Firewall security policy automatic adaptation system and method

A firewall strategy and security strategy technology, applied in transmission systems, digital transmission systems, data exchange networks, etc., can solve problems such as non-compliance with security inspections, increased service life of firewall equipment, and impact on firewall operating efficiency and resource utilization. Less effort, less readability effect

Active Publication Date: 2020-10-16
SHANDONG LUNENG SOFTWARE TECH
View PDF7 Cites 30 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The inventors found that with the increase of the service life of firewall equipment, there are a large number of redundant policies, invalid policies and non-compliant policies in the daily operation and maintenance or upgrading of existing network equipment, which affect the operating efficiency and resource utilization of firewalls and other equipment. At the same time, there are large Potential safety hazard, does not meet the safety inspection requirements

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Firewall security policy automatic adaptation system and method
  • Firewall security policy automatic adaptation system and method
  • Firewall security policy automatic adaptation system and method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0023] Embodiment 1, this embodiment provides a firewall security policy automatic adaptation system;

[0024] like figure 1 As shown, the firewall security policy automatically adapts to the system, including:

[0025] a collector, configured to collect policy configuration information of the firewall, and upload the collected policy configuration information of the firewall to the server;

[0026] The server is used to analyze the policy configuration information of the firewall uploaded by the collector, judge whether the policy configuration information of the current firewall has been updated, and output and display the judgment result.

[0027] As one or more examples, such as figure 2 As shown, the collector includes:

[0028] The first storage layer is configured to: store policy configuration information of the firewall, configuration information of collection tasks and collection logs;

[0029] The first logical layer is configured as follows: the firewall polic...

Embodiment 2

[0073] Embodiment 2. This embodiment provides a method for automatically adapting a firewall security policy;

[0074] Firewall security policy automatic adaptation method, including:

[0075] S1: collecting policy configuration information of the firewall; the policy configuration information of the firewall includes: a security policy, a routing policy or a NAT policy of the firewall;

[0076] S2: Analyzing the collected firewall policy configuration information;

[0077] S3: Normalize, store and display the parsed data.

[0078] As one or more embodiments, in S1, the policy configuration information of the firewall is collected; the specific steps include:

[0079] S11: The collector matches the collection commands of various strategies from the command configuration library according to the brand, model and version number of the firewall;

[0080] S12: Remotely connect to the firewall through SSH, execute the collection commands of different strategies in the set order,...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a firewall security policy automatic adaptation system and method, and the system comprises a collector which is used for collecting the policy configuration information of a firewall, and uploading the collected policy configuration information of the firewall to a server; and the server which is used for analyzing the strategy configuration information of the firewall uploaded by the collector, determining whether the strategy configuration information of the current firewall is updated or not, and outputting and displaying a determining result.

Description

technical field [0001] The present disclosure relates to the technical field of firewall policy adaptation, in particular to a firewall security policy automatic adaptation system and method. Background technique [0002] The statements in this section merely mention background art related to the present disclosure and do not necessarily constitute prior art. [0003] With the gradual improvement of network infrastructure and network security control, the scale and complexity of the network environment continue to increase, and the number of firewalls deployed and routing and switching devices configured with access control lists are increasing. The inventors found that with the increase of the service life of firewall equipment, there are a large number of redundant policies, invalid policies and non-compliant policies in the daily operation and maintenance or upgrading of existing network equipment, which affect the operating efficiency and resource utilization of firewall...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/24
CPCH04L63/20H04L63/02H04L41/0803
Inventor 高铁柱汪友杰于善海薛念明刘召勇陈玉敏魏光玉李向阳李峰邢道刚于国祥王义政李通张金华林鹏翔
Owner SHANDONG LUNENG SOFTWARE TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap