-
公开(公告)号:US08060927B2
公开(公告)日:2011-11-15
申请号:US11981427
申请日:2007-10-31
CPC分类号: H04L63/08 , H04L47/2433 , H04L47/2441 , H04L63/0254 , H04L63/0272
摘要: A network firewall may apply policies to packets based on a security classification. Packets with an authenticated and established security connection may be handled at a high throughput while packets with unauthenticated connections may be handed at a low throughput or even discarded. In some embodiments, three or more levels of security classifications may be used to process packets at different speeds or priorities. In some embodiments, one device may classify and tag each packet, while another device within the network may process the packets according to the tags.
摘要翻译: 网络防火墙可以根据安全分类对策略应用策略。 具有认证和建立的安全连接的数据包可以以高吞吐量处理,而具有未认证连接的数据包可能以低吞吐量或甚至丢弃传送。 在一些实施例中,可以使用三个或更多级别的安全分类来以不同的速度或优先级来处理分组。 在一些实施例中,一个设备可以对每个分组进行分类和标记,而网络内的另一设备可以根据标签来处理分组。
-
公开(公告)号:US07895319B2
公开(公告)日:2011-02-22
申请号:US11981335
申请日:2007-10-31
IPC分类号: G06F15/16
CPC分类号: H04L61/1511 , H04L29/12066 , H04L67/22
摘要: An address resolver such as a DNS service may use the identity of a requesting client device to determine a response of a network address for a hostname in a request. A requesting client device may transmit a hardware or user identifier to an address resolving server in order to authenticate the client. The server may determine if the requesting client is authorized to have access to the requested hostname, and respond with the network address when the client is authorized. The address resolver may be used to limit access for users to various devices or hosts across a network and in some cases may track which users are accessing which hosts.
摘要翻译: 诸如DNS服务的地址解析器可以使用请求客户端设备的身份来确定请求中主机名的网络地址的响应。 请求客户端设备可以向地址解析服务器发送硬件或用户标识符,以便认证客户端。 服务器可以确定请求客户端是否被授权访问所请求的主机名,并且当客户端被授权时响应网络地址。 地址解析器可以用于限制用户通过网络访问各种设备或主机,并且在某些情况下可以跟踪哪些用户正在访问哪些主机。
-
公开(公告)号:US08935748B2
公开(公告)日:2015-01-13
申请号:US11980928
申请日:2007-10-31
CPC分类号: G06F17/30864 , H04L29/12066 , H04L61/1511 , H04L61/6068 , H04L63/08
摘要: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.
-
公开(公告)号:US20090113517A1
公开(公告)日:2009-04-30
申请号:US11981427
申请日:2007-10-31
CPC分类号: H04L63/08 , H04L47/2433 , H04L47/2441 , H04L63/0254 , H04L63/0272
摘要: A network firewall may apply policies to packets based on a security classification. Packets with an authenticated and established security connection may be handled at a high throughput while packets with unauthenticated connections may be handed at a low throughput or even discarded. In some embodiments, three or more levels of security classifications may be used to process packets at different speeds or priorities. In some embodiments, one device may classify and tag each packet, while another device within the network may process the packets according to the tags.
摘要翻译: 网络防火墙可以根据安全分类对策略应用策略。 具有认证和建立的安全连接的数据包可以以高吞吐量处理,而具有未认证连接的数据包可能以低吞吐量或甚至丢弃传送。 在一些实施例中,可以使用三个或更多级别的安全分类来以不同的速度或优先级来处理分组。 在一些实施例中,一个设备可以对每个分组进行分类和标记,而网络内的另一设备可以根据标签处理分组。
-
公开(公告)号:US20090113074A1
公开(公告)日:2009-04-30
申请号:US11981335
申请日:2007-10-31
IPC分类号: G06F15/16
CPC分类号: H04L61/1511 , H04L29/12066 , H04L67/22
摘要: An address resolver such as a DNS service may use the identity of a requesting client device to determine a response of a network address for a hostname in a request. A requesting client device may transmit a hardware or user identifier to an address resolving server in order to authenticate the client. The server may determine if the requesting client is authorized to have access to the requested hostname, and respond with the network address when the client is authorized. The address resolver may be used to limit access for users to various devices or hosts across a network and in some cases may track which users are accessing which hosts.
摘要翻译: 诸如DNS服务的地址解析器可以使用请求客户端设备的身份来确定请求中主机名的网络地址的响应。 请求客户端设备可以向地址解析服务器发送硬件或用户标识符,以便认证客户端。 服务器可以确定请求客户端是否被授权访问所请求的主机名,并且当客户端被授权时响应网络地址。 地址解析器可以用于限制用户通过网络访问各种设备或主机,并且在某些情况下可以跟踪哪些用户正在访问哪些主机。
-
公开(公告)号:US20090109857A1
公开(公告)日:2009-04-30
申请号:US11980865
申请日:2007-10-31
IPC分类号: G06F11/00
CPC分类号: G06F11/3476 , G06F11/324 , G06F11/3409 , G06F11/349
摘要: A connection monitor utility may monitor the availability of various resources, display a status, and provide various optimization functions for each resource. Performance data may be collected and displayed, and the performance data may be used to optimize, troubleshoot, and notify administrators or users for each connection. Some embodiments may store optimized parameters for connections from different locations. In one use model, the monitor utility may be used with a secure connection to a private network to provide visual feedback of connectivity to various resources and simple optimization of the connections.
