| 发明名称 | Correlating packets in communications networks | ||
| 摘要 | A computing system may identify packets received by a network device from a host located in a first network and may generate log entries corresponding to the packets received by the network device. The computing system may identify packets transmitted by the network device to a host located in a second network and may generate log entries corresponding to the packets transmitted by the network device. Utilizing the log entries corresponding to the packets received by the network device and the log entries corresponding to the packets transmitted by the network device, the computing system may correlate the packets transmitted by the network device with the packets received by the network device. | ||
| 申请公布号 | US9560176(B2) | 申请公布日期 | 2017.01.31 |
| 申请号 | US201514714207 | 申请日期 | 2015.05.15 |
| 申请人 | Centripetal Networks, Inc. | 发明人 | Ahn David K.;Geremia Peter P.;Mallett, III Pierre;Moore Sean;Perry Robert T. |
| 分类号 | H04L29/06;H04L12/851;H04L12/26;H04L12/741;H04L29/12;H04L12/823 | 主分类号 | H04L29/06 |
| 代理机构 | Banner & Witcoff, Ltd. | 代理人 | Banner & Witcoff, Ltd. |
| 主权项 | 1. A method comprising: identifying, by a computing system, a plurality of packets received by a network device from a host located in a first network; generating, by the computing system, a plurality of log entries corresponding to the plurality of packets received by the network device; identifying, by the computing system, a plurality of packets transmitted by the network device to a host located in a second network; generating, by the computing system, a plurality of log entries corresponding to the plurality of packets transmitted by the network device; correlating, by the computing system and based on the plurality of log entries corresponding to the plurality of packets received by the network device and the plurality of log entries corresponding to the plurality of packets transmitted by the network device, the plurality of packets transmitted by the network device with the plurality of packets received by the network device; and responsive to correlating the plurality of packets transmitted by the network device with the plurality of packets received by the network device: generating, by the computing system and based on the correlating, one or more rules configured to identify packets received from the host located in the first network; andprovisioning a packet-filtering device with the one or more rules configured to identify packets received from the host located in the first network. | ||
| 地址 | Herndon VA US | ||