Configuration method, device for virtual firewall, and computer readable storage medium

A technology of a virtual firewall and a configuration method, which is applied in the field of computer-readable storage media and virtual firewall configuration, can solve problems such as following, affecting virtual machine performance, and affecting virtual firewall performance, and achieve the effect of reducing the number of entries and improving performance

Inactive Publication Date: 2019-03-19
CHINA TELECOM CORP LTD
View PDF6 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Therefore, the virtual firewall adopts the solution of configuring the same global policy to solve the problem of security policy following when the virtual machine is migrated, resulting in a large number of redun

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Configuration method, device for virtual firewall, and computer readable storage medium
  • Configuration method, device for virtual firewall, and computer readable storage medium
  • Configuration method, device for virtual firewall, and computer readable storage medium

Examples

Experimental program
Comparison scheme
Effect test

Example Embodiment

[0032] The technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only a part of the embodiments of the present invention, rather than all the embodiments. The following description of at least one exemplary embodiment is actually only illustrative, and in no way serves as any limitation to the present invention and its application or use. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative work shall fall within the protection scope of the present invention.

[0033] In view of the existing technology, the virtual firewall adopts the same global policy configuration to solve the problem of security policy following during virtual machine migration, resulting in a large number of redundant security policy entries...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a configuration method, a device for a virtual firewall, and a computer readable storage medium, relates to the technical field of computers. The method comprises the followingsteps: finding a first security policy set of a first virtual firewall on a first physical machine before the migration according to the migration information of a virtual machine; extracting a security policy of the virtual machine from the first security policy set; migrating the security policy of the virtual machine to a second security policy set of a second virtual firewall on a second physical machine after the virtual machine is migrated; and deleting the security policy of the virtual machine in the first security policy set. According to the method of the invention, the security policy follows the virtual machine for migration, different security policy sets are configured on different physical machines, and the security policy set of the physical machine before the migration nolonger saves the security policy of the migrated virtual machine, which reduces the number of redundant security policies in the virtual firewall and improves the performance of the virtual firewalland the virtual machine.

Description

technical field [0001] The present invention relates to the field of computer technology, in particular to a virtual firewall configuration method, device and computer-readable storage medium. Background technique [0002] The distributed virtual firewall is a solution to realize the security protection of east-west traffic in the cloud resource pool. [0003] Distributed virtual firewalls generally adopt the form of virtual machines, embedded in the Hypervisor (system management program) level, and run on the same physical machine as the protected virtual machines. [0004] In order to solve the problem of following the security policy when the virtual machine is migrated, the current distributed virtual firewall in the industry adopts the solution of configuring the same global policy, that is, each distributed firewall not only loads the security policy of the virtual machine on the physical machine where it is located, but also loads other physical The security policy o...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06G06F9/455
CPCH04L63/02H04L63/20G06F9/45558G06F2009/45595G06F2009/45587
Inventor 何明樊宁沈军金华敏
Owner CHINA TELECOM CORP LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap