Device and method for access control list conversion

Device and method for access control list conversion

It is disclosed a method to convert an ordered access control list, ACL, to an unordered access control list. The method comprises receiving an ordered access control list of ordered rules (406), wherein each of the ordered rules includes an address range and an action. If two address ranges in the...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: DANI, Asang Kamalakar, SWEENEY, Adam James
Format: Patent
Sprache:eng ; fre ; ger
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:It is disclosed a method to convert an ordered access control list, ACL, to an unordered access control list. The method comprises receiving an ordered access control list of ordered rules (406), wherein each of the ordered rules includes an address range and an action. If two address ranges in the ordered rules overlap, a corresponding action of a preceding rule overrides a corresponding action of a subsequent rule. The ordered access control list is converted to the unordered access control list (408-418), including a plurality of independent rules that each include a corresponding address range that is non-overlapping with other address ranges of the plurality of independent rules. The unordered access control list is used by a network element to make forwarding decisions for processing network data. The network element provides access to a network, and consists of e.g. a hub, switch, router, bridge or gateway.