公开(公告)号：US20110113490A1

公开(公告)日：2011-05-12

申请号：US12897627

申请日：2010-10-04

申请人： Sheng-Yih Wang ,  Ron Talmor

发明人： Sheng-Yih Wang ,  Ron Talmor

IPC分类号： G06F12/14

CPC分类号： H04L63/101 ,  H04L63/1458 ,  H04L2463/141

摘要： Techniques for detecting and responding to attacks on computer and network systems including denial-of-service (DoS) attacks. A packet is classified as potentially being an attack packet if it matches an access control list (ACL) specifying one or more conditions. One or more actions may be performed responsive to packets identified as potential attack packets. These actions may include dropping packets identified as potential attack packets for a period of time, rate limiting a port over which the potential attack packets are received for a period of time, and other actions.

摘要翻译： 用于检测和响应计算机和网络系统（包括拒绝服务（DoS））攻击的技术。 如果匹配指定一个或多个条件的访问控制列表（ACL），则分组被分类为潜在的攻击分组。 响应于被识别为潜在攻击分组的分组，可以执行一个或多个动作。 这些动作可能包括丢弃被识别为潜在攻击包的数据包一段时间，速率限制一段时间内接收到潜在攻击包的端口以及其他动作。

公开(公告)号：US07832009B2

公开(公告)日：2010-11-09

申请号：US11616209

申请日：2006-12-26

申请人： Sheng-Yih Wang ,  Ron Talmor

发明人： Sheng-Yih Wang ,  Ron Talmor

IPC分类号： G06F11/00

CPC分类号： H04L63/101 ,  H04L63/1458 ,  H04L2463/141

摘要： Techniques for detecting and responding to attacks on computer and network systems including denial-of-service (DoS) attacks. A packet is classified as potentially being an attack packet if it matches an access control list (ACL) specifying one or more conditions. One or more actions may be performed responsive to packets identified as potential attack packets. These actions may include dropping packets identified as potential attack packets for a period of time, rate limiting a port over which the potential attack packets are received for a period of time, and other actions.

摘要翻译： 用于检测和响应计算机和网络系统（包括拒绝服务（DoS））攻击的技术。 如果匹配指定一个或多个条件的访问控制列表（ACL），则分组被分类为潜在的攻击分组。 响应于被识别为潜在攻击分组的分组，可以执行一个或多个动作。 这些动作可能包括丢弃被识别为潜在攻击包的数据包一段时间，速率限制一段时间内接收潜在攻击包的端口以及其他动作。

公开(公告)号：US08509106B2

公开(公告)日：2013-08-13

申请号：US12897627

申请日：2010-10-04

申请人： Sheng-Yih Wang ,  Ron Talmor

发明人： Sheng-Yih Wang ,  Ron Talmor

IPC分类号： H04L1/00

CPC分类号： H04L63/101 ,  H04L63/1458 ,  H04L2463/141

摘要： Techniques for detecting and responding to attacks on computer and network systems including denial-of-service (DoS) attacks. A packet is classified as potentially being an attack packet if it matches an access control list (ACL) specifying one or more conditions. One or more actions may be performed responsive to packets identified as potential attack packets. These actions may include dropping packets identified as potential attack packets for a period of time, rate limiting a port over which the potential attack packets are received for a period of time, and other actions.

摘要翻译： 用于检测和响应计算机和网络系统（包括拒绝服务（DoS））攻击的技术。 如果匹配指定一个或多个条件的访问控制列表（ACL），则分组被分类为潜在的攻击分组。 响应于被识别为潜在攻击分组的分组，可以执行一个或多个动作。 这些动作可能包括丢弃被识别为潜在攻击包的数据包一段时间，速率限制一段时间内接收到潜在攻击包的端口以及其他动作。

公开(公告)号：US20110066753A1

公开(公告)日：2011-03-17

申请号：US12719822

申请日：2010-03-08

申请人： Sheng-Yih Wang ,  Lok Yan Hui ,  Sanjay Khanna ,  Ivy Pei-Shan Hsu

发明人： Sheng-Yih Wang ,  Lok Yan Hui ,  Sanjay Khanna ,  Ivy Pei-Shan Hsu

IPC分类号： G06F15/173

CPC分类号： H04L45/42 ,  H04L45/586 ,  H04L45/66

摘要： A solution for virtual router redundancy for server virtualization includes, at a network device configured as a backup router of a virtual router, examining a packet stored in a memory of the network device. Responsive to the examining, the network device determines whether to forward the packet via a network towards a destination or to send the packet via the network to a master router of the virtual router for forwarding of the packet, by the master router, towards the destination.

摘要翻译： 用于服务器虚拟化的虚拟路由器冗余的解决方案包括在配置为虚拟路由器的备份路由器的网络设备上，检查存储在网络设备的存储器中的分组。 响应于检查，网络设备确定是否经由网络朝向目的地转发分组，或者经由网络将分组发送到虚拟路由器的主路由器，以通过主路由器向目的地转发分组 。

公开(公告)号：US08514854B2

公开(公告)日：2013-08-20

申请号：US12719822

申请日：2010-03-08

申请人： Sheng-Yih Wang ,  Lok Yan Hui ,  Sanjay Khanna ,  Ivy Pei-Shan Hsu

发明人： Sheng-Yih Wang ,  Lok Yan Hui ,  Sanjay Khanna ,  Ivy Pei-Shan Hsu

IPC分类号： H04L12/28

CPC分类号： H04L45/42 ,  H04L45/586 ,  H04L45/66

摘要： A solution for virtual router redundancy for server virtualization includes, at a network device configured as a backup router of a virtual router, examining a packet stored in a memory of the network device. Responsive to the examining, the network device determines whether to forward the packet via a network towards a destination or to send the packet via the network to a master router of the virtual router for forwarding of the packet, by the master router, towards the destination.

公开(公告)号：US20090300759A1

公开(公告)日：2009-12-03

申请号：US11616209

申请日：2006-12-26

申请人： Sheng-Yih Wang ,  Ron Talmor

发明人： Sheng-Yih Wang ,  Ron Talmor

IPC分类号： G06F12/14

CPC分类号： H04L63/101 ,  H04L63/1458 ,  H04L2463/141

摘要： Techniques for detecting and responding to attacks on computer and network systems including denial-of-service (DoS) attacks. A packet is classified as potentially being an attack packet if it matches an access control list (ACL) specifying one or more conditions. One or more actions may be performed responsive to packets identified as potential attack packets. These actions may include dropping packets identified as potential attack packets for a period of time, rate limiting a port over which the potential attack packets are received for a period of time, and other actions.

摘要翻译： 用于检测和响应计算机和网络系统（包括拒绝服务（DoS））攻击的技术。 如果匹配指定一个或多个条件的访问控制列表（ACL），则分组被分类为潜在的攻击分组。 响应于被识别为潜在攻击分组的分组，可以执行一个或多个动作。 这些动作可能包括丢弃被识别为潜在攻击包的数据包一段时间，速率限制一段时间内接收到潜在攻击包的端口以及其他动作。