公开(公告)号：US09584427B2

公开(公告)日：2017-02-28

申请号：US14463234

申请日：2014-08-19

Applicant: Citrix Systems, Inc.

Inventor： Ashwin Jagadish ,  Saravana Annamalaisami ,  Muthukumar Shunmugiah ,  Mohit Prakash Saxena

IPC: H04W80/04 ,  H04L12/805 ,  H04L12/46

CPC classification number: H04L47/365 ,  H04L12/4641

Abstract: Systems and methods of providing fine grained control over MSS values of transport layer connections. A device intermediary to a plurality of clients and a plurality of servers can identify a first MSS value based on a MTU value of a VLAN interface responsive to a request to establish a transport layer connection. Device determines that a MSS value of the VLAN is less than the first MSS value. Device updates, responsive to the determination, the first MSS value to a second MSS value corresponding to the MSS value of the VLAN. Device determines that an MSS value specified by a profile configured for a virtual server of the device is less than the second MSS value. Device updates the second MSS value to the MSS value of the profile responsive to determining that the MSS value specified by the profile is less than the second MSS value.

Abstract translation: 对传输层连接的MSS值提供细粒度控制的系统和方法。 响应于建立传输层连接的请求，多个客户端和多个服务器的设备中介可以基于VLAN接口的MTU值来识别第一MSS值。 设备确定VLAN的MSS值小于第一个MSS值。 设备更新响应于确定，将第一个MSS值更新为与该VLAN的MSS值对应的第二个MSS值。 设备确定由为设备的虚拟服务器配置的配置文件指定的MSS值小于第二个MSS值。 响应于确定由该配置文件指定的MSS值小于第二MSS值，设备将第二MSS值更新为该配置文件的MSS值。

公开(公告)号：US20140301388A1

公开(公告)日：2014-10-09

申请号：US14245505

申请日：2014-04-04

Applicant: Citrix Systems, Inc.

Inventor： Ashwin Jagadish ,  Mahesh Mylarappa ,  Sandhya Gopinath ,  Saravana Annamalaisami ,  Shashidhara Nanjundaswamy

IPC: H04L12/747

CPC classification number: H04L67/2814 ,  H04L45/7453

Abstract: The present disclosure is directed towards methods and systems for caching packet steering sessions for steering data packets between intermediary devices of a cluster of intermediary devices intermediary to a client and a plurality of servers. A first intermediary device receives a first data packet and determines, from a hash of a tuple of the first packet, a second intermediary device to which to steer the first packet. The first device stores, to a session for storing packet steering information, the identity of the second device and the tuple. The first device receives a second packet having a corresponding tuple that matches the tuple of the first packet and determines, based on a lookup for the session using the tuple of the second packet, that the second device is the intermediary device to which to steer the second packet. The first device steers the second packet to the second device.

Abstract translation: 本公开涉及用于缓存用于在客户机中间的多个中间设备的集群的中间设备和多个服务器之间指导数据分组的分组导向会话的方法和系统。 第一中间设备接收第一数据分组，并且从第一分组的元组的散列中确定第二中介设备来引导第一分组。 第一设备存储分组转向信息的会话，第二设备和元组的身份。 第一设备接收具有与第一分组的元组匹配的对应元组的第二分组，并且基于对使用第二分组的元组的会话的查找确定第二设备是引导其的中间设备 第二个包。 第一设备将第二分组转向第二设备。

公开(公告)号：US10069677B2

公开(公告)日：2018-09-04

申请号：US14245057

申请日：2014-04-04

Applicant: Citrix Systems, Inc.

Inventor： Ashwin Jagadish ,  Saravana Annamalaisami

IPC: G06F15/16 ,  H04L12/24 ,  H04L12/911 ,  H04L12/803

Abstract: The systems and methods of the present solution are directed to collecting log information from multiple nodes in a multi-nodal cluster. Generally, a logging process runs to collect log information from multiple nodes in a multi-nodal cluster, e.g., a cluster of appliances. The logging process collects the log information and merges the collected log information to create a coherent unified log. The logging process may run on a node designated for the purpose. The designated node may be internal or external to the cluster. The logging process determines a topology for the cluster, establishes a communication channel with each active intermediary device identified in the topology, collects log entries from each active intermediary device, each log entry comprising information on network traffic traversing the respective intermediary device, and merges the collected log entries into a unified cluster log comprising information on network traffic traversing the cluster.

公开(公告)号：US20140304325A1

公开(公告)日：2014-10-09

申请号：US14245514

申请日：2014-04-04

Applicant: Citrix Systems, Inc.

Inventor： Krishna Khanal ,  Ashwin Jagadish ,  Saravana Annamalaisami

IPC: H04L29/06

CPC classification number: H04L63/0272 ,  H04L63/0428 ,  H04L63/08

Abstract: The systems and methods of the present solution are directed to providing Entity Tag persistency by a device intermediary to a client and a plurality of servers. An intermediary device between a client and one or more back-end servers can receive an entity requested by the client from an origin server that provides the requested content. The intermediary device can encode the back-end server information onto an ETag of the entity, cache the entity with the encoded ETag and serve the entity with the encoded ETag to the client. In this way, when the client attempts to validate the entity by sending a request including the encoded ETag to the intermediary device, the intermediary device decodes the encoded ETag to extract the identity of the backend server and sends the request to validate the entity to the identified server that originally sent the entity that included the requested content.

