公开(公告)号：US09185019B2

公开(公告)日：2015-11-10

申请号：US13929202

申请日：2013-06-27

Applicant: Citrix Systems, Inc.

Inventor： Sandeep Kamath ,  Josephine Suganthi ,  Anil Shetty ,  Sergey Verzunov

IPC: G01R31/08 ,  H04L12/26 ,  H04L29/08

CPC classification number: H04L43/16 ,  H04L67/1002 ,  H04L67/1008 ,  H04L67/101 ,  H04L67/1012 ,  H04L67/1029 ,  H04L67/1031

Abstract: A method for an appliance to switch handling of transport layer connection requests from a first virtual server of the appliance managing a first plurality of services to a second virtual server of the appliance managing a second plurality of services upon exceeding, by the first virtual server, a maximum connection threshold determined dynamically from a status of the first plurality of services The appliance establishes a predetermined threshold identifying a maximum active transport layer connection capacity for the first virtual server that comprising a sum of a predetermined connection capacity for each of the plurality of services. The appliance determines via monitoring that the status of a service of the plurality of services indicates the service is not available and adjusts the predetermined threshold to comprise the sum of the predetermined connection capacity for each of the plurality of services having a status of available.

Abstract translation: 一种用于在由第一虚拟服务器超过第一虚拟服务器的情况下，设备将来自管理第一多个服务的设备的第一虚拟服务器的处理切换到设备的第二虚拟服务器的管理方法， 从第一多个服务的状态动态确定的最大连接阈值该装置建立一个预定的阈值，该阈值标识第一虚拟服务器的最大活动传输层连接容量，该第一虚拟服务器包括多个服务中的每个服务的预定连接容量之和 。 设备通过监视确定多个服务的服务的状态指示服务不可用并且调整预定阈值以包括具有可用状态的多个服务中的每一个的预定连接容量之和。

公开(公告)号：US20140304414A1

公开(公告)日：2014-10-09

申请号：US14244597

申请日：2014-04-03

Applicant: Citrix Systems, Inc.

Inventor： Sreedhar Yengalasetti ,  Raghav Somanahalli Narayana ,  Sandeep Kamath

IPC: H04L29/08

CPC classification number: H04L67/1036 ,  H04L41/0896 ,  H04L61/1511 ,  H04L67/1031 ,  H04L67/28

Abstract: The present application is directed towards systems and methods for configuring and applying autoscaling to a service group of an intermediary device for a domain based server. All the IP addresses resolved by the domain name of the server and that are determined as up will automatically become members of the service group. The resolver monitor will resolve the server's domain name based on the TTL (Time to Live) value in the address record or whenever the appropriate command is executed. Each time the domain is resolved, if there is a change in the number of IP addresses resolved, then the members of the service group will shrink or expand based on the number of IP addresses resolved

Abstract translation: 本申请涉及用于配置和应用自动缩放到用于基于域的服务器的中间设备的服务组的系统和方法。 由服务器的域名解析并被确定为up的所有IP地址将自动成为服务组的成员。 解析器监视器将根据地址记录中的TTL（生存时间）值或执行相应命令来解析服务器的域名。 每次解析域名时，如果解析了IP地址数量有变化，则根据解析的IP地址数量，服务组的成员将收缩或扩展

公开(公告)号：US09621668B2

公开(公告)日：2017-04-11

申请号：US14245299

申请日：2014-04-04

Applicant: Citrix Systems, Inc.

Inventor： Sandeep Kamath ,  Mahesh Arumugam ,  Anil Shetty ,  Gopinath Sikha ,  Jaidev Sridhar

IPC: G06F15/167 ,  H04L29/08 ,  G06F17/30 ,  H04L12/26

CPC classification number: H04L67/2842 ,  G06F17/3033 ,  H04L43/0852 ,  H04L67/1097 ,  H04L67/2852

Abstract: The present application is directed towards invalidating (also referred to as poisoning) ASDR table entries that are determined to be inaccurate because of changes to a multi-node system. For example, when a node leaves or enters a multi-node system, the ownership of the entries in the ASDR table can change thus invalidating cached and replica entries. More specifically, the system and methods disclosed herein include searching an ASDR table for cached entries responsive to the system determining the multi-node system has changed. After finding a cached entry, the system may determine if the entry should be poisoned. The decision to poison the entry may be responsive to the creation time of the entry, the time when the change to the multi-node system occurred, and in the case of a replica, the owner of the replica's position in a replication chain relative to source of the replica.

公开(公告)号：US20140344326A1

公开(公告)日：2014-11-20

申请号：US13895284

申请日：2013-05-15

Applicant: Citrix Systems, Inc.

