Wireless local area network infrastructure devices having improved firewall features

Assignee

• MOTOROLA SOLUTIONS, INC. · US

Inventors

• Rajesh Vijayakumar · Viralimalai, IN
• Nicolas S. Dade · Santa Cruz, US
• Jacob Thomas · San Jose, US
• Anurag Verma · Hsinchu, TW

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L12/413
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Methods and systems are provided for improving a firewall implemented at a WLAN infrastructure device (WID). The WID includes a stateful firewall that implements firewall rules based on an ESSID of the WID to specify whether traffic is allowed to or from the ESSID. For example, in one implementation of such a firewall rule, packets that are required to be sent out on all wired ports can be blocked from being flooded out on WLANs (e.g., the packet is allowed to pass only to the wired ports). A method and system are provided for preventing a malicious wireless client device (WCD) that is transmitting undesirable traffic from using RF resources by deauthenticating the malicious WCD to remove it from the WLAN and blacklisting it to prevent it from rejoining the WLAN for a time period. Method and systems are also provided for either “on-demand” and/or predicatively communicating state information regarding an existing firewall session.