公开(公告)号：US20090193126A1

公开(公告)日：2009-07-30

申请号：US12359998

申请日：2009-01-26

申请人： Puneet Agarwal ,  Srinivasan Thirunarayanan ,  Vamsi Korrapatti ,  Prakash Khemani ,  Rajiv Mirani ,  Anoop Reddy

发明人： Puneet Agarwal ,  Srinivasan Thirunarayanan ,  Vamsi Korrapatti ,  Prakash Khemani ,  Rajiv Mirani ,  Anoop Reddy

IPC分类号： G06F15/173

CPC分类号： H04L63/0272 ,  H04L29/08846 ,  H04L63/0281 ,  H04L63/105 ,  H04L63/166 ,  H04L63/20 ,  H04L67/02 ,  H04L67/14 ,  H04L67/2814

摘要： The present disclosure provides solutions for an enterprise providing services to a variety of clients to enable the client to use the resources provided by the enterprise by modifying URLs received and the URLs from the responses from the servers to the client's requests before forwarding the requests and the responses to the intended destinations. An intermediary may identify an access profile for a clients' request to access a server via a clientless SSL VPN session. The intermediary may detect one or more URLs in content served by the server in response to the request using one or more regular expressions of the access profile. The intermediary may rewrite or modify, responsive to detecting, the one or more detected URLs in accordance with a URL transformation specified by one or more rewrite policies of the access profile. The response with modified URLs may be forwarded to the client.

摘要翻译： 本公开提供了向各种客户端提供服务的企业的解决方案，以使得客户端能够在转发请求之前通过修改所接收的URL和从服务器的响应到客户端的请求来使用由企业提供的资源，并且 对预期目的地的回应。 中介可以识别客户端通过无客户端SSL VPN会话访问服务器的请求的访问配置文件。 响应于使用访问简档的一个或多个正则表达式的请求，中介可以检测服务器所服务的内容中的一个或多个URL。 根据由访问简档的一个或多个重写策略指定的URL变换，中介可以响应于检测到一个或多个检测到的URL来重写或修改。 具有修改的URL的响应可以转发给客户端。

公开(公告)号：US20060114938A1

公开(公告)日：2006-06-01

申请号：US11289369

申请日：2005-11-30

申请人： Mohan Kalkunte ,  Gurumurthy Yeleswarapu ,  Puneet Agarwal ,  Song-Huo Yu ,  Venkateshwar Buduma

发明人： Mohan Kalkunte ,  Gurumurthy Yeleswarapu ,  Puneet Agarwal ,  Song-Huo Yu ,  Venkateshwar Buduma

IPC分类号： H04L12/56 ,  H04J3/16 ,  H04L12/28 ,  H04J3/22

CPC分类号： H04L45/00 ,  H04L12/18 ,  H04L45/583 ,  H04L49/351 ,  H04L49/352

摘要： A network device that processes packets and includes at least one legacy component for performing basic processing on packets in the network device. The network device further includes at least one advanced component for performing advanced processing, which can not be performed by the legacy component, on packets in the network device. When an incoming packet to the legacy component requires advanced processing, the legacy component performs the basic processing and transmits the packet to a loop-back port on advanced component. Upon receiving the packet, basic processing is disabled on the advanced component and advanced processing is performed on the packet.

摘要翻译： 一种网络设备，其处理分组并且包括用于对所述网络设备中的分组执行基本处理的至少一个传统组件。 网络设备还包括至少一个高级组件，用于在网络设备中的分组上执行不能由传统组件执行的高级处理。 当到传统组件的传入分组需要高级处理时，传统组件执行基本处理，并将分组发送到高级组件上的环回端口。 接收到报文后，对高级组件进行基本处理，对报文进行高级处理。

公开(公告)号：US06870844B2

公开(公告)日：2005-03-22

申请号：US09854234

申请日：2001-05-10

申请人： Russ Tuck ,  David Skirmont ,  Puneet Agarwal

发明人： Russ Tuck ,  David Skirmont ,  Puneet Agarwal

IPC分类号： H04L12/18 ,  H04L12/46 ,  H04L12/56 ,  H04L12/28

CPC分类号： H04L47/10 ,  H04L12/4625 ,  H04L47/17 ,  H04L47/29 ,  H04L47/30 ,  H04L47/32 ,  H04L49/00 ,  H04L49/10

摘要： A multicast engine is provided in plurality within a router for replicating and/or modifying packets identified as multicast packets. In preferred embodiments the engine is integrated with one or more ports of a router, particularly with one or more ports of fabric cards. In one implementation the multicast engine is associated with a table having instructions for replicating or modifying multicast packets received, and forwarding the packets accordingly.

