CN100499487C - 帮助应用穿越防火墙的方法 - Google Patents
帮助应用穿越防火墙的方法 Download PDFInfo
- Publication number
- CN100499487C CN100499487C CNB2004100618852A CN200410061885A CN100499487C CN 100499487 C CN100499487 C CN 100499487C CN B2004100618852 A CNB2004100618852 A CN B2004100618852A CN 200410061885 A CN200410061885 A CN 200410061885A CN 100499487 C CN100499487 C CN 100499487C
- Authority
- CN
- China
- Prior art keywords
- application
- fire compartment
- compartment wall
- connection
- firewall
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F15/00—Digital computers in general; Data processing equipment in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/029—Firewall traversal, e.g. tunnelling or, creating pinholes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0209—Architectural arrangements, e.g. perimeter networks or demilitarized zones
- H04L63/0218—Distributed architectures, e.g. distributed firewalls
Landscapes
- Engineering & Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Signal Processing (AREA)
- Computing Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Quality & Reliability (AREA)
- Computer And Data Communications (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (29)
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US10/603,648 US7559082B2 (en) | 2003-06-25 | 2003-06-25 | Method of assisting an application to traverse a firewall |
US10/603,648 | 2003-06-25 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN1578232A CN1578232A (zh) | 2005-02-09 |
CN100499487C true CN100499487C (zh) | 2009-06-10 |
Family
ID=33418664
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNB2004100618852A Expired - Fee Related CN100499487C (zh) | 2003-06-25 | 2004-06-25 | 帮助应用穿越防火墙的方法 |
Country Status (5)
Country | Link |
---|---|
US (1) | US7559082B2 (zh) |
EP (1) | EP1492299A3 (zh) |
JP (1) | JP2005018769A (zh) |
KR (1) | KR20050001397A (zh) |
CN (1) | CN100499487C (zh) |
Families Citing this family (42)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2006510093A (ja) * | 2002-12-11 | 2006-03-23 | コーニンクレッカ フィリップス エレクトロニクス エヌ ヴィ | 文書提供方法、文書提供システム、メディアプレーヤー、情報キャリア及びコンピュータプログラムプロダクツ |
US7509673B2 (en) * | 2003-06-06 | 2009-03-24 | Microsoft Corporation | Multi-layered firewall architecture |
US7308711B2 (en) * | 2003-06-06 | 2007-12-11 | Microsoft Corporation | Method and framework for integrating a plurality of network policies |
US7409707B2 (en) * | 2003-06-06 | 2008-08-05 | Microsoft Corporation | Method for managing network filter based policies |
US7260840B2 (en) * | 2003-06-06 | 2007-08-21 | Microsoft Corporation | Multi-layer based method for implementing network firewalls |
US7574603B2 (en) * | 2003-11-14 | 2009-08-11 | Microsoft Corporation | Method of negotiating security parameters and authenticating users interconnected to a network |
GB2416879B (en) * | 2004-08-07 | 2007-04-04 | Surfcontrol Plc | Device resource access filtering system and method |
US7784096B2 (en) * | 2004-11-15 | 2010-08-24 | Microsoft Corporation | Outgoing connection attempt limiting to slow down spreading of viruses |
US7640346B2 (en) * | 2005-02-01 | 2009-12-29 | Microsoft Corporation | Dispatching network connections in user-mode |
CN100414929C (zh) * | 2005-03-15 | 2008-08-27 | 华为技术有限公司 | 一种移动互联网协议网络中的报文传送方法 |
JP4507104B2 (ja) * | 2005-08-03 | 2010-07-21 | 日本電気株式会社 | 情報処理装置、通信制御方法および通信制御用プログラム |
RU2422886C2 (ru) * | 2005-09-12 | 2011-06-27 | Майкрософт Корпорейшн | Обеспечение согласованного прохода брандмауэра, имеющего информацию о приложении |
US8122492B2 (en) * | 2006-04-21 | 2012-02-21 | Microsoft Corporation | Integration of social network information and network firewalls |
US8079073B2 (en) * | 2006-05-05 | 2011-12-13 | Microsoft Corporation | Distributed firewall implementation and control |
US8176157B2 (en) * | 2006-05-18 | 2012-05-08 | Microsoft Corporation | Exceptions grouping |
US7886351B2 (en) * | 2006-06-19 | 2011-02-08 | Microsoft Corporation | Network aware firewall |
US8869262B2 (en) * | 2006-08-03 | 2014-10-21 | Citrix Systems, Inc. | Systems and methods for application based interception of SSL/VPN traffic |
US8495181B2 (en) | 2006-08-03 | 2013-07-23 | Citrix Systems, Inc | Systems and methods for application based interception SSI/VPN traffic |
