公开(公告)号：US10002141B2

公开(公告)日：2018-06-19

申请号：US14320420

申请日：2014-06-30

申请人： A10 Networks, Inc.

发明人： Rajkumar Jalan ,  Gurudeep Kamat ,  Swaminathan Sankar ,  Hasnain Karampurwala

IPC分类号： G06F15/173 ,  G06F17/30 ,  H04L29/08 ,  H04L12/751

CPC分类号： G06F16/21 ,  H04L45/02 ,  H04L67/1012 ,  H04L67/1095

摘要： Provided are methods and systems for implementing a distributed database in a data network. The method comprises receiving node data associated with one or more nodes of a plurality of nodes, updating the distributed database and replicating the distributed database to each of the plurality of nodes. The plurality of nodes comprises one or more cluster device, a cluster master, a traffic classification engine, a service node, and an orchestrator. The node data comprises node health, a number of total connections, node processing unit utilization, node memory status, destination server address, destination server capacity, destination server network connectivity, node dynamic state, node responsiveness. The distributed database comprises tables containing traffic map, node health information, traffic classification mapping, and service policy.

公开(公告)号：US20180123926A1

公开(公告)日：2018-05-03

申请号：US15858163

申请日：2017-12-29

申请人： A10 NETWORKS, INC.

发明人： Rajkumar Jalan ,  Swaminathan Sankar ,  Gurudeep Kamat

IPC分类号： H04L12/26

摘要： Exemplary embodiments for a distributed system for determining a server's health are disclosed. The systems and methods provide for a network controller to direct one or more servicing nodes to check the health of one or more servers, and report a health score to the network controller. The network controller may then calculate, update and maintain a health score for each server in the network from the various health scores reported to it from the servicing nodes. This allows a distributed system to be used to facilitate network operations, as a single device is not relied on for periodically determining each server's health.

公开(公告)号：US09961130B2

公开(公告)日：2018-05-01

申请号：US14261365

申请日：2014-04-24

申请人： A10 NETWORKS, INC.

发明人： Gurudeep Kamat ,  Swaminathan Sankar

IPC分类号： G06F15/16 ,  H04L29/08 ,  G06F12/12

CPC分类号： H04L67/10 ,  G06F12/12 ,  H04L67/1008 ,  H04L67/2842

摘要： Provided are methods and systems for processing a data packet associated with a service session. The data packet directed to a first servicing node can be received by a forwarding node. The forwarding node can determine that the first servicing node is unavailable. Based on the determination, the forwarding node can select a second servicing node from a plurality of servicing nodes. The selection can be based on a high availability policy. The forwarding node can then send the data packet to the second servicing node.

公开(公告)号：US20170187631A1

公开(公告)日：2017-06-29

申请号：US15457043

申请日：2017-03-13

申请人： A10 Networks, Inc.

发明人： Gurudeep Kamat ,  Ian E. Davis ,  Rajkumar Jalan

IPC分类号： H04L12/803 ,  H04L12/833 ,  H04L29/08

CPC分类号： H04L47/125 ,  H04L47/31 ,  H04L67/02 ,  H04L67/1014 ,  H04L69/22 ,  H04L69/24

摘要： In processing data packet headers, a packet pre-processor is configured with at least one predetermined header field identifier. The packet pre-processor detects at least one header field identifier in a header field of a data packet received over a communication session between a host and a server, matches the predetermined header field identifier to the header field identifier in the data packet, generates a header report block comprising information corresponding to the header field identifier in the data packet, and sends the data packet and the header report block to a processor module for processing the data packet based on the header report block. The processor module receives the data packet and the header report block from the packet pre-processor, retrieves a service policy using the header report block, applies the service policy to the data packet, and sends the data packet to the host or the server.

公开(公告)号：US20140330982A1

公开(公告)日：2014-11-06

申请号：US14268914

申请日：2014-05-02

申请人： A10 Networks, Inc.

发明人： Rajkumar Jalan ,  Gurudeep Kamat

IPC分类号： H04L29/06

CPC分类号： H04L63/0892 ,  H04L63/1458 ,  H04L63/1466 ,  H04L63/166

摘要： Facilitation of secure network traffic by an application delivery controller is provided herein. In some examples, a method includes: (a) receiving a data packet with information from a client indicating that the client is a trusted source; (b) embedding in the data packet a transmission control protocol (TCP) options header, the TCP options header comprising information including at least a sequence number for a protocol connection; and (c) forwarding the embedded data packet to a server.

