公开(公告)号：US09019834B2

公开(公告)日：2015-04-28

申请号：US14075499

申请日：2013-11-08

Applicant: Citrix Systems, Inc.

Inventor： Deepak Goel ,  Jyotheesh Rao Kurma

IPC: H04L12/801 ,  H04L12/803 ,  H04L29/08 ,  H04L29/06

CPC classification number: H04L47/10 ,  H04L47/125 ,  H04L67/1027 ,  H04L69/12 ,  H04L69/14 ,  Y02D50/30

Abstract: Systems and methods are described for link load balancing, by a multi-core intermediary device, a plurality of Internet links. The method may include load balancing, by a multi-core device intermediary to a plurality of devices and a plurality of Internet links, network traffic across the plurality of Internet links. The multi-core device providing persistence of network traffic to a selected Internet link based on a persistence type. A first core of the multi-core device receives, a packet to be transmitted via an Internet link to be selected from the plurality of Internet links. The first core sends to a second core of the multi-core device a request for persistence information responsive to identifying that the second core is an owner core of a session for persistence based on the persistence type. The first core receives the persistence information from the second core and determines to transmit the packet to the Internet link previously selected based on the persistence information received from the second core.

Abstract translation: 描述了用于链路负载平衡，多核中间设备，多个因特网链路的系统和方法。 该方法可以包括通过多核设备的多核设备的负载平衡以及多个互联网链路跨越多个因特网链路的网络流量。 多核设备基于持久性类型向选定的因特网链路提供网络流量的持久性。 多核设备的第一核心接收要从多个因特网链路中选择的因特网链路发送的分组。 第一核心向多核设备的第二核心发送响应于基于持久性类型识别第二核心是持久性的会话的所有者核心的持久性信息的请求。 第一核心从第二核心接收持久性信息，并确定根据从第二核心接收到的持续信息将分组传送到先前选择的因特网链路。

公开(公告)号：US20150156271A1

公开(公告)日：2015-06-04

申请号：US14622480

申请日：2015-02-13

Applicant: Citrix Systems, Inc.

Inventor： Deepak Goel ,  Jyotheesh Rao Kurma ,  Sandhya Gopinath

IPC: H04L29/08 ,  H04L12/801

CPC classification number: H04L67/28 ,  G06F9/45533 ,  H04L47/33 ,  H04L67/1002 ,  H04L67/1023

Abstract: Described herein is a method and system for distributing request and responses across a multi-core system. Each core executes a packet engine that further processes data packets allocated to that core. A flow distributor executing within the multi-core system forwards client requests to a packet engine on a core that is selected based on a value generated when a hash is applied to a tuple comprising a client IP address, a client port, a server IP address and a server port identified in the request. The packet engine selects a first IP address and a first port of the core, and determines whether a hash of a tuple comprising those values identifies the selected core. A modification is then made to the client request so that the client request includes a tuple comprising the first IP address, the server IP address, the first port and the server port.

Abstract translation: 这里描述了一种用于在多核系统上分发请求和响应的方法和系统。 每个核心执行进一步处理分配给该核心的数据分组的分组引擎。 在多核系统中执行的流分发器将客户端请求转发到核心上的分组引擎，该核心基于当散列应用于包括客户端IP地址，客户端口，服务器IP地址的元组时生成的值 以及请求中标识的服务器端口。 分组引擎选择核心的第一IP地址和第一端口，并且确定包括这些值的元组的散列是否识别所选核心。 然后对客户机请求进行修改，使得客户端请求包括包括第一IP地址，服务器IP地址，第一端口和服务器端口的元组。

公开(公告)号：US20250088450A1

公开(公告)日：2025-03-13

申请号：US18465237

申请日：2023-09-12

Applicant: Citrix Systems, Inc.

Inventor： Jyotheesh Rao Kurma ,  Saravanan Jayaraman ,  Pulkit Gupta ,  Subash Dangol

IPC: H04L45/03 ,  H04L45/24

Abstract: Systems and methods for managing nodes in an RHI deployment may include receiving, by a first device intermediary to one or more clients and one or more servers, a signal to switch from a first state to a second state. The systems and methods can include transmitting, by the first device, a message to one or more second devices in an RHI deployment, the message comprising information relating to a plurality of connections of the one or more clients or the one or more servers maintained by the first device. The systems and methods can include switching, by the first device, to the second state responsive to transmitting the message.

