BT.Traffic Filtering
Jump to navigation
Jump to search
Page maturity
This page has maturity level 3 (usable)
This page has maturity level 3 (usable)
BT | Traffic Filtering | Version: | 0.1 | ||
---|---|---|---|---|---|
Document type: | Building Block Type | Owner: |
Description
This Building Block Type belongs to Working Area Network (NW). A Traffic Filtering facility is used to enforce "transport zone protection" by protection of the borders of these zones. This task is carried out by means of filtering the data traffic that is traversing from one zone to another. Commonly, filtering is being done by means of a preconfigured list of rules that determine how the data traffic should be treated. These rules contain:
- matches, in which one or more traffic characteristics are compared with predetermined values. Examples of traffic characteristics are:
- network addresses;
- transport protocol types;
- transport protocol session ID's (port numbers);
- message formats;
- message content;
- connection state.
- one or more actions, that prescribes how to handle data traffic that matches the rule. Examples of actions are:
- forward the traffic;
- manipulate the data in the traffic;
- reroute the traffic;
- copy the traffic;
- deny (drop) the traffic.
Icon
The icon below can be used to represent this infrastructure function in graphical Pattern representations that it might be part of:
Variants of this Building Block Type
The following variants of this function have been defined:
No Pattern Variants based on this Pattern Type (yet)
Pattern Types using this Building Block Type
The following Pattern Types use this function:
Pattern Variant | Brief Description | Owner | Maturity |
---|---|---|---|
PAT.Access Security | Access Security | J.A.H. Schoonderbeek | 3 |
PAT.Data Zone Protection | Data Zone Protection | J.A.H. Schoonderbeek | 3 |