Abstract translation: 本解决方案的系统和方法旨在通过设备中介到客户端和多个服务器来提供实体标签持久性。 客户机和一个或多个后端服务器之间的中间设备可以从提供请求的内容的源服务器接收客户端请求的实体。 中间设备可以将后端服务器信息编码到实体的ETag上，用经编码的ETag缓存实体，并向编码的ETag服务实体给客户端。 以这种方式，当客户端尝试通过向中介设备发送包括经编码的ETag的请求来验证实体时，中介设备解码编码的ETag以提取后端服务器的身份，并发送请求以将该实体验证到 最初发送包含所请求内容的实体的服务器。

公开(公告)号：US09497281B2

公开(公告)日：2016-11-15

申请号：US14245505

申请日：2014-04-04

Applicant: Citrix Systems, Inc.

Inventor： Ashwin Jagadish ,  Mahesh Mylarappa ,  Sandhya Gopinath ,  Saravana Annamalaisami ,  Shashidhara Nanjundaswamy

IPC: H04L12/747 ,  H04L29/08 ,  H04L12/743

CPC classification number: H04L67/2814 ,  H04L45/7453

Abstract: The present disclosure is directed towards methods and systems for caching packet steering sessions for steering data packets between intermediary devices of a cluster of intermediary devices intermediary to a client and a plurality of servers. A first intermediary device receives a first data packet and determines, from a hash of a tuple of the first packet, a second intermediary device to which to steer the first packet. The first device stores, to a session for storing packet steering information, the identity of the second device and the tuple. The first device receives a second packet having a corresponding tuple that matches the tuple of the first packet and determines, based on a lookup for the session using the tuple of the second packet, that the second device is the intermediary device to which to steer the second packet. The first device steers the second packet to the second device.

Abstract translation: 本公开涉及用于缓存用于在客户机中间的多个中间设备的集群的中间设备和多个服务器之间指导数据分组的分组导向会话的方法和系统。 第一中间设备接收第一数据分组，并且从第一分组的元组的散列中确定第二中介设备来引导第一分组。 第一设备存储分组转向信息的会话，第二设备和元组的身份。 第一设备接收具有与第一分组的元组匹配的对应元组的第二分组，并且基于对使用第二分组的元组的会话的查找确定第二设备是引导其的中间设备 第二个包。 第一设备将第二分组转向第二设备。

公开(公告)号：US20160057070A1

公开(公告)日：2016-02-25

申请号：US14464585

申请日：2014-08-20

Applicant: Citrix Systems, Inc.

Inventor： Mohit Prakash Saxena ,  Ramanjaneyulu Y. Talla ,  Saravana Annamalaisami ,  Ashwin Jagadish ,  Muthukumar Shunmugiah

IPC: H04L12/863 ,  H04L12/805

CPC classification number: H04L47/6295 ,  H04L47/365 ,  H04L47/628 ,  H04L49/3072

Abstract: This disclosure is directed generally to systems and methods for implementation of Jumbo frames in an existing network stack. In some embodiments, a connection handler of a device receives data having a size greater than an Ethernet frame size. That data includes header data and payload data. The device partitions the data into segments including a first segment and a second segment. The first segment includes the header data and a first portion of the payload data, while the second segment includes a second portion of the payload data. The device stores the first and second segments in first and second network buffers, respectively, of a pool of network buffers. The device forms a packet chain of the first and second network buffers having a size greater than the Ethernet frame size. The device transmits the packet chain via a network connection.

Abstract translation: 本公开一般涉及用于在现有网络堆栈中实现巨型帧的系统和方法。 在一些实施例中，设备的连接处理器接收尺寸大于以太网帧大小的数据。 该数据包括报头数据和有效载荷数据。 该设备将数据分割成包括第一段和第二段的段。 第一段包括报头数据和有效载荷数据的第一部分，而第二段包括有效载荷数据的第二部分。 该设备将第一和第二段分别存储在网络缓冲器池的第一和第二网络缓冲器中。 该设备形成具有大于以太网帧大小的大小的第一和第二网络缓冲器的分组链。 该设备通过网络连接传输分组链。

公开(公告)号：US20170230300A1

公开(公告)日：2017-08-10

申请号：US15443835

申请日：2017-02-27

Applicant: Citrix Systems, Inc.

