Method and apparatus for managing internetwork and intranetwork activity

Abstract

In accordance with the present invention, a network management program () is provided that manages the communication of data packets between an intranetwork () and an internetwork (). An operator of a computer connected to the intranetwork () inputs vital information regarding users of computers connected to the intranetwork (), mapping information regarding computers connected to the intranetwork (), and policies to be applied against those users and computers, using a graphical user interface (GUI). The GUI () communicates the vital user information, mapping information and policies to a database () which stores and organizes the vital user information, mapping information and policies. A filter executive () optimizes the policies stored in the database () into a set of rules for each user and passes the rules to a filter engine (). The filter engine () filters all outbound data packets transmitted from the intranetwork () to the internetwork () and verifies all inbound data packets from the internetwork () according to the rules provided by the filter executive (). The filter executive () also communicates the mapping information stored in the database () to a naming service manager () which further updates the mapping information and returns the updated mapping information to the filter executive (). Consequently, the filter executive () filters the data packets according to the most recent mapping information.