Patent · US Active

Method and system for creating a demilitarized zone using network stack instances

US7633864B2 · kind B2 · utility

15Cited by

1References

20Claims

0Family size

Assignee

Sun Microsystems Inc. · US

Inventors

Darrin P. Johnson · Mountain View, US
Darren J. Reed · Melbourne, AU
Erik Nordmark · Mountain View, US

Key dates

Filing date	Dec 20, 2006
Grant date	Dec 15, 2009
Priority date	—
Expiry date	Jan 22, 2028

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0272
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method for routing a packet. The method includes receiving the packet from a first network into a network interface card (NIC), where the NIC is operatively connected to a host and the host includes a first virtual network stack and a second virtual network stack. The method further includes sending the packet to a first virtual network stack, where the first virtual network stack includes a first filter, a first network layer, and a first transport layer. In addition, the first filter, the first network layer, and the first transport layer are isolated from the second virtual network stack. If the packet is permitted through the first filter in the first virtual network stack, then the packet is sent to a first virtual NIC.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.