公开(公告)号：US11218447B2

公开(公告)日：2022-01-04

申请号：US15911024

申请日：2018-03-02

Applicant: DISNEY ENTERPRISES, INC.

Inventor： Mark G. Cloud ,  Robert K. Floyd, III ,  Jeffrey Sol Mansukhani

IPC: H04L29/06 ,  H04L12/24

Abstract: A firewall manager periodically accesses a set of servers to identify the various services currently active on each server. The firewall manager also periodically accesses a set of firewalls configured to protect those servers to identify various firewall rules implemented by those firewalls. The firewall manager then compares the services data with the rules data to identify any obsolete firewall rules that are (i) defined based on an IP address not currently allocated to any of the servers or (ii) defined based on a port of an active server that is not associated with any service running on server. Such rules are considered obsolete. Upon identifying any obsolete firewall rules, the firewall manager accesses the firewalls associated with those rules and then removes the obsolete rules.

公开(公告)号：US12120014B1

公开(公告)日：2024-10-15

申请号：US18455354

申请日：2023-08-24

Applicant: DISNEY ENTERPRISES, INC.

Inventor： Andrew W. Mason ,  Thomas Gregory Dowers ,  Mark G. Cloud

IPC: G06F13/00 ,  H04L45/02 ,  H04L45/12 ,  H04L45/44

CPC classification number: H04L45/02 ,  H04L45/123 ,  H04L45/44

Abstract: One embodiment of a method for migrating a multi-region network including multiple autonomous systems into a single autonomous system comprises allocating a unique identifier to each autonomous system of a plurality of autonomous systems, wherein each autonomous system includes a corresponding regional route reflector; tagging the routing instruction advertised to a global route reflector by a regional route reflector included in one of the plurality of autonomous systems with the unique identifier of the autonomous system corresponding to the regional route reflector that advertised the routing instruction; instructing the regional route reflectors included in the plurality of autonomous systems to ignore routing instructions received from the global route reflector that are tagged with one of the unique identifiers allocated to the plurality of autonomous systems; and migrating one autonomous system of the plurality of autonomous systems by: removing the unique identifier from routing instructions advertised to the global route reflector from the regional route reflector; and instructing the regional route reflector to apply routing instructions received from the global route reflector that are tagged with the unique identifier.