Inventor： Sandeep Kamath ,  Mahesh Arumugam ,  Vishnu Itta

IPC: H04L29/06

CPC classification number: G06F9/5027 ,  G06F9/5077 ,  G06F9/5088 ,  H04L67/1008

Abstract: The present invention is directed towards systems and methods deploying a virtual server on a subset of devices in a cluster of devices. A first device of a cluster of devices intermediary between at least one client and at least one server, may identify a first virtual server to establish on one or more devices of the cluster. The first device may associate, to the identified virtual server, a group comprising a subset of devices in the cluster of devices. The cluster may establish the first virtual server on each device in the group responsive to associating the group to the first virtual server. Each virtual server on each device of the group may be assigned a same internet protocol address.

Abstract translation: 本发明涉及在设备集群中的设备子集上部署虚拟服务器的系统和方法。 在至少一个客户端和至少一个服务器之间中介的设备集群的第一设备可以识别在集群的一个或多个设备上建立的第一虚拟服务器。 第一设备可以将与包括设备集群中的设备子集的组相关联的所识别的虚拟服务器。 集群可以响应于将组与第一虚拟服务器相关联而在组中的每个设备上建立第一虚拟服务器。 组中每个设备上的每个虚拟服务器可以被分配相同的因特网协议地址。

公开(公告)号：US20140304354A1

公开(公告)日：2014-10-09

申请号：US14244949

申请日：2014-04-04

Applicant: Citrix Systems, Inc.

Inventor： Abhishek Chauhan ,  Sandhya Gopinath ,  Sandeep Kamath ,  Mahesh Arumugam ,  Tushar Kanekar

IPC: H04L29/08

CPC classification number: H04L67/1097 ,  H04L67/1095

Abstract: The present application is directed towards using a distributed hash table to track the use of resources and/or maintain the persistency of resources across the plurality of nodes in the multi-node system. More specifically, the systems and methods can maintain the persistency of resources across the plurality of nodes by the use of a global table. A global table may be maintained on each node. Each node's global table enables efficient storage and retrieval of distributed hash table entries. Each global table may contain a linked list of the cached distributed hash table entries that are currently stored on a node.

Abstract translation: 本申请涉及使用分布式哈希表来跟踪资源的使用和/或维护多节点系统中的多个节点之间的资源的持续性。 更具体地，系统和方法可以通过使用全局表来维护跨越多个节点的资源的持久性。 可以在每个节点上维护全局表。 每个节点的全局表可以有效地存储和检索分布式哈希表项。 每个全局表可以包含当前存储在节点上的高速缓存的分布式散列表条目的链接列表。

公开(公告)号：US20140189132A1

公开(公告)日：2014-07-03

申请号：US14139359

申请日：2013-12-23

Applicant: Citrix Systems, Inc.

Inventor： Josephine Suganthi ,  Murali Raja ,  Sandeep Kamath

IPC: H04L29/08

CPC classification number: H04L67/1002 ,  H04L12/4641 ,  H04L63/0227 ,  H04L63/0272 ,  H04L63/1433 ,  H04L63/166 ,  H04L67/1008

Abstract: The present invention provides a system and a method for global server load balancing of a plurality of sites based on a number of Secure Socket Layer Virtual Private Network (SSL VPN) users. The SSL VPN users may access servers at each of the plurality of sites. A global server load balancing virtual server (GSLB) may receive a request to access a server. The GSLB virtual server may load balance a plurality of sites wherein each of the plurality of sites may further comprising a load balancing virtual server load balancing users accessing the server accessing servers via an SSL VPN session. GSLB may receive from a first load balancing virtual server at a first site, a first number of current SSL VPN users accessing servers from the first site via SSL VPN sessions. The GSLB may also receive from a second load balancing virtual server at a second site, a second number of current SSL VPN users of the users accessing servers from the second site via SSL VPN sessions. GSLB may determine to forward the request to one of the first load balancing virtual server of the first site or the second load balancing virtual server of the second site by load balancing SSL VPN users across the plurality of sites based on the first number of current SSL VPN users and the second number of current SSL VPN users.

Abstract translation: 本发明提供了一种基于多个安全套接层虚拟专用网（SSL VPN）用户的多个站点的全局服务器负载平衡的系统和方法。 SSL VPN用户可以访问多个站点中的每个站点上的服务器。 全局服务器负载平衡虚拟服务器（GSLB）可能会收到访问服务器的请求。 GSLB虚拟服务器可以负载平衡多个站点，其中多个站点中的每个站点还可以包括负载平衡虚拟服务器负载平衡通过SSL VPN会话访问服务器访问服务器的用户的负载。 GSLB可以从第一站点的第一个负载平衡虚拟服务器接收，第一个当前SSL VPN用户通过SSL VPN会话从第一个站点访问服务器。 GSLB还可以从第二站点的第二负载平衡虚拟服务器接收第二数量的用户通过SSL VPN会话从第二站点访问服务器的当前SSL VPN用户。 GSLB可以基于当前SSL的第一数量来负责平衡多个站点中的SSL VPN用户，来将请求转发到第一站点的第一负载平衡虚拟服务器或第二站点的第二负载平衡虚拟服务器之一 VPN用户和第二个当前SSL VPN用户数。

公开(公告)号：US20130246619A1

公开(公告)日：2013-09-19

申请号：US13891709

申请日：2013-05-10

Applicant: CITRIX SYSTEMS, INC.