摘要翻译: 连接监视器实用程序可以监视各种资源的可用性,显示状态,并为每个资源提供各种优化功能。 可以收集和显示性能数据,并且可以使用性能数据来优化,排除故障并通知每个连接的管理员或用户。 一些实施例可以存储来自不同位置的连接的优化参数。 在一个使用模型中,监视器实用程序可以与专用网络的安全连接一起使用,以提供对各种资源的连接的可视反馈以及连接的简单优化。
-
公开(公告)号:US20090113521A1
公开(公告)日:2009-04-30
申请号:US11981105
申请日:2007-10-31
CPC分类号: H04L63/10 , H04L29/12066 , H04L61/1511 , H04L63/0272 , H04L63/08 , H04L63/164
摘要: A connection to a private network may use an IPv6 tunneling client to connect to a corresponding IPv6 tunneling router at the edge of the private network. The client may be configured to automatically establish a tunneling connection and may have a routing table for routing IPv6 addresses for hosts within the private network through the tunneling connection. The client may be connected to an IPv4 or IPv6 connection outside the private network. The connection between the IPv6 tunneling client and IPv6 tunneling router may be an authenticated and secure connection.
摘要翻译: 与专用网络的连接可以使用IPv6隧道客户端连接到专用网络边缘的对应的IPv6隧道路由器。 客户端可以被配置为自动建立隧道连接,并且可以具有用于通过隧道连接为专用网络内的主机路由IPv6地址的路由表。 客户端可能连接到专用网络外部的IPv4或IPv6连接。 IPv6隧道客户端与IPv6隧道路由器之间的连接可能是经过认证和安全的连接。
-
公开(公告)号:US08875237B2
公开(公告)日:2014-10-28
申请号:US11981105
申请日:2007-10-31
CPC分类号: H04L63/10 , H04L29/12066 , H04L61/1511 , H04L63/0272 , H04L63/08 , H04L63/164
摘要: A connection to a private network may use an IPv6 tunneling client to connect to a corresponding IPv6 tunneling router at the edge of the private network. The client may be configured to automatically establish a tunneling connection and may have a routing table for routing IPv6 addresses for hosts within the private network through the tunneling connection. The client may be connected to an IPv4 or IPv6 connection outside the private network. The connection between the IPv6 tunneling client and IPv6 tunneling router may be an authenticated and secure connection.
摘要翻译: 与专用网络的连接可以使用IPv6隧道客户端连接到专用网络边缘的对应的IPv6隧道路由器。 客户端可以被配置为自动建立隧道连接,并且可以具有用于通过隧道连接为专用网络内的主机路由IPv6地址的路由表。 客户端可能连接到专用网络外部的IPv4或IPv6连接。 IPv6隧道客户端与IPv6隧道路由器之间的连接可能是经过认证和安全的连接。
-
公开(公告)号:US20090112814A1
公开(公告)日:2009-04-30
申请号:US11980928
申请日:2007-10-31
IPC分类号: G06F17/30
CPC分类号: G06F17/30864 , H04L29/12066 , H04L61/1511 , H04L61/6068 , H04L63/08
摘要: A secure DNS query may be made by establishing a secure connection with a specific DNS server to determine an address for a hostname. A client device may have a database that may contain a record of a secure DNS server for one or more hostnames. When a DNS request contains one of the specified hostnames, an authenticated session may be created with the designated secure DNS server and a network address for the hostname is returned using the session. The authenticated session may authenticate a client device to the server as well as authenticate the server to the client. In some embodiments, the secure DNS server may accept connections from authenticated clients and may disregard connection requests from non authenticated clients.
摘要翻译: 可以通过建立与特定DNS服务器的安全连接来确定主机名的地址来进行安全DNS查询。 客户端设备可以具有可以包含用于一个或多个主机名的安全DNS服务器的记录的数据库。 当DNS请求包含指定的主机名之一时,可以使用指定的安全DNS服务器创建经过身份验证的会话,并使用会话返回主机名的网络地址。 认证会话可以将客户端设备认证到服务器,并向服务器认证服务器。 在一些实施例中,安全DNS服务器可以接受来自经认证的客户端的连接,并且可以忽略来自未经认证的客户端的连接请求。
-
-
-
-
-
-
-
-
搜索结果
9 条记录 (耗时 0.015 秒)
