Firewall Control Protocol Framework and Requirements
draft-kuthan-fcp-02
| Document | Type |
Expired Internet-Draft
(individual)
Expired & archived
|
|
|---|---|---|---|
| Authors | J Kuthan , Jonathan Rosenberg | ||
| Last updated | 2000-11-29 | ||
| RFC stream | (None) | ||
| Intended RFC status | (None) | ||
| Formats | |||
| Stream | Stream state | (No stream defined) | |
| Consensus boilerplate | Unknown | ||
| RFC Editor Note | (None) | ||
| IESG | IESG state | Expired | |
| Telechat date | (None) | ||
| Responsible AD | (None) | ||
| Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
The purpose of this document is to collect and put under discussion requirements for a protocol allowing for decomposition of application-awareness from packet processing in firewalls. The protocol will be used by application-aware entities to control packet flows of applications traversing firewalls dynamically. This kind of control allows applications using session control protocols to traverse firewalls while still retaining restrictive packet filtering policy. Network management tools may also utilize the protocol to manage packet-processing policies. We suggest an extensible framework that may be used for management of arbitrary per-flow control states in network nodes.
Authors
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)