公开(公告)号：US20240275680A1

公开(公告)日：2024-08-15

申请号：US18165250

申请日：2023-02-06

申请人： Gigamon Inc.

发明人： Saritha Palnati ,  Naveed Cochinwala

IPC分类号： H04L41/0894 ,  H04L41/0816 ,  H04L41/40

CPC分类号： H04L41/0894 ,  H04L41/0816 ,  H04L41/40

摘要： A method of automatic and dynamic environment discovery and policy adaptation for a containerized environment is disclosed. A plurality of traffic monitoring policies for acquiring and monitoring data traffic transmitted between one or more components of a containerized environment are accessed. The containerized environment includes a plurality of software-implemented containers. The traffic monitoring policies are caused to be applied to one or more components in the containerized environment. A change to a configuration of the containerized environment is automatically detected. In response, one or more containers of the plurality of software-implemented containers are automatically identified as containers affected by the change. Based on that identification, a modification of a traffic monitoring policy is then automatically determined to produce a modified traffic monitoring policy, and the modified traffic monitoring policy is caused to be applied to one or more components in the containerized environment.

公开(公告)号：US20230327964A1

公开(公告)日：2023-10-12

申请号：US18334222

申请日：2023-06-13

申请人： Gigamon Inc.

发明人： Anil RAO

IPC分类号： H04L43/028 ,  H04L67/1023 ,  H04L67/1034

CPC分类号： H04L43/028 ,  H04L67/1023 ,  H04L67/1034

摘要： Introduced here are network visibility appliances capable of implementing a distributed deduplication scheme by routing traffic amongst multiple instances of a deduplication program. Data traffic can be forwarded to a pool of multiple network visibility appliances that collectively ensure no duplicate copies of data packets exist in the data traffic. The network visibility appliances can route the traffic to different instances of the deduplication program so that duplicate copies of a data packet are guaranteed to arrive at the same instance of the deduplication program, regardless of which network visibility appliance(s) initially received the duplicate copies of the data packet.

公开(公告)号：US11700568B2

公开(公告)日：2023-07-11

申请号：US17364483

申请日：2021-06-30

申请人： Gigamon Inc.

发明人： Rakesh Muthusamy ,  Tushar R. Jagtap ,  Ujjvala Nangineni ,  Kristian Pereira

IPC分类号： H04W40/24 ,  H04W24/08 ,  H04W40/30 ,  H04W88/16

CPC分类号： H04W40/246 ,  H04W24/08 ,  H04W40/30 ,  H04W88/16

摘要： Introduced here are visibility platforms able to process the traffic handled by the gateways of an Evolved Packet Core (EPC) with Control and User Plane Separation (CUPS). A visibility platform can include a control processing node (CPN) and one or more user processing nodes (UPNs). The visibility platform may populate a data structure in which the CPN and UPNs are associated with locations along an interface on which Sx/N4 traffic is exchanged between the control and user planes. Each location may be representative of the point on the Sx/N4 interface at which Sx/N4 traffic processed by the corresponding node is acquired. The CPN can use the data structure to program session flows that impact how user traffic is handled by the UPNs.

公开(公告)号：US20230128082A1

公开(公告)日：2023-04-27

申请号：US18057581

申请日：2022-11-21

申请人： Gigamon Inc.

发明人： Dale L. Guise, JR. ,  David Chun Ying Cheung ,  Fushan Allan Yuan

IPC分类号： H04L9/40 ,  H04L9/32 ,  H04L12/46

摘要： A proxy device coupled to a network receives communications between a client and a server on the network. The proxy device operates transparently to the client and the server, while coupled to receive and process the communications from a node on the network via a network port in a one-armed configuration. The proxy device communicates packets of the communications with an external tool coupled to the proxy device via a tool port and operates transparently to the nod and the tool. In certain embodiments, the tool may be a network security device, such as a firewall.

公开(公告)号：US11509631B2

公开(公告)日：2022-11-22

申请号：US16895831

申请日：2020-06-08

申请人： Gigamon Inc.

发明人： Dale L. Guise, Jr. ,  David Chun Ying Cheung ,  Fushan Allan Yuan

IPC分类号： H04L9/40 ,  H04L9/32 ,  H04L12/46

摘要： A proxy device coupled to a network receives communications between a client and a server on the network. The proxy device operates transparently to the client and the server, while coupled to receive and process the communications from a node on the network via a network port in a one-armed configuration. The proxy device communicates packets of the communications with an external tool coupled to the proxy device via a tool port and operates transparently to the nod and the tool. In certain embodiments, the tool may be a network security device, such as a firewall.

