Supercharge Your Innovation With Domain-Expert AI Agents!

Message queue-based cascading architecture firewall linkage sealing and unsealing device and method

A message queue and firewall technology, which is applied in the field of cascaded firewall linkage blocking and unblocking devices, can solve the problems of no message delivery, inability to focus on business logic, and high product familiarity requirements for security operators, and achieve the effect of improving flexibility

Pending Publication Date: 2021-01-12
NARI INFORMATION & COMM TECH
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, there are many problems in the blocking and unblocking of firewalls in the traditional security field: First, the security operation personnel are required to be familiar with the products, because the strategies for blocking and unblocking firewalls of different brands are different, so the development of policy configuration pages is complicated. high degree
At the same time, when the unit switches the firewall brand, the security operation personnel need to be familiar with the firewall operation strategy of the new brand again, and the R&D personnel also need to re-develop the page adapted to the new strategy
Secondly, the traditional firewall blocking and unblocking operations mostly use databases for interaction, and there is no mechanism for message transmission, which brings inconvenience to the operation of security operators
Furthermore, when the company wants to use the general control method to send the ban or unban message of the headquarters (ie: the central node) to its subsidiary network provincial company (ie: the end node), it usually uses the broadcast form, while the traditional During the firewall blocking and unblocking operations, because the central node and the end nodes are too deeply coupled with each other, the central node also needs to be familiar with the operation and processing mechanism of the end nodes, especially when there are too many end nodes, each node cannot only focus on its own business logic

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Message queue-based cascading architecture firewall linkage sealing and unsealing device and method
  • Message queue-based cascading architecture firewall linkage sealing and unsealing device and method
  • Message queue-based cascading architecture firewall linkage sealing and unsealing device and method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0034] Embodiment 1: as figure 1 As shown, the present invention proposes a message queue-based cascading architecture firewall linkage blocking and unblocking device, including:

[0035] Business nodes, used for: Entity operation nodes that execute the blocking and unblocking process, located at the center or end of the cascade architecture;

[0036] The message queue component is used for: executing the transmission of firewall blocking and unblocking entity messages;

[0037] The firewall interface engine component is used for: adapting and operating the blocking and unblocking commands of different manufacturers' brand firewalls, and realizing the command interface of the firewall.

[0038] Service nodes include central nodes and end nodes. There is one and only one central node. End nodes contain one or more nodes.

[0039] The central node, which implements the firewall ban command, is sent to the sent message topic in the Kafka message queue component in the form of...

Embodiment 2

[0046] Embodiment 2: as figure 2 As shown, the present invention also proposes a cascading architecture firewall linkage blocking and unlocking method based on message queues, including the following steps:

[0047] Step 1, the central node produces messages according to the demand;

[0048] Step 2, the end node monitors and extracts the message;

[0049] Step 3, the terminal node matches its own information and extracts information, and interacts with the interface engine component of the firewall;

[0050] Step 4, the firewall interface engine component obtains the message, operates the adapted firewall, and feeds back the message;

[0051] Step 5, the end node encapsulates the message and generates a feedback message;

[0052] Step 6, the central node receives the feedback message and completes the feedback closed loop.

[0053] It will be elaborated in the detailed operation process of each step below.

[0054] In step 1, the detailed process of the central node prod...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a cascading architecture firewall linkage unblocking device and method based on a message queue. The device comprises a business node which is used for executing an entity operation node of an unblocking process and is located at the center or tail end of a cascading architecture; a message queue component which is used for executing the transmission of firewall unblockingentity messages; and a firewall interface engine assembly which is used for adaptively operating the unblocking instructions of the firewalls of different manufacturer brands to realize instruction interfaces of the firewalls. According to the device, the firewall unblocking command from top to bottom is processed in time by releasing coupling between modules, transmitting the unblocking command by means of the message queue and realizing cascade transmission of messages, so real-time early warning processing is realized.

Description

technical field [0001] The invention relates to a message queue-based cascading architecture firewall linkage blocking and unlocking device and method, and belongs to the technical field of network security. Background technique [0002] For a long time, in the field of network security technology, security operators have protected information systems by operating firewalls to specific IP addresses and ports. However, there are many problems in the blocking and unblocking of firewalls in the traditional security field: First, security operators have a high requirement for product familiarity, because the strategies for blocking and unblocking firewalls of different brand manufacturers are different, so the development of policy configuration pages is complicated. higher degree. At the same time, when the unit switches firewall brands, security operations personnel need to familiarize themselves with the new brand's firewall operation strategy again, and R&D personnel also n...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/02H04L63/0227H04L63/20
Inventor 姜帆王哲力姜训俞皓贾雪徐胜国赵亚光马腾鹏鲁国亮王志勇
Owner NARI INFORMATION & COMM TECH
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com