FIELD: information technology.
SUBSTANCE: invention relates to the architecture of a multi-level firewall and methods of multi-level packet filtering. The firewall infrastructure contains: a set of level processes, where each level process can process level parametres for a packet, associated with that level process, and each level process can also send a classification query, which includes level parametres; and a first firewall tool, which includes: a level interface for receiving first level parametres from the requesting level process and for returning action to the requesting level process, where the requesting level process is one of the said set of level processes, a set of filters and a search component for identification of at least one matching filter from the said set of filters and for identification from this matching filter, action, which is subject to returning by the level interface.
EFFECT: reduced excess execution of syntax analysis and interpretation of packets using levels in a network stack and firewall.
28 cl, 9 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| SYSTEM AND METHOD FOR VIRTUALISATION OF MOBILE NETWORK FUNCTION | 2014 |
|
RU2643451C2 |
| METHOD OF UPLOADED NETWORK STACK CONNECTION TIMING AND TRANSFER TO NETWORK STACK | 2003 |
|
RU2336652C2 |
| METHOD FOR RECEIVING REPORT, NETWORK DEVICE, METHOD FOR REPORTING AND BASE STATION | 2018 |
|
RU2725166C1 |
| MULTIMEDIA ENVIRONMENT "PRESENCE" SERVER BASED ON INTERNET-PROTOCOL | 2002 |
|
RU2315436C2 |
| CONFIGURATION OF FIREWALL WITH CLIENT PARTICIPATION | 2005 |
|
RU2370903C2 |
| HOME BASE STATION | 2008 |
|
RU2448428C2 |
| AUTOMATION ARCHITECTURE OF AUTOMATED SYSTEMS | 2015 |
|
RU2714726C2 |
| METHOD AND APPARATUS FOR INTERWORKING AUTHORISATION OF DUAL STACK OPERATION | 2007 |
|
RU2424628C2 |
| CHANNEL SWITCHED AND PACKET SWITCHED COMMUNICATION | 2008 |
|
RU2463744C2 |
| DETECTION AND MITIGATION OF HARM FROM THE MALICIOUS CALL OF SENSITIVE CODE | 2015 |
|
RU2665897C2 |