公开(公告)号：US11057820B2

公开(公告)日：2021-07-06

申请号：US16696693

申请日：2019-11-26

申请人： Gigamon Inc.

发明人： Rakesh Muthusamy ,  Tushar R. Jagtap ,  Ujjvala Nangineni ,  Kristian Pereira

IPC分类号： H04W40/24 ,  H04W24/08 ,  H04W40/30 ,  H04W88/16

摘要： Introduced here are visibility platforms able to process the traffic handled by the gateways of an Evolved Packet Core (EPC) with Control and User Plane Separation (CUPS). A visibility platform can include a control processing node (CPN) and one or more user processing nodes (UPNs). The visibility platform may populate a data structure in which the CPN and UPNs are associated with locations along an interface on which Sx/N4 traffic is exchanged between the control and user planes. Each location may be representative of the point on the Sx/N4 interface at which Sx/N4 traffic processed by the corresponding node is acquired. The CPN can use the data structure to program session flows that impact how user traffic is handled by the UPNs.

公开(公告)号：US20210160759A1

公开(公告)日：2021-05-27

申请号：US16696693

申请日：2019-11-26

申请人： Gigamon Inc.

发明人： Rakesh Muthusamy ,  Tushar R. Jagtap ,  Ujjvala Nangineni ,  Kristian Pereira

IPC分类号： H04W40/24 ,  H04W40/30 ,  H04W24/08

摘要： Introduced here are visibility platforms able to process the traffic handled by the gateways of an Evolved Packet Core (EPC) with Control and User Plane Separation (CUPS). A visibility platform can include a control processing node (CPN) and one or more user processing nodes (UPNs). The visibility platform may populate a data structure in which the CPN and UPNs are associated with locations along an interface on which Sx/N4 traffic is exchanged between the control and user planes. Each location may be representative of the point on the Sx/N4 interface at which Sx/N4 traffic processed by the corresponding node is acquired. The CPN can use the data structure to program session flows that impact how user traffic is handled by the UPNs.

公开(公告)号：US10986039B2

公开(公告)日：2021-04-20

申请号：US14938700

申请日：2015-11-11

申请人： Gigamon Inc.

发明人： Zbigniew Sufleta ,  Hung Nguyen

IPC分类号： H04L12/935

摘要： Embodiments are disclosed for a network switch appliance with a traffic broker that facilitates routing of network traffic between pairs of end nodes on a computer network through a configurable sequence of in-line tools.

公开(公告)号：US10965515B2

公开(公告)日：2021-03-30

申请号：US15805460

申请日：2017-11-07

申请人： Gigamon Inc.

发明人： Anil Rao

IPC分类号： H04L12/24 ,  H04L12/26 ,  H04L12/931 ,  H04L29/08 ,  H04L12/46 ,  H04L12/751 ,  H04L12/851 ,  H04L29/06

摘要： With exponential growth in virtualized traffic within physical data centers, many end users (e.g., individuals and enterprises) have begun moving work processes and data to cloud computing platforms. A visibility platform can be used to monitor virtualized traffic traversing a cloud computing platform, such as Amazon Web Services, VMware, or OpenStack. But it can be difficult to manage how the visibility platform handles incoming virtualized traffic. Introduced here, therefore, are graphs that visually represent the network fabric of a visibility platform. When the network fabric of the visibility platform is represented as a graph, an end user can easily modify the network fabric, for example, by adding, removing, or modifying nodes that represent network objects, adding, removing, or modifying connections between pairs of nodes that represent traffic flows between pairs of network objects, etc.

公开(公告)号：US10931545B2

公开(公告)日：2021-02-23

申请号：US15826286

申请日：2017-11-29

申请人： Gigamon Inc.

发明人： Srinivasa Mommileti

IPC分类号： H04L12/26 ,  H04L12/721 ,  H04L12/813 ,  H04L29/06 ,  H04L12/801 ,  H04L12/853

摘要： Methods and systems are disclosed for analyzing control signaling messages over a network to inform policy-based sampling of network flows using a network visibility node communicatively coupled to the network. In an illustrative embodiment, session dialog information is extracted from control signaling messages exchanged between subscriber devices initiating a communications session and tracked. A network flow associated with the communications session is selected for sampling at the network visibility node based on the tracked session dialog information. Packets associated with the network flow are then forwarded by the network visibility node to an external tool for processing.