摘要翻译： 本文提供了由应用传送控制器促进安全网络流量。 在一些示例中，一种方法包括：（a）从客户端接收指示客户端是可信源的信息的数据分组; （b）在数据分组中嵌入传输控制协议（TCP）选项报头，所述TCP选项报头包括至少包括用于协议连接的序列号的信息; 和（c）将嵌入的数据分组转发到服务器。

公开(公告)号：US10862955B2

公开(公告)日：2020-12-08

申请号：US16004265

申请日：2018-06-08

申请人： A10 NETWORKS, INC.

发明人： Swaminathan Sankar ,  Hasnain Karampurwala ,  Rahul Gupta ,  Gurudeep Kamat ,  Rajkumar Jalan

IPC分类号： H04L29/08 ,  H04L12/725

摘要： Provided are methods and systems for dynamically distributing a service session from a client device. The method may commence with receiving a packet associated with the service session from the client device by a gateway node. The method may include determining that the packet matches a service address in a forwarding policy. The method may continue with selecting one of a plurality of forwarding nodes for sending the packet to the one of the plurality of forwarding nodes. The method may include receiving the packet of the service session by the one of the plurality of forwarding nodes. The method may continue with determining that the packet matches the service address serviced by a servicing node of a plurality of servicing nodes. The method may further include sending the packet to the servicing node for forwarding the packet to a server by the servicing node.

公开(公告)号：US10742559B2

公开(公告)日：2020-08-11

申请号：US15967423

申请日：2018-04-30

申请人： A10 NETWORKS, INC.

发明人： Gurudeep Kamat ,  Swaminathan Sankar ,  Gennady Dosovitsky ,  Rajkumar Jalan

IPC分类号： G06F15/16 ,  H04L12/851 ,  H04L12/927 ,  H04L12/803 ,  H04L29/08 ,  H04L12/813 ,  H04L29/06 ,  H04L12/703 ,  H04L12/715

摘要： Provided are methods and systems for eliminating a redirection of data traffic in a cluster. An example method may include receiving, by one or more nodes of the cluster, a data packet associated with a service session. The method may include determining, by the node, that the data packet is directed to a further node in the cluster. The method may further include, in response to the determination, acquiring, by the node, a session context associated with the service session. Acquiring the session context may include sending, by the node, a request for the session context to the further node and receiving the session context from the further node. The method may further include processing, by the one or more nodes, the data packet based on the session context.

公开(公告)号：US10686683B2

公开(公告)日：2020-06-16

申请号：US15858163

申请日：2017-12-29

申请人： A10 NETWORKS, INC.

发明人： Rajkumar Jalan ,  Swaminathan Sankar ,  Gurudeep Kamat

IPC分类号： G06F16/2455 ,  H04L12/26

摘要： Exemplary embodiments for a distributed system for determining a server's health are disclosed. The systems and methods provide for a network controller to direct one or more servicing nodes to check the health of one or more servers, and report a health score to the network controller. The network controller may then calculate, update and maintain a health score for each server in the network from the various health scores reported to it from the servicing nodes. This allows a distributed system to be used to facilitate network operations, as a single device is not relied on for periodically determining each server's health.

公开(公告)号：US10516577B2

公开(公告)日：2019-12-24

申请号：US15838119

申请日：2017-12-11

申请人： A10 NETWORKS, INC.

发明人： Swaminathan Sankar ,  Rahul Gupta ,  Gurudeep Kamat ,  Rajkumar Jalan

IPC分类号： H04L12/24 ,  H04L29/08

摘要： Provided are methods and systems for graceful scaling of data networks. In one example, an indication of removal of a node from a plurality of nodes of the data network is received. A service policy is generated to reassign service requests associated with the node to another node in the plurality of nodes. The service policy is then sent to each of the plurality of nodes of the data network. To scale out a data network, an indication of presence of a further node in the data network is received, and a further node service policy is generated and sent to each of the plurality of nodes of the data network and to the further node. Additional actions can be taken in order to prevent interruption of an existing heavy-duty connection while scaling the data network.

公开(公告)号：US10341427B2

公开(公告)日：2019-07-02

申请号：US15394669

申请日：2016-12-29

申请人： A10 Networks, Inc.

发明人： Rajkumar Jalan ,  Gurudeep Kamat

IPC分类号： H04L29/06 ,  H04L29/08 ,  H04L12/741

摘要： In providing packet forwarding policies in a virtual service network that includes a network node and a pool of service load balancers serving a virtual service, the network node: receives a virtual service session request from a client device, the request including a virtual service network address for the virtual service; compares the virtual service network address in the request with the virtual service network address in each at least one packet forwarding policy; in response to finding a match between the virtual service network address in the request and a given virtual service network address in a given packet forwarding policy, determines the given destination in the given packet forwarding policy; and sends the request to a service load balancer in the pool of service load balancers associated with the given destination, where the service load balancer establishes a virtual service session with the client device.