Invention Grant
US09191366B2 Scalable security services for multicast in a router having integrated zone-based firewall
有权
具有集成区域防火墙的路由器中可多播的可扩展安全服务
- Patent Title: Scalable security services for multicast in a router having integrated zone-based firewall
- Patent Title (中): 具有集成区域防火墙的路由器中可多播的可扩展安全服务
-
Application No.: US14262593Application Date: 2014-04-25
-
Publication No.: US09191366B2Publication Date: 2015-11-17
- Inventor: Kannan Varadhan , Jean-Marc Frailong , Anjan Venkatramani
- Applicant: Juniper Networks, Inc.
- Applicant Address: US CA Sunnyvale
- Assignee: Juniper Networks, Inc.
- Current Assignee: Juniper Networks, Inc.
- Current Assignee Address: US CA Sunnyvale
- Agency: Shumaker & Sieffert, P.A.
- Main IPC: H04L29/06
- IPC: H04L29/06 ; H04L12/725 ; H04L12/18 ; H04L12/701 ; H04L12/761

Abstract:
A multicast-capable firewall allows firewall security policies to be applied to multicast traffic. The multicast-capable firewall may be integrated within a routing device, thus allowing a single device to provide both routing functionality, including multicast support, as well as firewall services. The routing device provides a user interface by which a user specifies one or more zones to be recognized by the integrated firewall when applying stateful firewall services to multicast packets. The user interface supports a syntax that allows the user to define subsets of the plurality of interfaces associated with the zones, and define a single multicast policy to be applied to multicast sessions associated with a multicast group. The multicast policy identifies common services to be applied pre-replication, and exceptions specifying additional services to be applied post-replication to copies of the multicast packets for the one or more zones.
Public/Granted literature
- US20140237541A1 SCALABLE SECURITY SERVICES FOR MULTICAST IN A ROUTER HAVING INTEGRATED ZONE-BASED FIREWALL Public/Granted day:2014-08-21
Information query