-
公开(公告)号:US11563632B2
公开(公告)日:2023-01-24
申请号:US17231063
申请日:2021-04-15
申请人: A10 Networks, Inc.
发明人: Rishi Sampat , Rajkumar Jalan
IPC分类号: H04L41/0806 , H04L69/163 , G06F9/455 , H04L67/141 , G06F9/54 , H04L67/00 , H04L41/0233 , G06F9/445 , G06F21/00 , G06F21/57 , H04L67/60 , H04L9/40 , H04L41/084
摘要: Provided are systems and methods for configuring a network servicing node with user-defined instruction scripts. A method for configuring a network servicing node with user-defined instruction scripts may commence with receiving, from a user of the network servicing node, a user loadable program. The user loadable program may include at least the user-defined instruction scripts. The method may continue with receiving a data packet from a data network associated with the user. The method may further include determining a condition associated with the data packet. The method may continue with identifying, in a name table, a program name associated with a program using the condition. The program may be the user loadable program. The method may further include processing the data packet by getting an instruction of the user-defined instruction scripts from a storage module and applying the instruction to the data packet.
-
公开(公告)号:US11323529B2
公开(公告)日:2022-05-03
申请号:US15652820
申请日:2017-07-18
申请人: A10 NETWORKS, INC.
发明人: Rishi Sampat , Rajkumar Jalan
IPC分类号: H04L67/56 , H04L69/168 , H04L67/01 , H04L69/326 , H04L69/163 , H04L67/02 , H04L67/563
摘要: Systems and methods for TCP fast open support in proxy devices are provided. An example system may include at least one circuit and at least one data plane communicatively coupled to the circuit. The circuit may be configured to receive at least one SYN packet. The at least one SYN packet is associated with at least one client device and includes a cookie. The circuit can be configured to validate the cookie. If the result of the validation is positive, the data plane can be configured to initiate, based on the at least one SYN packet, a connection between the at least one client device and at least one server. If the result of the validation is negative, the circuit can be configured to generate, based on the SYN packet, a new cookie and send a SYN-ACK packet to the client, the SYN-ACK packet including the new cookie.
-
公开(公告)号:US20210258209A1
公开(公告)日:2021-08-19
申请号:US17231063
申请日:2021-04-15
申请人: A10 Networks, Inc.
发明人: Rishi Sampat , Rajkumar Jalan
IPC分类号: H04L12/24 , H04L29/06 , H04L29/08 , G06F9/455 , G06F9/54 , G06F9/445 , G06F21/00 , G06F21/57
摘要: Provided are systems and methods for configuring a network servicing node with user-defined instruction scripts. A method for configuring a network servicing node with user-defined instruction scripts may commence with receiving, from a user of the network servicing node, a user loadable program. The user loadable program may include at least the user-defined instruction scripts. The method may continue with receiving a data packet from a data network associated with the user. The method may further include determining a condition associated with the data packet. The method may continue with identifying, in a name table, a program name associated with a program using the condition. The program may be the user loadable program. The method may further include processing the data packet by getting an instruction of the user-defined instruction scripts from a storage module and applying the instruction to the data packet.
-
公开(公告)号:US10581907B2
公开(公告)日:2020-03-03
申请号:US16114619
申请日:2018-08-28
申请人: A10 NETWORKS, INC.
发明人: Rajkumar Jalan , Ronald Wai Lun Szeto , Steven Wu
IPC分类号: H04L29/06
摘要: Provided are methods and systems for network access control. A method for network access control may commence with determining whether a client device is a trusted source or an untrusted source. The determination may be performed using a SYN packet received from the client device. The SYN packet may include identifying information for the client device. When it is determined that the client device is neither the trusted source nor the untrusted source, the method may continue with transmitting a SYN/ACK packet to the client device. The SYN/ACK packet may include a SYN cookie and identifying information for a network device. The method may further include receiving an ACK packet from the client device that may include the identifying information for the client device, identifying information for the network device, and the SYN cookie. The method may continue with establishing a connection with a network for the client device.
-
公开(公告)号:US10484465B2
公开(公告)日:2019-11-19
申请号:US15858578
申请日:2017-12-29
申请人: A10 NETWORKS, INC.