摘要翻译： 在路由器内多个地提供多播引擎，用于复制和/或修改被标识为多播分组的分组。 在优选实施例中，引擎与路由器的一个或多个端口集成，特别是与一个或多个结构卡端口。 在一个实现中，多播引擎与具有用于复制或修改所接收的多播分组的指令的表相关联，并相应地转发分组。

公开(公告)号：US06762999B2

公开(公告)日：2004-07-13

申请号：US10219565

申请日：2002-08-14

申请人： Bora Akyol ,  Puneet Agarwal ,  Les Ginsberg

发明人： Bora Akyol ,  Puneet Agarwal ,  Les Ginsberg

IPC分类号： H04L1226

CPC分类号： H04L45/04 ,  H04L41/0663 ,  H04L41/0803 ,  H04L43/0811 ,  H04L43/0817 ,  H04L45/12 ,  H04L45/586 ,  H04L45/60 ,  H04L49/555 ,  H04L69/40

摘要： A distributed Link-State Routing Protocol (LSRP) system in a packet switch having external communication ports has a first card executing Update process of the LSRP, making database updates, a second card executing Decision process(Shortest Path First (SPF)) of the LSRP, and a communication fabric coupling the cards with each other and the external ports. The LSRP may be an IS—IS system. In some embodiments there are additional cards involved, and the distribution of Link-State functions is over a set of multiple cards. Also in some embodiments there is a Location Service (LS) controller monitoring and configuring cards in the system.

公开(公告)号：US08769660B2

公开(公告)日：2014-07-01

申请号：US12360019

申请日：2009-01-26

申请人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

发明人： Puneet Agarwal ,  Saibal Kumar Adhya ,  Srinivasan Thirunarayanan ,  James Harris

IPC分类号： G06F15/16

CPC分类号： H04L63/0227 ,  H04L63/0272 ,  H04L63/0281 ,  H04L63/166 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2842

摘要： The present application enables the enterprise to configure various policies to address various subsets of the traffic based on various information relating the client, the server, or the details and nature of the interactions between the client and the server. An intermediary deployed between clients and servers may establish an SSL VPN session between a client and a server. The intermediary may receiving a response from a server to a request of a client via the clientless SSL VPN session. The response may comprise one or more cookies. The intermediary may identify an access profile for the clientless SSL VPN session. The access profile may identify one or more policies for proxying cookies. The intermediary may determine, responsive to the one or more policies of the access profile, whether to proxy or bypass proxying for the client the one or more cookies.

摘要翻译： 本应用使得企业能够基于与客户端，服务器或客户端与服务器之间的交互的细节和性质相关的各种信息来配置各种策略来处理流量的各种子集。 部署在客户端和服务器之间的中介可以在客户端和服务器之间建立SSL VPN会话。 中间人可以通过无客户端SSL VPN会话从服务器接收到客户端的请求的响应。 响应可以包括一个或多个cookie。 中介可以识别无客户端SSL VPN会话的访问配置文件。 访问配置文件可以标识用于代理Cookie的一个或多个策略。 中介可以响应于访问简档的一个或多个策略来确定是否为客户端代理或绕过代理一个或多个cookie。

公开(公告)号：US20130322271A1

公开(公告)日：2013-12-05

申请号：US13610165

申请日：2012-09-11

申请人： Brad Matthews ,  Puneet Agarwal

发明人： Brad Matthews ,  Puneet Agarwal

IPC分类号： H04J99/00 ,  H04L12/26

CPC分类号： H04L43/0882 ,  H04L49/251 ,  H04L49/252

摘要： A system transfers data. The system includes an ingress node transferring data at a determined bandwidth. The ingress node includes a buffer and operates based on a monitored node parameter. The system includes a controller in communication with the ingress node. The controller is configured to allocate, based on the monitored node parameter, an amount of the determined bandwidth for directly transferring data to bypass the buffer of the ingress node.

摘要翻译： 系统传输数据。 该系统包括以确定的带宽传送数据的入口节点。 入口节点包括缓冲器并且基于被监视的节点参数进行操作。 该系统包括与入口节点通信的控制器。 控制器被配置为基于所监视的节点参数来分配用于直接传送数据以绕过入口节点的缓冲器的确定带宽的量。

公开(公告)号：US08446831B2

公开(公告)日：2013-05-21

申请号：US12881966

申请日：2010-09-14

申请人： Bruce Kwan ,  Puneet Agarwal

发明人： Bruce Kwan ,  Puneet Agarwal

IPC分类号： G01R31/08

CPC分类号： H04L47/10 ,  H04L47/215 ,  H04L47/2458 ,  H04L47/29 ,  H04L47/31

摘要： Example methods and apparatus for hierarchical bandwidth management are disclosed. An example method includes, receiving a data packet included in a first data traffic flow having a first rate of traffic. The example method further includes marking the data packet with a first marker type if the first rate of traffic is less than or equal to a first threshold, otherwise marking the data packet with a second marker type. The example method also includes combining the first data traffic flow with a second data traffic flow having a second rate of traffic to produce a third data traffic flow having a third rate of traffic. The example method still further includes, if the data packet is marked with the first marker type, forwarding the data packet in the third data flow. The example method yet further includes, if the data packet is marked with the second marker type and the third rate of traffic is less than or equal to a second threshold, forwarding the data packet in the third data flow, otherwise, discarding the packet.

