logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 12463941 B1

PDFFull Text
Date of Patent:
Nov. 04, 2025

Filed:

Dec. 20, 2022

Providing a network firewall between a virtualized environment and a host processing system

Applicant:

Microsoft Technology Licensing, Llc, Redmond, WA (US);

Inventors:

Keith Edgar Horton, North Bend, WA (US);

Alan Thomas Gavin Jowett, Eagle MT, UT (US);

Andrew Mario Beltrano, Colorado Springs, CO (US);

Catalin-Emil Fetoiu, Redmond, WA (US);

Guillaume Philippe Adrien Hetier, Redmond, WA (US);

Matthew Yutaka Ige, Seattle, WA (US);

Mitchell James Schmidt, Bellevue, WA (US);

Randy Joseph Miller, Newcastle, WA (US);

Assignee:

MICROSOFT TECHNOLOGY LICENSING, LLC, Redmond, WA (US);

Attorneys:

Newport IP, LLC

Jacob P. Rohwer

Primary Examiner:

Cheng-Feng Huang

Int. Cl.
CPC ...
H04L 9/40 (2022.01); G06F 9/455 (2018.01);
U.S. Cl.
CPC ...
H04L 63/0254 (2013.01); G06F 9/45558 (2013.01); H04L 63/0209 (2013.01); H04L 63/0263 (2013.01); H04L 63/0272 (2013.01); G06F 2009/45587 (2013.01); G06F 2009/45595 (2013.01);
Abstract

A network firewall is disclosed that operates between a virtualized environment and the processing system that provides the virtualized environment. The network firewall filters network traffic generated by and destined for program components executing in the virtualized environment. The network firewall can be located in a hypervisor, a flow steering engine, or at another location between the virtualized environment and the processing system. The network firewall utilizes a firewall policy that can be shared with a network firewall on the processing system that filters network traffic originating at or destined for the processing system. The network firewall can filter network traffic based upon a unique identifier assigned to a virtualized environment, upon port numbers assigned to program components in a virtualized environment, or upon profiles assigned to network interfaces. The network firewall can also filter loopback traffic between a guest operating system (OS) and a host OS.

Find Patent Forward Citations

Loading…