Firewall device

Abstract

A firewall apparatus including plural virtual firewalls, each virtual firewall including a dependent firewall policy, is disclosed. The firewall apparatus includes: a distribution management table for managing a user name and a virtual firewall ID; a part configured to receive authentication information for network connection from a user terminal, and hold a user name included in the authentication information; a part configured to report the authentication information to the authentication server; and a part configured to receive an authentication response from the authentication server, and hold a user ID, included in the authentication response, to be provided to the user terminal. The firewall apparatus registers the user ID in the distribution management table associating the user ID with the user name.

Description

technical field

[0001] This invention relates to a firewall device for protecting users connected to external networks such as the Internet. Background technique

[0002] A firewall (also referred to as FW) is provided as one of means for enhancing the security of one's own terminal or one's own network.

[0003] A firewall is installed between your own terminal or your own network and the external network that want to improve security, and implements the following filtering process: according to the preset security policy, judge the packet from the external network to your own terminal or network, or Whether the packet from the own terminal or the network to the external network can pass, if the packet is passable, the packet is passed, and if the packet is not passable, the packet is discarded.

[0004] A security policy is a policy that combines address, protocol type, port number, direction, passability, or other conditions as a rule, and gathers a variety of such rules...

Images