公开(公告)号：US10834205B2

公开(公告)日：2020-11-10

申请号：US16012963

申请日：2018-06-20

Applicant: CITRIX SYSTEMS, INC.

Inventor： Jyotheesh Rao Kurma ,  Saravana Annamalaisami ,  Muthukumar Shunmugiah ,  Saravanan Jayaraman ,  Subash Dangol

IPC: H04L29/08 ,  H04L29/06

Abstract: A network appliance is provided for establishing sessions between client devices and a network server(s) for exchanging network traffic therebetween. The network appliance may include a memory and a processor cooperating with the memory, with the processor being operable in a normal traffic mode and a forwarding traffic mode. The processor may be configured to establish new sessions for network traffic based upon new session requests from the client devices, and forward network traffic associated with prior existing sessions from the client devices to the network server(s). When in the forwarding traffic mode, the processor may forward network traffic not associated with a prior existing session or a new session request to the network server(s). When in the normal traffic mode, the processor may block network traffic not associated with a prior existing session or a new session request from reaching the network server(s).

公开(公告)号：US20210399966A1

公开(公告)日：2021-12-23

申请号：US16984575

申请日：2020-08-04

Applicant: Citrix Systems, Inc.

Inventor： Saravanan Jayaraman ,  Mohit Prakash Saxena ,  Jyotheesh Rao Kurma ,  Pulkit Gupta

IPC: H04L12/26 ,  H04L12/823 ,  H04L29/08 ,  H04L12/935

Abstract: Described embodiments provide systems and methods for upgrading user space networking stacks without disruptions to network traffic. A first packet engine can read connection information of existing connections of a second packet engine written to a shared memory region by the second packet engine. The first packet engine can establish one or more virtual connections according to the connection information of existing connections of the second packet engine. Each of the first packet engine and the second packet engine can receive mirrored traffic data. The first packet engine can receive a first packet and determine that the first packet is associated with a virtual connection corresponding to an existing connection of the second packet engine. The first packet engine can drop the first packet responsive to the determination that the first packet is associated with the virtual connection.

公开(公告)号：US09749148B2

公开(公告)日：2017-08-29

申请号：US13955517

申请日：2013-07-31

Applicant: Citrix Systems, Inc.

Inventor： Janraj CJ ,  Jyotheesh Rao Kurma

IPC: H04L12/46 ,  H04L29/12 ,  H04L29/08 ,  H04L12/803

CPC classification number: H04L12/4641 ,  H04L29/08144 ,  H04L47/125 ,  H04L61/103 ,  H04L61/1511

Abstract: The present disclosure relates to methods and systems for providing load balancing for layer 2 devices. A device intermediary to a plurality of clients and a plurality of servers and a plurality of layer 2 devices establishes, for each layer 2 device, a first traffic domain corresponding to ingress traffic received from the plurality of clients and a second traffic domain of the device corresponding to ingress traffic received from the plurality of clients. The device associates a first virtual local area network (VLAN) with the first traffic domain and a second VLAN with the second traffic domain. The device establishes a plurality of services. Each service corresponds to a layer 2 device and includes a corresponding subnet internet protocol (SNIP) address hosted on the device. The device establishes a virtual server to load balance the plurality of services corresponding to each of the plurality of layer 2 devices.

公开(公告)号：US20140064089A1

公开(公告)日：2014-03-06

申请号：US14075499

申请日：2013-11-08

Applicant: Citrix Systems, Inc.

Inventor： Deepak Goel ,  Jyotheesh Rao Kurma

IPC: H04L12/801

CPC classification number: H04L47/10 ,  H04L47/125 ,  H04L67/1027 ,  H04L69/12 ,  H04L69/14 ,  Y02D50/30

Abstract: Systems and methods are described for link load balancing, by a multi-core intermediary device, a plurality of Internet links. The method may include load balancing, by a multi-core device intermediary to a plurality of devices and a plurality of Internet links, network traffic across the plurality of Internet links. The multi-core device providing persistence of network traffic to a selected Internet link based on a persistence type. A first core of the multi-core device receives, a packet to be transmitted via an Internet link to be selected from the plurality of Internet links. The first core sends to a second core of the multi-core device a request for persistence information responsive to identifying that the second core is an owner core of a session for persistence based on the persistence type. The first core receives the persistence information from the second core and determines to transmit the packet to the Internet link previously selected based on the persistence information received from the second core.

