公开(公告)号：US11588724B2

公开(公告)日：2023-02-21

申请号：US17392888

申请日：2021-08-03

Applicant: Barracuda Networks, Inc.

Inventor： Hannes Hofer ,  Leonhard Hoeckner

IPC: H04L12/751 ,  H04L45/02 ,  H04L9/40

Abstract: A new approach is proposed to support firewall protection of dynamically introduced routes in an internal communication network. Under the proposed approach, all routes dynamically introduced into the internal communication network via a dynamic routing service are dynamically learned and tagged by a route collection engine. A dynamic network object is created, which is a software component configured to store a plurality of single IP addresses and/or IP address ranges of the dynamically learned routes in a dynamic routing network. A firewall engine of the internal communication network is configured to create one or more firewall rules referencing the dynamic network object and apply various security measures/policies to network data packets routed on the dynamically learned routes in the dynamic routing network based on IP address matching with the dynamic network object.

公开(公告)号：US20220286379A1

公开(公告)日：2022-09-08

申请号：US17392888

申请日：2021-08-03

Applicant: Barracuda Networks, Inc.

Inventor： Hannes Hofer ,  Leonhard Hoeckner

IPC: H04L12/751 ,  H04L29/06

Abstract: A new approach is proposed to support firewall protection of dynamically introduced routes in an internal communication network. Under the proposed approach, all routes dynamically introduced into the internal communication network via a dynamic routing service are dynamically learned and tagged by a route collection engine. A dynamic network object is created, which is a software component configured to store a plurality of single IP addresses and/or IP address ranges of the dynamically learned routes in a dynamic routing network. A firewall engine of the internal communication network is configured to create one or more firewall rules referencing the dynamic network object and apply various security measures/policies to network data packets routed on the dynamically learned routes in the dynamic routing network based on IP address matching with the dynamic network object.