Inventor： Murali Raja ,  Sandeep Kamath

IPC: H04L12/26

CPC classification number: H04L43/0894 ,  H04L67/1002 ,  H04L67/325 ,  H04L69/12

Abstract: The present invention is directed towards systems and methods for managing a rate of request for an object transmitted between a server and one or more clients via a multi-core intermediary device. A first core of the intermediary device can receive a request for an object and assume ownership of the object. The first core can store the object in shared memory along with a rate-related counter for the object and generate a hash to the object and counter. Other cores can obtain the hash from the first core and access the object and counter in shared memory. Policy engines and throttlers in operation on each core can control the rate of access to the stored object.

Abstract translation: 本发明涉及用于管理通过多核中间设备在服务器与一个或多个客户端之间传输的对象的请求速率的系统和方法。 中间设备的第一个核心可以接收对象的请求，并承担对象的所有权。 第一个核心可以将对象与对象的速率相关的计数器一起存储在共享存储器中，并生成对象和计数器的散列。 其他内核可以从第一个内核获取哈希值，并在共享内存中访问对象和计数器。 在每个核心上运行的策略引擎和节流器可以控制对存储对象的访问速率。

公开(公告)号：US20190004780A1

公开(公告)日：2019-01-03

申请号：US16122446

申请日：2018-09-05

Applicant: Citrix Systems, Inc.

Inventor： Mahesh Arumugam ,  Sergey Verzunov ,  Sandeep Kamath ,  Josephine Suganthi ,  Anil Shetty ,  Abhishek Chauhan

IPC: G06F8/60 ,  G06F8/61 ,  G06F8/71

CPC classification number: G06F8/60 ,  G06F8/61 ,  G06F8/71

Abstract: The present disclosure is directed towards systems and methods for managing application delivery in a network. A device intermediary to a client and one or more servers that provide a plurality of applications, receives a request from the client to access a first application of the plurality of applications. The device holds the request and retrieves, while holding the request, configuration information for an instance of the first application from a configuration repository. The device configures a virtual internet protocol (“VIP”) server using the configuration information for the instance of the first application. The device processes the request via the VIP server.

公开(公告)号：US09866463B2

公开(公告)日：2018-01-09

申请号：US13891709

申请日：2013-05-10

Applicant: Citrix Systems, Inc.

Inventor： Murali Raja ,  Sandeep Kamath

IPC: G06F15/173 ,  H04L12/26 ,  H04L29/08 ,  H04L29/06

CPC classification number: H04L43/0894 ,  H04L67/1002 ,  H04L67/325 ,  H04L69/12

Abstract: The present invention is directed towards systems and methods for managing a rate of request for an object transmitted between a server and one or more clients via a multi-core intermediary device. A first core of the intermediary device can receive a request for an object and assume ownership of the object. The first core can store the object in shared memory along with a rate-related counter for the object and generate a hash to the object and counter. Other cores can obtain the hash from the first core and access the object and counter in shared memory. Policy engines and throttlers in operation on each core can control the rate of access to the stored object.

公开(公告)号：US09781196B2

公开(公告)日：2017-10-03

申请号：US14139359

申请日：2013-12-23

Applicant: Citrix Systems, Inc.

Inventor： Josephine Suganthi ,  Murali Raja ,  Sandeep Kamath

IPC: H04L29/08 ,  H04L12/46 ,  H04L29/06

CPC classification number: H04L67/1002 ,  H04L12/4641 ,  H04L63/0227 ,  H04L63/0272 ,  H04L63/1433 ,  H04L63/166 ,  H04L67/1008

Abstract: The present invention provides a system and a method for global server load balancing of a plurality of sites based on a number of Secure Socket Layer Virtual Private Network (SSL VPN) users. The SSL VPN users may access servers at each of the plurality of sites. A global server load balancing virtual server (GSLB) may receive a request to access a server. The GSLB virtual server may load balance a plurality of sites wherein each of the plurality of sites may further comprising a load balancing virtual server load balancing users accessing the server accessing servers via an SSL VPN session. GSLB may receive from a first load balancing virtual server at a first site, a first number of current SSL VPN users accessing servers from the first site via SSL VPN sessions. The GSLB may also receive from a second load balancing virtual server at a second site, a second number of current SSL VPN users of the users accessing servers from the second site via SSL VPN sessions. GSLB may determine to forward the request to one of the first load balancing virtual server of the first site or the second load balancing virtual server of the second site by load balancing SSL VPN users across the plurality of sites based on the first number of current SSL VPN users and the second number of current SSL VPN users.