-
1.发明授权
公开(公告)号:US5978568A
公开(公告)日:1999-11-02
申请号:US826598
申请日:1997-04-03
申请人: Dalen M. Abraham , Todd A. Barnes , Mark G. Grieve
发明人: Dalen M. Abraham , Todd A. Barnes , Mark G. Grieve
CPC分类号: H04L41/28 , H04L29/12009 , H04L29/12047 , H04L41/046 , H04L41/22 , H04L41/26 , H04L61/15 , H04L63/02 , H04L63/0227 , H04L63/0263 , H04L69/16
摘要: A naming service manager (46) is provided for resolving mapping information regarding a plurality of computers connected to a local area network (LAN 24) and their users. The naming service manager 46 collects mapping information, i.e., user login names, domain names, computer names and IP addresses, from a plurality of naming service agents 50 located on the LAN (24) and correlates the mapping information into a current computer-to-user assignment or "mapping" for each user of the LAN 24 and/or a current IP address-to-computer assignment or "mapping" for each computer connected to the LAN 24. The naming service manager (46) serves the correlated mapping information to a plurality of naming service applications (48) which process the correlated mapping information in accordance with their own needs and requirements.
摘要翻译: 提供命名服务管理器(46),用于解析关于连接到局域网(LAN 24)及其用户的多个计算机的映射信息。 命名服务管理器46从位于LAN(24)上的多个命名服务代理50收集映射信息,即用户登录名,域名,计算机名和IP地址,并将映射信息与当前计算机相关联 - 用于LAN 24的每个用户的用户分配或“映射”和/或当前IP地址到计算机的分配,或者连接到LAN 24的每个计算机的“映射”。命名服务管理器(46) 向多个命名服务应用程序(48)提供信息,该应用程序根据自己的需要和要求处理相关的映射信息。
-
2.再颁专利公开(公告)号:USRE40187E1
公开(公告)日:2008-03-25
申请号:US10918833
申请日:2004-08-12
申请人: Dalen M. Abraham , Todd A. Barnes , Paul F. Bouche , Thomas P. Bougetz , Tracy A. Gosselin , Mark G. Grieve , Brent A. Langdon , Robert C. Allison , Michael S. Nikkel , Stuart Rosove
发明人: Dalen M. Abraham , Todd A. Barnes , Paul F. Bouche , Thomas P. Bougetz , Tracy A. Gosselin , Mark G. Grieve , Brent A. Langdon , Robert C. Allison , Michael S. Nikkel , Stuart Rosove
CPC分类号: H04L41/28 , H04L29/06 , H04L29/12047 , H04L41/046 , H04L41/22 , H04L41/26 , H04L61/15 , H04L63/0227 , H04L63/0263
摘要: In accordance with the present invention, a network management program (80) is provided that manages the communication of data packets between an intranetwork (44) and an internetwork (40). An operator of a computer connected to the intranetwork (44) inputs vital information regarding users of computers connected to the intranetwork (44), mapping information regarding computers connected to the intranetwork (44), and policies to be applied against those users and computers, using a graphical user interface (GUI 70). The GUI (70) communicates the vital user information, mapping information and policies to a database (72) which stores and organizes the vital user information, mapping information and policies. A filter executive (76) optimizes the policies stored in the database (72) into a set of rules for each user and passes the rules to a filter engine (78). The filter engine (78) filters all outbound data packets transmitted from the intranetwork (44) to the internetwork (40) and verifies all inbound data packets from the internetwork (40) according to the rules provided by the filter executive (76). The filter executive (76) also communicates the mapping information stored in the database (72) to a naming service manager (74) which further updates the mapping information and returns the updated mapping information to the filter executive (76). Consequently, the filter executive (78) filters the data packets according to the most recent mapping information.
