-
1.发明申请Logging method, system, and device with analytical capabilities for the network traffic 审中-公开具有网络流量分析能力的日志记录方法,系统和设备公开(公告)号:US20070050846A1
公开(公告)日:2007-03-01
申请号:US11213719
申请日:2005-08-30
申请人: Ken Xie , Michael Xie , Bing Xie
发明人: Ken Xie , Michael Xie , Bing Xie
IPC分类号: G06F12/14
CPC分类号: H04L63/0245 , H04L63/1425
摘要: A logging device, system and a method for managing network packets. The logging device includes a traffic capturing device receiving the network packets and filtering the network packets by selecting some of the network packets based on a predefined criteria. The logging device also includes a storage device storing the selected network packets and an analyzing component organizing the stored network packets in accordance with a user specified parameters. The traffic capturing component, the storage component, and the analyzing component are integrated in a single physical device providing a user with an ability to monitor real-time network traffic on the fly. The traffic capturing component selects the network packets for storage based on source and destination addresses of the network packets, based on a protocol of the network packets, based on a port designated, and based on whether a particular traffic session matches a predetermined signature.
摘要翻译: 一种记录设备,系统和一种管理网络数据包的方法。 记录装置包括接收网络分组的流量捕获设备,并且基于预定义的准则来选择一些网络分组来过滤网络分组。 记录装置还包括存储所选择的网络分组的存储装置和根据用户指定参数组织所存储的网络分组的分析组件。 流量捕获组件,存储组件和分析组件集成在单个物理设备中,为用户提供了即时监控实时网络流量的能力。 流量捕获组件基于网络分组的协议,基于指定的端口,并且基于特定流量会话是否匹配预定签名,基于网络分组的源和目的地址选择网络分组进行存储。
-
2.发明申请REMOTE LOGGING, ANALYSIS, REPORTING AND MANAGEMENT OF NETWORK SECURITY APPLIANCES 审中-公开远程登录,分析,报告和管理网络安全设备公开(公告)号:US20080155084A1
公开(公告)日:2008-06-26
申请号:US11945209
申请日:2007-11-26
申请人: ZhouZhong (Joe) Yu , Ken Xie , Michael Xie , Zhen Zhang , Yanni K. Dubuc , Yu (Michael) Fang
发明人: ZhouZhong (Joe) Yu , Ken Xie , Michael Xie , Zhen Zhang , Yanni K. Dubuc , Yu (Michael) Fang
IPC分类号: G06F15/173
CPC分类号: H04L63/1416 , H04L41/08 , H04L63/0227 , H04L67/125
摘要: Methods, systems and business models are provided for hosted services for network security appliances. According to one embodiment an analysis and management network provides secure access and analysis of centralized logs. The analysis and management network may also support delivery, viewing and reporting of network security related activities as well as support configuration and management of network security appliances via a communications network, such as the Internet.
摘要翻译: 为网络安全设备的托管服务提供了方法,系统和业务模型。 根据一个实施例,分析和管理网络提供对集中日志的安全访问和分析。 分析和管理网络还可以支持网络安全相关活动的交付,查看和报告,以及通过诸如因特网之类的通信网络来支持网络安全设备的配置和管理。
-
公开(公告)号:US07823195B1
公开(公告)日:2010-10-26
申请号:US11842018
申请日:2007-08-20
申请人: Ken Xie , Yan Ke , Yuming Mao
发明人: Ken Xie , Yan Ke , Yuming Mao
CPC分类号: H04L12/66 , H04L63/0263
摘要: An improved firewall for providing network security is described. The improved firewall provides for dynamic rule generation, as well using conventional fixed rules. This improvement is provided without significant increase in the processing time required for most packets. Additionally, the improved firewall provides for translation of IP addresses between the firewall and the internal network.
-
4.发明授权公开(公告)号:US06772347B1
公开(公告)日:2004-08-03
申请号:US09525369
申请日:2000-03-15
申请人: Ken Xie , Yan Ke , Yuming Mao
发明人: Ken Xie , Yan Ke , Yuming Mao
IPC分类号: G06F1300
CPC分类号: H04L49/901 , H04L29/06 , H04L49/90 , H04L49/9057 , H04L63/02 , H04L69/16 , H04L69/22
摘要: Systems and methods for network security including a firewall. One firewall includes a firewall engine. The firewall engine includes a first engine including a first set of rules for sorting incoming IP packets into initially allowed packets and initially denied packets. The firewall engine also includes a filter including a second set of rules for receiving and further sorting the initially denied packets into allowed packets and denied packets.
摘要翻译: 网络安全的系统和方法,包括防火墙。 一个防火墙包括防火墙引擎。 防火墙引擎包括第一引擎,其包括用于将进入的IP分组分类为最初允许的分组并且最初拒绝分组的第一组规则。 防火墙引擎还包括一个过滤器,该过滤器包括第二组规则,用于接收并进一步将最初被拒绝的包分类为允许的包和被拒绝的包。
-
5.发明授权公开(公告)号:US07774836B1
公开(公告)日:2010-08-10
申请号:US11461798
申请日:2006-08-02
申请人: Ken Xie , Yan Ke , Yuming Mao
发明人: Ken Xie , Yan Ke , Yuming Mao
CPC分类号: H04L12/66 , H04L63/0263
摘要: An improved firewall for providing network security is described. The improved firewall provides for dynamic rule generation, as well using conventional fixed rules. This improvement is provided without significant increase in the processing time required for most packets. Additionally, the improved firewall provides for translation of IP addresses between the firewall and the internal network.
摘要翻译: 描述了用于提供网络安全性的改进的防火墙。 改进的防火墙提供动态规则生成,以及使用传统的固定规则。 提供这种改进而不显着增加大多数分组所需的处理时间。 此外,改进的防火墙提供了防火墙和内部网络之间的IP地址转换。
-
6.发明授权公开(公告)号:US07107612B1
公开(公告)日:2006-09-12
申请号:US10893283
申请日:2004-07-19
申请人: Ken Xie , Yan Ke , Yuming Mao
发明人: Ken Xie , Yan Ke , Yuming Mao
CPC分类号: H04L12/66 , H04L63/0263
摘要: An improved firewall for providing network security is described. The improved firewall provides for dynamic rule generation, as well using conventional fixed rules. This improvement is provided without significant increase in the processing time required for most packets. Additionally, the improved firewall provides for translation of IP addresses between the firewall and the internal network.
摘要翻译: 描述了用于提供网络安全性的改进的防火墙。 改进的防火墙提供动态规则生成,以及使用传统的固定规则。 提供这种改进而不显着增加大多数分组所需的处理时间。 此外,改进的防火墙提供了防火墙和内部网络之间的IP地址转换。
-
-
-
-
-
搜索结果
6 条记录 (耗时 0.014 秒)