| 发明名称 |
FIRE WALL FRAMEWORK, A COMMUNICATING METHOD AND A COMPUTER READABLE MEDIUM, PARTICULARLY CONCERNED WITH A FIRE WALL STRUCTURE REALIZED IN MORE THAN ONE NETWORK DEVICE |
| 摘要 |
PURPOSE: A fire wall framework, a communicating method and a computer readable medium are provided to comprise a layer processor retaining a packet context, which receives the packet context from a previous layer processor and transmits the packet context to the first fire wall engine, and a lookup component located within the first fire wall engine, which identifies more than one matching filter by using the packet context and layer parameters. CONSTITUTION: A fire wall structure includes a user mode process(250) and a kernel mode process(252). The user mode process(250) and the kernel mode process(252) are executed as portions of an operating system in a network device. The kernel mode process(252) includes the first fire wall engine called a kernel fire wall engine(256) and selective callouts(258). The kernel mode process(252) identifies matching filters of network packets, processes the packets, and executes other actions in the packets to realize a set fire wall policy.
|
| 申请公布号 |
KR20040105587(A) |
申请公布日期 |
2004.12.16 |
| 申请号 |
KR20040041130 |
申请日期 |
2004.06.05 |
| 申请人 |
MICROSOFT CORP. |
发明人 |
MAYFIELD, PAUL G.;SWANDER, BRIAN D. |
| 分类号 |
G06F13/00;G06F;G06F1/00;G06F11/00;G06F12/14;G06F15/00;G06F17/00;H04L9/00;H04L12/22;H04L12/56;H04L12/66;H04L29/06;(IPC1-7):H04L12/22 |
主分类号 |
G06F13/00 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