摘要翻译: 根据本发明,提供一种网络管理程序(80),其管理内网(44)和互联网络(40)之间的数据分组的通信。 连接到内网(44)的计算机的操作者输入关于连接到内网(44)的计算机的用户的重要信息,关于连接到内部网络(44)的计算机的映射信息,以及针对这些用户和计算机应用的策略, 使用图形用户界面(GUI 70)。 GUI(70)将重要用户信息,映射信息和策略传送到存储和组织重要用户信息,映射信息和策略的数据库(72)。 过滤器执行程序(76)将存储在数据库(72)中的策略优化为每个用户的一组规则,并将规则传递给过滤器引擎(78)。 滤波器引擎(78)将从网络内传输的所有出站数据分组(44)过滤到互联网络(40),并且根据由过滤器执行程序(76)提供的规则来验证来自互联网络(40)的所有入站数据分组。 过滤器执行器(76)还将存储在数据库(72)中的映射信息传送到命名服务管理器(74),命名服务管理器(74)进一步更新映射信息,并将更新后的映射信息返回给过滤执行器(76)。 因此,过滤器执行器(78)根据最近的映射信息对数据分组进行过滤。
-
3.发明授权
公开(公告)号:US5983270A
公开(公告)日:1999-11-09
申请号:US825775
申请日:1997-04-02
申请人: Dalen M. Abraham , Todd A. Barnes , Paul F. Bouche , Thomas P. Bougetz , Tracy A. Gosselin , Mark G. Grieve , Brent A. Langdon , Robert C. Allison , Michael S. Nikkel
发明人: Dalen M. Abraham , Todd A. Barnes , Paul F. Bouche , Thomas P. Bougetz , Tracy A. Gosselin , Mark G. Grieve , Brent A. Langdon , Robert C. Allison , Michael S. Nikkel
CPC分类号: H04L41/28 , H04L29/06 , H04L41/046 , H04L41/22 , H04L41/26 , H04L63/0227 , H04L63/0263 , H04L29/12047 , H04L61/15
摘要: In accordance with the present invention, a network management program (80) is provided that manages the communication of data packets between an intranetwork (44) and an internetwork (40). An operator of a computer connected to the intranetwork (44) inputs vital information regarding users of computers connected to the intranetwork (44), mapping information regarding computers connected to the intranetwork (44), and policies to be applied against those users and computers, using a graphical user interface (GUI 70). The GUI (70) communicates the vital user information, mapping information and policies to a database (72) which stores and organizes the vital user information, mapping information and policies. A filter executive (76) optimizes the policies stored in the database (72) into a set of rules for each user and passes the rules to a filter engine (78). The filter engine (78) filters all outbound data packets transmitted from the intranetwork (44) to the internetwork (40) and verifies all inbound data packets from the internetwork (40) according to the rules provided by the filter executive (76). The filter executive (76) also communicates the mapping information stored in the database (72) to a naming service manager (74) which further updates the mapping information and returns the updated mapping information to the filter executive (76). Consequently, the filter executive (78) filters the data packets according to the most recent mapping information.
摘要翻译: 根据本发明,提供一种网络管理程序(80),其管理内网(44)和互联网络(40)之间的数据分组的通信。 连接到内网(44)的计算机的操作者输入关于连接到内网(44)的计算机的用户的重要信息,关于连接到内部网络(44)的计算机的映射信息,以及针对这些用户和计算机应用的策略, 使用图形用户界面(GUI 70)。 GUI(70)将重要用户信息,映射信息和策略传送到存储和组织重要用户信息,映射信息和策略的数据库(72)。 过滤器执行程序(76)将存储在数据库(72)中的策略优化为每个用户的一组规则,并将规则传递给过滤器引擎(78)。 滤波器引擎(78)将从网络内传输的所有出站数据分组(44)过滤到互联网络(40),并且根据由过滤器执行程序(76)提供的规则来验证来自互联网络(40)的所有入站数据分组。 过滤器执行器(76)还将存储在数据库(72)中的映射信息传送到命名服务管理器(74),命名服务管理器(74)进一步更新映射信息,并将更新后的映射信息返回给过滤执行器(76)。 因此,过滤器执行器(78)根据最近的映射信息对数据分组进行过滤。
-
-
搜索结果
3 条记录 (耗时 0.022 秒)
