US 12,003,486 B2
Cloud-delivered firewall rules for controlling commands sent to devices based on operational tolerance limits
Robert Edgar Barton, Richmond (CA); David Hanes, Lewisville, NC (US); Gonzalo Salgueiro, Raleigh, NC (US); and Sebastian Jeuk, Munich (DE)
Assigned to Cisco Technology, Inc., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on Aug. 9, 2021, as Appl. No. 17/397,230.
Prior Publication US 2023/0042610 A1, Feb. 9, 2023
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/0263 (2013.01) [H04L 63/0876 (2013.01); H04L 63/102 (2013.01); H04L 63/20 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
receiving a manufacturer usage description (MUD) file including a firewall rule, the firewall rule allowing or denying a transmission of a command to a device based at least in part on an operational tolerance associated with the device;
receiving communication data to be sent to the device, the communication data including the command;
receiving an indication of a current operational state of the device;
determining a predicted operational state of the device based at least in part on the command included in the communication data and the current operational state of the device;
determining that the predicted operational state of the device is permitted by the operational tolerance associated with the device; and
sending the communication data to the device based at least in part on determining that the predicted operational state of the device is permitted by the operational tolerance associated with the device.