US 12,224,980 B2
Systems and methods for dynamic firewall policy configuration
Jin-Gen Wang, Lafayette, CO (US); and Travis D. Ewert, Highlands Ranch, CO (US)
Assigned to Level 3 Communications, LLC, Denver, CO (US)
Filed by Level 3 Communications, LLC, Denver, CO (US)
Filed on Jun. 27, 2024, as Appl. No. 18/756,295.
Application 18/756,295 is a continuation of application No. 18/374,962, filed on Sep. 29, 2023, granted, now 12,028,317.
Application 18/374,962 is a continuation of application No. 17/966,805, filed on Oct. 15, 2022, granted, now 11,777,901, issued on Oct. 3, 2023.
Application 17/966,805 is a continuation of application No. 17/011,133, filed on Sep. 3, 2020, granted, now 11,477,162, issued on Oct. 18, 2022.
Application 17/011,133 is a continuation of application No. 16/653,882, filed on Oct. 15, 2019, granted, now 10,771,432, issued on Sep. 8, 2020.
Application 16/653,882 is a continuation of application No. 15/440,335, filed on Feb. 23, 2017, granted, now 10,462,104, issued on Oct. 29, 2019.
Claims priority of provisional application 62/301,392, filed on Feb. 29, 2016.
Prior Publication US 2024/0356894 A1, Oct. 24, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04L 41/08 (2022.01); H04L 41/0869 (2022.01); H04L 41/0893 (2022.01)
CPC H04L 63/0227 (2013.01) [H04L 41/0869 (2013.01); H04L 41/0886 (2013.01); H04L 41/0893 (2013.01); H04L 63/0272 (2013.01)] 11 Claims
OG exemplary drawing
 
1. A method for firewall configuration comprising:
receiving, at a processing device, input defining a firewall policy for a firewall managing access to a subnet of network components deployed within a communications network, the firewall policy including a firewall configuration for the firewall and a network component configuration for a network component of the subnet of network components;
executing, using the processing device and a virtual network component, first instructions associated with the firewall configuration;
executing, using the processing device and the virtual network component, second instructions associated with the network component configuration;
determining, based on the execution of the first instructions, that the firewall configuration is valid;
determining, based on the execution of the second instructions, that the network component configuration is valid;
automatically configuring, using the processing device, the firewall configuration at the firewall and the network component configuration at the network component in response to determining that the firewall configuration and the network component configuration are valid; and
activating, using the processing device, the firewall within the communications network to manage traffic to and from the subnet.