摘要: The processing of data packets sent over a communication session between a host and a server by a service gateway includes processing a data packet using a current hybrid-stateful or hybrid-stateless processing method. The processing then checks whether a hybrid-stateless or hybrid-stateful condition is satisfied. When one of the sets of conditions is satisfied, the process includes changing from a hybrid-stateful to a hybrid-stateless processing method, or vice versa, for a subsequently received data packet. If the conditions are not satisfied, the process continues as originally structured.
-
公开(公告)号:US10298457B2
公开(公告)日:2019-05-21
申请号:US15881192
申请日:2018-01-26
申请人: A10 NETWORKS, INC.
发明人: Rajkumar Jalan , Dennis Oshiba
摘要: Methods and systems for synchronization of configuration files of a plurality of blades in a virtual application distribution chassis are disclosed. In an exemplary method, a master blade processes a configuration command, updates a first configuration file with the configuration command and generates an updated tag, and sends a configuration message to at least one slave blade of the virtual application distribution chassis informing of the updated configuration file. The configuration message is received by a given slave blade of the one or more slave blades and compared with a second configuration file stored at the given slave blade; and in response to determining that the updated tag in the configuration message is more recent than the tag in the second configuration file stored at the given slave blade, the slave blade sends a request for the updated configuration file to the master blade.
-
公开(公告)号:US20190028559A1
公开(公告)日:2019-01-24
申请号:US15652820
申请日:2017-07-18
申请人: A10 NETWORKS, INC.
发明人: Rishi Sampat , Rajkumar Jalan
摘要: Systems and methods for TCP fast open support in proxy devices are provided. An example system may include at least one circuit and at least one data plane communicatively coupled to the circuit. The circuit may be configured to receive at least one SYN packet. The at least one SYN packet is associated with at least one client device and includes a cookie. The circuit can be configured to validate the cookie. If the result of the validation is positive, the data plane can be configured to initiate, based on the at least one SYN packet, a connection between the at least one client device and at least one server. If the result of the validation is negative, the circuit can be configured to generate, based on the SYN packet, a new cookie and send a SYN-ACK packet to the client, the SYN-ACK packet including the new cookie.
-
公开(公告)号:US20180287937A1
公开(公告)日:2018-10-04
申请号:US15997446
申请日:2018-06-04
申请人: A10 NETWORKS, INC.
发明人: Rajkumar Jalan , Gurudeep Kamat
IPC分类号: H04L12/721 , H04L12/725
摘要: Provided are methods and systems for processing data packets in a data network using a policy-based network path. The method may commence with receiving the data packet associated with a service session from a client. The method may continue with determining data packet information associated with the data packet. The method may further include determining the policy-based network path for the data packet based on the data packet information and one or more packet processing criteria. The method may continue with routing, based on the determination of the policy-based network path, the data packet along the policy-based network path.
-
公开(公告)号:US20180248917A1
公开(公告)日:2018-08-30
申请号:US15967448
申请日:2018-04-30
申请人: A10 NETWORKS, INC.
发明人: Rajkumar Jalan , Rishi Sampat
摘要: Provided are methods and systems for configuring a network device with user-defined instruction scripts. The method may commence with receiving a request for a network session between a client device and a server. The method may further include receiving a user-defined class and a user-defined object configuration. The user-defined class and the user-defined object configuration may include the user-defined instruction scripts provided by a user of the client device. The method may further include instructing an object virtual machine to generate at least one user-defined object based on the user-defined class and the user-defined object configuration. The method may continue with instructing an object virtual machine to generate at least one user-defined object based on the user-defined class and the user-defined object configuration.
-
公开(公告)号:US10021174B2
公开(公告)日:2018-07-10
申请号:US14279270
申请日:2014-05-15
申请人: A10 Networks, Inc.
IPC分类号: H04L12/803 , H04L29/08 , H04L12/725
CPC分类号: H04L67/1004 , H04L45/306 , H04L67/1012
摘要: Provided are methods and systems for distributing service sessions from a client device in a service data network. A packet of the service session is received by a forwarding node. The forwarding node determines whether the packet matches a service address associated with the service session. Responsive to the determining, a servicing node associated with the service address is selected based on a forwarding policy. The packet is sent to the selected servicing node. The servicing node determines whether the packet is a service request packet. A server is selected based on a service policy, wherein the server is configured to serve the service session. The packet is sent to the server. Before being received by a forwarding node, the packet is received by a gateway node. The gateway node determines whether the packet matches the service address and selects the forwarding node based on a notification.
-
-
-
-
-
-
-
-
-