US8099774B2 (en) * | 2006-10-30 | 2012-01-17 | Microsoft Corporation | Dynamic updating of firewall parameters |
US8302179B2 (en) * | 2006-12-13 | 2012-10-30 | Avaya Inc. | Embedded firewall at a telecommunications endpoint |
US20080244723A1 (en) * | 2007-03-27 | 2008-10-02 | Microsoft Corporation | Firewall Restriction Using Manifest |
US8392981B2 (en) * | 2007-05-09 | 2013-03-05 | Microsoft Corporation | Software firewall control |
US8307415B2 (en) * | 2007-05-09 | 2012-11-06 | Microsoft Corporation | Safe hashing for network traffic |
US8166534B2 (en) * | 2007-05-18 | 2012-04-24 | Microsoft Corporation | Incorporating network connection security levels into firewall rules |
US8370919B2 (en) * | 2007-06-26 | 2013-02-05 | Microsoft Corporation | Host firewall integration with edge traversal technology |
US8955088B2 (en) * | 2007-11-07 | 2015-02-10 | Futurewei Technologies, Inc. | Firewall control for public access networks |
US9418219B2 (en) * | 2008-04-11 | 2016-08-16 | Microsoft Technology Licensing, Llc | Inter-process message security |
CN102598007B (zh) | 2009-05-26 | 2017-03-01 | 韦伯森斯公司 | 有效检测采指纹数据和信息的系统和方法 |
US8612541B2 (en) * | 2011-04-29 | 2013-12-17 | Blue Coat Systems, Inc. | Method and apparatus for multi-tenant policy management in a network device |
IL221975A (en) | 2012-09-19 | 2015-02-26 | Tufin Software Technologies Ltd | A method and device for managing connectivity between resources in a computer network |
US9560014B2 (en) | 2013-01-23 | 2017-01-31 | Mcafee, Inc. | System and method for an endpoint hardware assisted network firewall in a security environment |
US9258315B2 (en) * | 2014-01-13 | 2016-02-09 | Cisco Technology, Inc. | Dynamic filtering for SDN API calls across a security boundary |
DK3410335T3 (da) * | 2014-06-24 | 2021-11-01 | Virsec Systems Inc | Automatiseret kodelåsning til reduktion af angrebsoverfladen for software |
US9621588B2 (en) | 2014-09-24 | 2017-04-11 | Netflix, Inc. | Distributed traffic management system and techniques |
US11252190B1 (en) * | 2015-04-23 | 2022-02-15 | Amazon Technologies, Inc. | Limited access policy bypass |
US9900285B2 (en) * | 2015-08-10 | 2018-02-20 | International Business Machines Corporation | Passport-controlled firewall |
TW201926108A (zh) * | 2017-12-04 | 2019-07-01 | 和碩聯合科技股份有限公司 | 網路安全系統及其方法 |
US11218508B2 (en) * | 2018-06-27 | 2022-01-04 | Cisco Technology, Inc. | Assurance of security rules in a network |
WO2020060124A1 (ko) * | 2018-09-19 | 2020-03-26 | 삼성전자 주식회사 | 패킷을 필터링하는 전자 장치 및 그 작동 방법 |
CN109088886B (zh) * | 2018-09-29 | 2021-10-01 | 郑州云海信息技术有限公司 | 在防火墙上监控策略的管理方法和装置 |
US11522869B2 (en) * | 2020-08-19 | 2022-12-06 | Lenovo (Singapore) Pte. Ltd. | User approval of application communication based on location or domain name for device |
CN114499948A (zh) * | 2021-12-23 | 2022-05-13 | 麒麟软件有限公司 | 一种Linux防火墙动态策略处理方法、装置及存储介质 |
Family Cites Families (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5826014A (en) * | 1996-02-06 | 1998-10-20 | Network Engineering Software | Firewall system for protecting network elements connected to a public network |
US5828833A (en) * | 1996-08-15 | 1998-10-27 | Electronic Data Systems Corporation | Method and system for allowing remote procedure calls through a network firewall |
US5987611A (en) | 1996-12-31 | 1999-11-16 | Zone Labs, Inc. | System and methodology for managing internet access on a per application basis for client computers connected to the internet |
US5943478A (en) | 1997-04-04 | 1999-08-24 | Flash Communications, Inc. | System for immediate popup messaging across the internet |
US6345361B1 (en) | 1998-04-06 | 2002-02-05 | Microsoft Corporation | Directional set operations for permission based security in a computer system |
US6366912B1 (en) | 1998-04-06 | 2002-04-02 | Microsoft Corporation | Network security zones |
US6233688B1 (en) * | 1998-06-30 | 2001-05-15 | Sun Microsystems, Inc. | Remote access firewall traversal URL |
US6321334B1 (en) | 1998-07-15 | 2001-11-20 | Microsoft Corporation | Administering permissions associated with a security zone in a computer system security model |