Abstract translation: 描述了用于链路负载平衡，多核中间设备，多个因特网链路的系统和方法。 该方法可以包括通过多核设备的多核设备的负载平衡以及多个互联网链路跨越多个因特网链路的网络流量。 多核设备基于持久性类型向选定的因特网链路提供网络流量的持久性。 多核设备的第一核心接收要从多个因特网链路中选择的因特网链路发送的分组。 第一核心向多核设备的第二核心发送响应于基于持久性类型识别第二核心是持久性的会话的所有者核心的持久性信息的请求。 第一核心从第二核心接收持久性信息，并确定根据从第二核心接收到的持续信息将分组传送到先前选择的因特网链路。

公开(公告)号：US11477102B2

公开(公告)日：2022-10-18

申请号：US16984575

申请日：2020-08-04

Applicant: Citrix Systems, Inc.

Inventor： Saravanan Jayaraman ,  Mohit Prakash Saxena ,  Jyotheesh Rao Kurma ,  Pulkit Gupta

IPC: H04L43/0876 ,  H04L49/00 ,  H04L67/143 ,  H04L47/32 ,  H04L45/00 ,  H04L45/586 ,  H04L41/082 ,  H04L41/08 ,  H04L41/084

Abstract: Described embodiments provide systems and methods for upgrading user space networking stacks without disruptions to network traffic. A first packet engine can read connection information of existing connections of a second packet engine written to a shared memory region by the second packet engine. The first packet engine can establish one or more virtual connections according to the connection information of existing connections of the second packet engine. Each of the first packet engine and the second packet engine can receive mirrored traffic data. The first packet engine can receive a first packet and determine that the first packet is associated with a virtual connection corresponding to an existing connection of the second packet engine. The first packet engine can drop the first packet responsive to the determination that the first packet is associated with the virtual connection.

公开(公告)号：US20190394280A1

公开(公告)日：2019-12-26

申请号：US16012963

申请日：2018-06-20

Applicant: CITRIX SYSTEMS, INC.

Inventor： Jyotheesh Rao Kurma ,  Saravana Annamalaisami ,  Muthukumar Shunmugiah ,  Saravanan Jayaraman ,  Subash Dangol

IPC: H04L29/08 ,  H04L29/06

Abstract: A network appliance is provided for establishing sessions between client devices and a network server(s) for exchanging network traffic therebetween. The network appliance may include a memory and a processor cooperating with the memory, with the processor being operable in a normal traffic mode and a forwarding traffic mode. The processor may be configured to establish new sessions for network traffic based upon new session requests from the client devices, and forward network traffic associated with prior existing sessions from the client devices to the network server(s). When in the forwarding traffic mode, the processor may forward network traffic not associated with a prior existing session or a new session request to the network server(s). When in the normal traffic mode, the processor may block network traffic not associated with a prior existing session or a new session request from reaching the network server(s).

公开(公告)号：US09661094B2

公开(公告)日：2017-05-23

申请号：US14622480

申请日：2015-02-13

Applicant: Citrix Systems, Inc.

Inventor： Deepak Goel ,  Jyotheesh Rao Kurma ,  Sandhya Gopinath

IPC: G06F15/16 ,  H04L29/08 ,  H04L12/801 ,  G06F9/455

CPC classification number: H04L67/28 ,  G06F9/45533 ,  H04L47/33 ,  H04L67/1002 ,  H04L67/1023

Abstract: Described herein is a method and system for distributing request and responses across a multi-core system. Each core executes a packet engine that further processes data packets allocated to that core. A flow distributor executing within the multi-core system forwards client requests to a packet engine on a core that is selected based on a value generated when a hash is applied to a tuple comprising a client IP address, a client port, a server IP address and a server port identified in the request. The packet engine selects a first IP address and a first port of the core, and determines whether a hash of a tuple comprising those values identifies the selected core. A modification is then made to the client request so that the client request includes a tuple comprising the first IP address, the server IP address, the first port and the server port.