45/74
CPCH04L41/00H04L45/02H04L45/74Y02D30/00
Inventor 宋小恒
Owner NEW H3C TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com