公开(公告)号：US07284268B2

公开(公告)日：2007-10-16

申请号：US10255608

申请日：2002-09-27

申请人： Jeffrey C. Schmidt ,  Philip A. Gutierrez ,  Charles R. Barker, Jr.

发明人： Jeffrey C. Schmidt ,  Philip A. Gutierrez ,  Charles R. Barker, Jr.

IPC分类号： H04L29/00 ,  H04L29/02

CPC分类号： H04L63/0209 ,  H04L45/60 ,  H04L63/10 ,  H04W4/12 ,  H04W84/18

摘要： A system and method for providing the ability to selectively share data in a network routing device with an associated host. The system and method employs a hardware firewall in the routing device which restricts the host such that it can only access areas in shared memory which contains data destined for the host. The routing device CPU notifies the host of pending data and the location of that data in the shared memory. The hardware firewall is also notified of the location in shared memory which the host may access. When the host attempts to read the data, the firewall ensures that only the stated memory area or areas are accessed by the host. Once the data has been read by the host, the firewall is notified to cancel the host's ability to access the shared memory until such time as a new packet destined for the host arrives in the routing device.

摘要翻译： 一种用于提供选择性地与相关主机共享网络路由设备中的数据的能力的系统和方法。 系统和方法在路由设备中采用限制主机的硬件防火墙，使其只能访问共享存储器中包含去往主机的数据的区域。 路由设备CPU向主机通知待处理数据和该数据在共享存储器中的位置。 硬件防火墙也被通知主机可以访问的共享内存中的位置。 当主机尝试读取数据时，防火墙确保主机仅访问所述的内存区域或区域。 一旦主机读取数据，通知防火墙取消主机访问共享内存的能力，直到目的地为主机的新数据包到达路由设备。