	US 12,363,071 B2
	Dynamic firewall configuration
Alexander Gurney, Elkins Park, PA (US)
Assigned to Comcast Cable Communications, LLC, Philadelphia, PA (US)
Filed by Comcast Cable Communications, LLC, Philadelphia, PA (US)
Filed on May 10, 2024, as Appl. No. 18/661,001.
Application 18/661,001 is a continuation of application No. 18/296,702, filed on Apr. 6, 2023, granted, now 12,010,096.
Application 18/296,702 is a continuation of application No. 17/166,816, filed on Feb. 3, 2021, granted, now 11,652,793, issued on May 16, 2023.
Application 17/166,816 is a continuation of application No. 15/893,360, filed on Feb. 9, 2018, granted, now 10,951,582, issued on Mar. 16, 2021.
Prior Publication US 2024/0430230 A1, Dec. 26, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04L 61/4511 (2022.01)

CPC H04L 63/0236 (2013.01) [H04L 63/0263 (2013.01); H04L 63/0281 (2013.01); H04L 63/101 (2013.01); H04L 63/108 (2013.01); H04L 61/4511 (2022.05)]

34 Claims

1. One or more non-transitory computer-readable media storing processor-executable instructions that, when executed by at least one processor, cause the at least one processor to:

receive, by a firewall service, based on a first domain name system (DNS) request comprising a uniform resource locator (URL), a response comprising a first Internet Protocol (IP) address associated with the URL and a time-to-live;

generate, based on the response, a first firewall rule, wherein the first firewall rule permits access to the first IP address until the time-to-live expires;

restrict, based on an expiration of the time-to-live, access to the first IP address;

receive a second DNS request; and

generate, based on the second DNS request, a second firewall rule, wherein the second firewall rule permits access to a second IP address associated with the URL.