IP3 2023 – Network Security (LOT 14931)

This lot discloses an apparatus and a method for deploying a firewall on an SDN, which is capable of minimizing network resource waste and a network to which the apparatus or the method is applied. The data capacity of the network can be reduced by transmitting the newly merged firewall of an appropriate capacity to the switch in response to the firewall rule, which is encrypted, of the host included in the SDN. In this case, the switch is not the entire switch of the SDN, but some selected switches that perform the optimal effect. Since the host monitor receives the firewall rule of the host periodically, it is possible to quickly and accurately cope with the change in the SDN environment.