Network access control
US11025631B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | May 2, 2017 |
| Grant date | Jun 1, 2021 |
| Priority date | — |
| Expiry date | Sep 18, 2037 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L47/24
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
This disclosure provides a method and device for controlling network access. According to the method, an aggregation switch may configure thereon an ACL rule comprising a first network segment and a second network segment, wherein the first network segment and the second network segment correspond to a same user group or different user groups, or the first network segment corresponds to a user group and the second network segment corresponds to a resource group. The aggregation switch may, after receiving a user packet from an access switch, match a source IP address of the user packet with the first network segment, and a destination IP address of the user packet with the second network segment. If the source IP address of the user packet matches with the first network segment and the destination IP address of the user packet matches with the second network segment, the user packet is discarded.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.