摘要翻译： 公开了用于分级带宽管理的示例方法和装置。 示例性方法包括：接收包含在具有第一速率的第一数据业务流中的数据分组。 该示例方法还包括如果第一速率小于或等于第一阈值，则以第一标记类型标记数据分组，否则用第二标记类型标记数据分组。 示例性方法还包括将第一数据业务流与具有第二速率的第二数据业务流组合以产生具有第三速率的第三数据业务流。 该示例方法还包括如果数据分组用第一标记类型标记，则在第三数据流中转发数据分组。 该示例方法还包括如果数据分组被标记为第二标记类型，并且第三速率小于或等于第二阈值，则转发第三数据流中的数据分组，否则丢弃该分组。

公开(公告)号：US20130003549A1

公开(公告)日：2013-01-03

申请号：US13174511

申请日：2011-06-30

申请人： Brad MATTHEWS ,  Puneet Agarwal

发明人： Brad MATTHEWS ,  Puneet Agarwal

IPC分类号： H04L12/26

CPC分类号： H04L41/0668 ,  H04L45/245 ,  H04L45/38 ,  H04L69/14 ,  Y02D50/30

摘要： Methods, systems, and computer program product embodiments for managing traffic flows member of a plurality of available member resources in a communications device are disclosed. Embodiments include configuring a flow table containing a plurality of mappings, where each of the mappings specifies a relationship between one of a range of index values and at least one of the plurality of available member resources of an aggregated resource, assigning using the flow table respective traffic flows to at least one of the plurality of available links, and responsive to a change in the plurality of available member resources, changing the plurality of mappings.

摘要翻译： 公开了用于在通信设备中管理多个可用成员资源的流量成员的方法，系统和计算机程序产品实施例。 实施例包括配置包含多个映射的流表，其中每个映射指定索引值的范围中的一个与聚合资源的多个可用成员资源中的至少一个之间的关系，使用流表分别分配 业务流向多个可用链路中的至少一个，并且响应于多个可用成员资源中的改变，改变多个映射。

公开(公告)号：US08249067B2

公开(公告)日：2012-08-21

申请号：US12201931

申请日：2008-08-29

申请人： Rupa Budhia ,  Venkateshwar Buduma ,  Puneet Agarwal

发明人： Rupa Budhia ,  Venkateshwar Buduma ,  Puneet Agarwal

IPC分类号： H04L12/28

CPC分类号： H04L49/3009 ,  H04L49/109

摘要： An apparatus may include a port interface that is arranged and configured to receive a packet from an ingress port, a traffic management module being operatively coupled to the port interface and that is arranged and configured to manage routing of the packet to a destination, and a packet processing engine that is arranged and configured to perform packet processing on the packet and to associate a tag with the packet, where the tag includes a packet processing source field, a destination field, and a fabric source field.

摘要翻译： 设备可以包括端口接口，其被布置和配置为从入口端口接收分组，业务管理模块可操作地耦合到端口接口，并且被配置和配置为管理分组到目的地的路由，以及 分组处理引擎，其被配置和配置为对分组执行分组处理，并且将标签与分组相关联，其中标签包括分组处理源字段，目的地字段和结构源字段。

公开(公告)号：US08248918B2

公开(公告)日：2012-08-21

申请号：US12371205

申请日：2009-02-13

申请人： Jin Ding ,  Bruce Kwan ,  Puneet Agarwal

发明人： Jin Ding ,  Bruce Kwan ,  Puneet Agarwal

IPC分类号： G01R31/08

CPC分类号： H04L45/16 ,  H04L45/00 ,  H04L45/02 ,  H04L45/18 ,  H04L45/22 ,  H04L45/28

摘要： A node comprising: an ingress port configured to receive data; a plurality of egress ports configured to transmit data; a routing table configured to provide, at least part of, both a preferred routing path and a recovery routing path; a data tag engine configured to read a tag, associated with the data, that indicates the routing state of the data and, based at least in part upon the tag determine whether to use the preferred routing path or the recovery routing path for a selected path, and determine if the tag is to be modified to indicate a change in the routing status of the data; and a routing engine configured to utilize the selected path to determine the egress port from which to transmit the data.

摘要翻译： 一种节点，包括：入口端口，被配置为接收数据; 配置成发送数据的多个出口端口; 路由表，被配置为提供优选路由路径和恢复路由路径的至少一部分; 配置为读取与数据相关联的标签的数据标签引擎，其指示数据的路由状态，并且至少部分地基于标签确定是否对所选路径使用优选路由路径或恢复路由路径 并且确定是否要修改标签以指示数据的路由状态的改变; 以及路由引擎，被配置为利用所选择的路径来确定从其发送数据的出口端口。