US6925495B2 (en) * | 2000-07-13 | 2005-08-02 | Vendaria Media, Inc. | Method and system for delivering and monitoring an on-demand playlist over a network using a template |
JP2002108729A (ja) * | 2000-09-29 | 2002-04-12 | Toshiba Corp | ネットワーク接続装置及び同装置に適用されるファイアウォール制御プログラムを記憶したコンピュータ読み取り可能な記憶媒体 |
JP3775196B2 (ja) * | 2000-09-29 | 2006-05-17 | 株式会社日立製作所 | ネットワークアクセス制御装置,その制御方法,その制御システム及び通信サービス方法 |
US7533409B2 (en) * | 2001-03-22 | 2009-05-12 | Corente, Inc. | Methods and systems for firewalling virtual private networks |
US7000006B1 (en) * | 2001-05-31 | 2006-02-14 | Cisco Technology, Inc. | Implementing network management policies using topology reduction |
WO2003083692A1 (en) * | 2002-03-27 | 2003-10-09 | First Virtual Communications | System and method for traversing firewalls with protocol communications |
US7146638B2 (en) * | 2002-06-27 | 2006-12-05 | International Business Machines Corporation | Firewall protocol providing additional information |
US20040128545A1 (en) * | 2002-12-31 | 2004-07-01 | International Business Machines Corporation | Host controlled dynamic firewall system |
-
2003
- 2003-06-25 US US10/603,648 patent/US7559082B2/en not_active Expired - Fee Related
-
2004
- 2004-05-12 EP EP04011283A patent/EP1492299A3/en not_active Withdrawn
- 2004-06-22 JP JP2004184007A patent/JP2005018769A/ja active Pending
- 2004-06-24 KR KR1020040047386A patent/KR20050001397A/ko not_active Application Discontinuation
- 2004-06-25 CN CNB2004100618852A patent/CN100499487C/zh not_active Expired - Fee Related
Also Published As
Publication number | Publication date |
---|---|
JP2005018769A (ja) | 2005-01-20 |
KR20050001397A (ko) | 2005-01-06 |
US7559082B2 (en) | 2009-07-07 |
CN1578232A (zh) | 2005-02-09 |
EP1492299A2 (en) | 2004-12-29 |
EP1492299A3 (en) | 2010-07-21 |
US20050005165A1 (en) | 2005-01-06 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN100499487C (zh) | 帮助应用穿越防火墙的方法 | |
US20210029547A1 (en) | System and method for filtering access points presented to a user and locking onto an access point | |
US9288185B2 (en) | Software firewall control | |
US8799441B2 (en) | Remote computer management when a proxy server is present at the site of a managed computer | |
US8321927B2 (en) | Network aware firewall | |
US8166534B2 (en) | Incorporating network connection security levels into firewall rules | |
AU2014203463B2 (en) | Method and system for managing a host-based firewall | |
US9590993B2 (en) | Filtering kernel-mode network communications | |
JP4743911B2 (ja) | 分散コンピュータ・ネットワークに接続されたデバイスへの保護エージェントの自動配備 | |
KR20050062368A (ko) | 방화벽 서비스 관리를 위한 객체 모델 | |
JP4082613B2 (ja) | 通信サービスを制限するための装置 | |
GB2380279A (en) | Computer firewall system user interface | |
US8161162B1 (en) | Remote computer management using network communications protocol that enables communication through a firewall and/or gateway | |
KR20040065674A (ko) | 통합형 호스트 기반의 보안 시스템 및 방법 | |
TWI526872B (zh) | 用於隔離一受管理伺服器之系統及其相關方法及非暫時性電腦可讀儲存媒體 | |
KR102184114B1 (ko) | 네트워크 보안 서비스를 제공하기 위한 방법 및 이를 위한 장치 | |
KR101059698B1 (ko) | 에이피아이 후킹 모듈을 포함하는 휴대용 저장장치 및 이를 이용한 개인 방화벽 운용 방법 | |
Susilo et al. | Personal firewall for Pocket PC 2003: design & implementation | |
JP4412489B2 (ja) | 不正アクセスに対する防御ポリシ作成システム及び方法とそのプログラム | |
US8504665B1 (en) | Management of a device connected to a remote computer using the remote computer to effect management actions | |
KR20030017063A (ko) | 퍼스널 컴퓨터의 방화벽을 위한 시스템 | |
EP2899667B1 (en) | System for controlling access to peripheral devices | |
Korba et al. | Towards policy-driven agent system development and management |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
ASS | Succession or assignment of patent right |
Owner name: MICROSOFT TECHNOLOGY LICENSING LLC Free format text: FORMER OWNER: MICROSOFT CORP. Effective date: 20150506 |
|
C41 | Transfer of patent application or patent right or utility model | ||
TR01 | Transfer of patent right |
Effective date of registration: 20150506 Address after: Washington State Patentee after: Micro soft technique license Co., Ltd Address before: Washington State Patentee before: Microsoft Corp. |
|
CF01 | Termination of patent right due to non-payment of annual fee | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20090610 Termination date: 20200625 |