Patent · US Active

Zone-based firewall policy model for a virtualized data center

US8516241B2 · kind B2 · utility

33Cited by

0References

23Claims

0Family size

Assignee

Cisco Technology, Inc. · US

Inventors

David W. Chang · Milpitas, US
Abhijit Patra · Saratoga, US
Nagaraj Bagepalli · Fremont, US
Rajesh Kumar Sethuraghavan · San Jose, US

Key dates

Filing date	Jul 12, 2011
Grant date	Aug 20, 2013
Priority date	—
Expiry date	Sep 27, 2031

Classification

Technology area (CPC G)Physics
CPC primaryG06F2009/45595
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques are provided for implementing a zone-based firewall policy. At a virtual network device, information is defined and stored that represents a security management zone for a virtual firewall policy comprising one or more common attributes of applications associated with the security zone. Information representing a firewall rule for the security zone is defined and comprises first conditions for matching common attributes of applications associated with the security zone and an action to be performed on application traffic. Parameters associated with the application traffic are received that are associated with properly provisioned virtual machines. A determination is made whether the application traffic parameters satisfy the conditions of the firewall rule and in response to determining that the conditions are satisfied, the action is performed.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.