Flow filtering fine wall

A firewall and filtering module technology, applied in electrical components, transmission systems, etc., can solve the problems of poor performance and poor transparency of application-level gateways

Inactive Publication Date: 2004-12-15
NEUSOFT CORP
View PDF0 Cites 41 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Moreover, proxy services can provide strict user authentication, which packet filtering firewalls cannot do. Therefore, application-level gateways are stronger than packet filtering firewalls in terms of security. However, each proxy service requires a specific application proc

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Flow filtering fine wall
  • Flow filtering fine wall
  • Flow filtering fine wall

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0116] The detailed structure and working principle of the present invention are described in detail in conjunction with accompanying drawings.

[0117] The principle of flow filtering firewall implementation:

[0118] Application rules:

[0119] The flow filtering part currently mainly includes providing filtering functions for applications such as HTTP, FTP, and SMTP. The formulation of rules mainly refers to TIS (Trusted Information Systems).

[0120] 1. HTTP:

[0121] The following filter feature descriptions are provided for HTTP:

[0122] 1) Limit URLS;

[0123] 2) ActiveX, JAVA APPLET and CGI filtering;

[0124] 3) Send prohibited pages;

[0125] 4) Provide command-level control;

[0126] 5) Filter the page content by keywords

[0127] This section maintains a list of specified URL rules in the format:

[0128] ALLOW / DENY [COMMAND] [URL] [ACTIVEX, JAVA APPLET] [KEYWORD]

[0129] This rule means to allow / deny the host's access to a certain page.

[0130] [comm...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

This invention relates to computer network anti-fire wall with the following basic control method realizing the protection to the application layer in the state of filtration of the state packet a transparent applied information filtration system is realized based on the filtration of the state detection packet by TCP protocol stack two ends can be accessed directly when it works at the link layer or IP layer permitted by rule, and data flows from one session stream to another stream in the way of stream. Since the application layer strategy of the anti-fire wall is at the middle of the stream, its standard design has the ability of complete identity discrimination, access control and audit, at the same time, the system provides managing and monitor tools of rich GOI mode to do the operation of safety strategy configuration user management, real-time monitor, audit inquiry, flow management.

Description

technical field [0001] The invention relates to a flow filtering firewall for computer network, which belongs to the technical field of firewall (Firewal) in the field of computer network security. Background technique [0002] There are various network security tools in the market at present, and the most mature technology and the earliest productization are firewalls. Due to the strong pertinence of firewall technology, it has become one of the most important guarantees for Internet network security. On the basis of state packet filtering, the flow filtering firewall adopts a specially designed TCP protocol stack to filter the application protocol information flow, and can realize the control of the application layer protocol in a transparent manner. The overall structure of the system is strictly in accordance with the national application level The latest standard design of the firewall has perfect identity authentication, access control and audit capabilities. After tes...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
Inventor 曹斌
Owner NEUSOFT CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap