利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

40 条记录 (耗时 0.028 秒)

    Systems and methods for network access control
    1.
    发明授权
    Systems and methods for network access control 有权

    公开(公告)号:US10581907B2

    公开(公告)日:2020-03-03

    申请号:US16114619

    申请日:2018-08-28

    申请人: A10 NETWORKS, INC.

    发明人: Rajkumar Jalan Ronald Wai Lun Szeto Steven Wu

    IPC分类号: H04L29/06

    摘要: Provided are methods and systems for network access control. A method for network access control may commence with determining whether a client device is a trusted source or an untrusted source. The determination may be performed using a SYN packet received from the client device. The SYN packet may include identifying information for the client device. When it is determined that the client device is neither the trusted source nor the untrusted source, the method may continue with transmitting a SYN/ACK packet to the client device. The SYN/ACK packet may include a SYN cookie and identifying information for a network device. The method may further include receiving an ACK packet from the client device that may include the identifying information for the client device, identifying information for the network device, and the SYN cookie. The method may continue with establishing a connection with a network for the client device.

    Combining stateless and stateful server load balancing
    2.
    发明授权
    Combining stateless and stateful server load balancing 有权

    公开(公告)号:US10484465B2

    公开(公告)日:2019-11-19

    申请号:US15858578

    申请日:2017-12-29

    申请人: A10 NETWORKS, INC.

    发明人: Rajkumar Jalan Feilong Xu Lalgudi Narayanan Kannan Ronald Wai Lun Szeto

    IPC分类号: H04L29/08 H04L12/66

    摘要: The processing of data packets sent over a communication session between a host and a server by a service gateway includes processing a data packet using a current hybrid-stateful or hybrid-stateless processing method. The processing then checks whether a hybrid-stateless or hybrid-stateful condition is satisfied. When one of the sets of conditions is satisfied, the process includes changing from a hybrid-stateful to a hybrid-stateless processing method, or vice versa, for a subsequently received data packet. If the conditions are not satisfied, the process continues as originally structured.

    Distributing application traffic to servers based on dynamic service response time
    4.
    发明授权
    Distributing application traffic to servers based on dynamic service response time 有权

    公开(公告)号:US10516730B2

    公开(公告)日:2019-12-24

    申请号:US16203661

    申请日:2018-11-29

    申请人: A10 Networks, Inc.

    发明人: Rajkumar Jalan Ronald Wai Lun Szeto Feilong Xu

    IPC分类号: H04L29/08 G06F9/50 H04L12/26 H04L12/24 H04L12/859

    摘要: Provided are methods and systems for distributing application traffic. A method for distributing application traffic may commence with relaying a first service request for a first service session from a service gateway to a server. The first service request may be received from a host and may be associated with a service request time. The method may further include receiving, from the server, a service response. The service response may be associated with a service response time. The method may continue with calculating a service processing time based on the service request time and the service response time and comparing the service processing time with an expected service processing time. The method may further include receiving, from the host, a second service request for a second service session. The method may continue with selectively relaying the second server request to the server based on the service processing time.

    Distributing application traffic to servers based on dynamic service response time
    5.
    发明授权
    Distributing application traffic to servers based on dynamic service response time 有权

    公开(公告)号:US10178165B2

    公开(公告)日:2019-01-08

    申请号:US15882755

    申请日:2018-01-29

    申请人: A10 NETWORKS, INC.

    发明人: Rajkumar Jalan Ronald Wai Lun Szeto Feilong Xu

    IPC分类号: H04L29/08 H04L12/26 G06F9/50 H04L12/24 H04L12/859

    摘要: Provided are methods and systems for distributing application traffic. A method for distributing application traffic may commence with receiving, from a host, a first service request for a first service session. The first service request may be associated with a service request time. The method may continue with relaying the first service request from a service gateway to a server. The method may further include receiving, from the server, a service response. The service response may be associated with a service response time. The method may continue with calculating a service processing time for the first service request based on the service request time and the service response time. The method may further include receiving, from the host, a second service request for a second service session. The method may continue with selectively relaying the second server request to the server based on the service processing time.

    System and method to balance servers based on server load status
    8.
    发明授权
    System and method to balance servers based on server load status 有权

    公开(公告)号:US09961135B2

    公开(公告)日:2018-05-01

    申请号:US14956230

    申请日:2015-12-01

    申请人: A10 Networks, Inc.

    发明人: Lalgudi Narayanan Kannan Ronald Wai Lun Szeto Lee Chen Feilong Xu Rajkumar Jalan

    IPC分类号: H04L12/701 H04L29/08

    CPC分类号: H04L67/1008 H04L67/02 H04L67/1002

    摘要: A method, system, and computer program product for balancing servers based on server load status, include: receiving from a server a service response to a service request, the service response including a result from a processing of the service request and a server status indicating a computing load status of the server; obtaining the server status from the service response; receiving a next service request from a host, the next service request comprising a Uniform Resource Locator (URL); determining that the server is configured to process the URL; determining whether the server status indicates that the server is available to process the next service request; and in response to determining that the server status indicates that the server is available to process the next service request, sending the next service request to the server.

    Systems and methods for network access control
    9.
    发明授权
    Systems and methods for network access control 有权

    公开(公告)号:US09838425B2

    公开(公告)日:2017-12-05

    申请号:US14261322

    申请日:2014-04-24

    申请人: A10 Networks, Inc.

    发明人: Rajkumar Jalan Ronald Wai Lun Szeto Steven Wu

    IPC分类号: H04L29/06

    CPC分类号: H04L63/1466 H04L63/0876 H04L63/101 H04L63/1458

    摘要: Network access control systems and methods are provided herein. A method includes receiving at a network device a SYN packet from a client device over a network, determining if the client device is a trusted source for the network using the SYN packet, if the client device is a trusted resource, receiving an acknowledgement (ACK) packet from the client device that includes identifying information for the client device plus an additional value, and identifying information for the network device, and establishing a connection with the network for the client device.

    Distributed multi-processing security gateway
    10.
    发明授权
    Distributed multi-processing security gateway 有权

    公开(公告)号:US09344456B2

    公开(公告)日:2016-05-17

    申请号:US14570372

    申请日:2014-12-15

    申请人: A10 Networks, Inc.

    发明人: Lee Chen Ronald Wai Lun Szeto

    IPC分类号: G06F21/00 H04L29/06

    CPC分类号: H04L63/20 H04L29/12433 H04L29/12481 H04L61/2539 H04L61/2557 H04L63/0209 H04L63/0218 H04L63/0227 H04L63/0281 H04L65/1069

    摘要: A system and method for a distributed multi-processing security gateway establishes a host side session, selects a proxy network address for a server, uses the proxy network address to establish a server side session, receives a data packet, assigns a central processing unit core from a plurality of central processing unit cores in a multi-core processor of the security gateway to process the data packet, processes the data packet according to security policies, and sends the processed data packet. The proxy network address is selected such that a same central processing unit core is assigned to process data packets from the server side session and the host side session. By assigning central processing unit cores in this manner, higher capable security gateways are provided.