Forward Or Drop
This technology stops hackers from exfiltrating confidential data by setting rules for which packets to forward and which to drop. Centripetal Networks was granted a patent in June 2017.
The Forward or Drop/ Exfiltration technique restricts packets with sensitive information from traveling outside networks or even internally within networks, while allowing those without sensitive information to travel freely.
Cisco’s Catalyst 9000 series switches, as well as the ASR 1000 and ISR Router 1000 and 4000 routers, are all powered by the IOS XE operating system. IOS XE can apply rules deciding which packets to filter based on Group Tag Labels the Cisco devices apply to data packets streaming in and out of them.
The Cisco products introduced Centripetal Networks’ patented technology to that process, the judge found.
Within Cisco, that rule-based process of comparing tags to block some packets is known as its quarantine rule.