Inventor： Ashwin Jagadish ,  Saravana Annamalaisami ,  Muthukumar Shunmugiah ,  Mohit Prakash Saxena

IPC: H04L12/805 ,  H04L29/08 ,  H04L12/46

CPC classification number: H04L47/365 ,  H04L12/4641 ,  H04L69/326

Abstract: Systems and methods of providing fine grained control over MSS values of transport layer connections. A device intermediary to a plurality of clients and a plurality of servers can identify a first MSS value based on a MTU value of a VLAN interface responsive to a request to establish a transport layer connection. Device determines that a MSS value of the VLAN is less than the first MSS value. Device updates, responsive to the determination, the first MSS value to a second MSS value corresponding to the MSS value of the VLAN. Device determines that an MSS value specified by a profile configured for a virtual server of the device is less than the second MSS value. Device updates the second MSS value to theMSS value of the profile responsive to determining that the MSS value specified by the profile is less than the second MSS value.

公开(公告)号：US20160057067A1

公开(公告)日：2016-02-25

申请号：US14463234

申请日：2014-08-19

Applicant: CITRIX SYSTEMS, INC.

Inventor： Ashwin Jagadish ,  Saravana Annamalaisami ,  Muthukumar Shunmugiah ,  Mohit Prakash Saxena

IPC: H04L12/805 ,  H04L12/46

CPC classification number: H04L47/365 ,  H04L12/4641

Abstract: Systems and methods of providing fine grained control over MSS values of transport layer connections. A device intermediary to a plurality of clients and a plurality of servers can identify a first MSS value based on a MTU value of a VLAN interface responsive to a request to establish a transport layer connection. Device determines that a MSS value of the VLAN is less than the first MSS value. Device updates, responsive to the determination, the first MSS value to a second MSS value corresponding to the MSS value of the VLAN. Device determines that an MSS value specified by a profile configured for a virtual server of the device is less than the second MSS value. Device updates the second MSS value to the MSS value of the profile responsive to determining that the MSS value specified by the profile is less than the second MSS value.

Abstract translation: 对传输层连接的MSS值提供细粒度控制的系统和方法。 响应于建立传输层连接的请求，多个客户端和多个服务器的设备中介可以基于VLAN接口的MTU值来识别第一MSS值。 设备确定VLAN的MSS值小于第一个MSS值。 设备更新响应于确定，将第一个MSS值更新为与该VLAN的MSS值对应的第二个MSS值。 设备确定由为设备的虚拟服务器配置的配置文件指定的MSS值小于第二个MSS值。 响应于确定由配置文件指定的MSS值小于第二MSS值，设备将第二MSS值更新为配置文件的MSS值。

公开(公告)号：US20140304401A1

公开(公告)日：2014-10-09

申请号：US14245057

申请日：2014-04-04

Applicant: Citrix Systems, Inc.

Inventor： Ashwin Jagadish ,  Saravana Annamalaisami

IPC: H04L12/26

CPC classification number: H04L41/069 ,  H04L41/0853 ,  H04L41/12 ,  H04L47/125 ,  H04L47/827 ,  H04L47/829

Abstract: The systems and methods of the present solution are directed to collecting log information from multiple nodes in a multi-nodal cluster. Generally, a logging process runs to collect log information from multiple nodes in a multi-nodal cluster, e.g., a cluster of appliances. The logging process collects the log information and merges the collected log information to create a coherent unified log. The logging process may run on a node designated for the purpose. The designated node may be internal or external to the cluster. The logging process determines a topology for the cluster, establishes a communication channel with each active intermediary device identified in the topology, collects log entries from each active intermediary device, each log entry comprising information on network traffic traversing the respective intermediary device, and merges the collected log entries into a unified cluster log comprising information on network traffic traversing the cluster.

Abstract translation: 本解决方案的系统和方法旨在从多节点群集中的多个节点收集日志信息。 通常，记录过程运行以从多节点集群（例如，设备集群）中的多个节点收集日志信息。 日志记录过程收集日志信息并合并收集的日志信息以创建一致的统一日志。 记录过程可以在为此目的指定的节点上运行。 指定的节点可以是集群的内部或外部。 记录过程确定集群的拓扑，与拓扑中标识的每个活动中间设备建立通信通道，从每个活动中间设备收集日志条目，每个日志条目包括穿过相应中间设备的网络流量信息，并合并 将日志条目收集到统一的集群日志中，其中包括穿过集群的网络流量信息。

公开(公告)号：US10320696B2

公开(公告)日：2019-06-11

申请号：US15443835

申请日：2017-02-27

Applicant: Citrix Systems, Inc.

Inventor： Ashwin Jagadish ,  Saravana Annamalaisami ,  Muthukumar Shunmugiah ,  Mohit Prakash Saxena

IPC: H04L12/805 ,  H04L29/08 ,  H04L12/46

Abstract: Systems and methods of providing fine grained control over MSS values of transport layer connections. A device intermediary to a plurality of clients and a plurality of servers can identify a first MSS value based on a MTU value of a VLAN interface responsive to a request to establish a transport layer connection. Device determines that a MSS value of the VLAN is less than the first MSS value. Device updates, responsive to the determination, the first MSS value to a second MSS value corresponding to the MSS value of the VLAN. Device determines that an MSS value specified by a profile configured for a virtual server of the device is less than the second MSS value. Device updates the second MSS value to the MSS value of the profile responsive to determining that the MSS value specified by the profile is less than the second MSS value.