-
公开(公告)号:US07974209B1
公开(公告)日:2011-07-05
申请号:US11956284
申请日:2007-12-13
CPC分类号: H04L49/9094 , H04L49/90 , H04L49/9026
摘要: Method and apparatus for packet processing by re-insertion into network interface circuitry. A method for handling a burst of packets sent to network interface circuitry includes checking for a connection table entry for received packets, and responsive to non-existence of the connection table entry for the received packets, sending the packets to network interface software for processing. The network interface software processing includes: building the connection table entry; processing the packets; and sending the packets as processed to the network interface circuitry. Additionally, a method for re-inserting a packet responsive to an active audit mode is described.
摘要翻译: 通过重新插入网络接口电路来进行数据包处理的方法和装置。 一种用于处理发送到网络接口电路的分组的突发的方法包括:检查所接收分组的连接表条目,并且响应于接收到的分组的连接表条目的不存在,将分组发送到网络接口软件进行处理。 网络接口软件处理包括:建立连接表条目; 处理数据包; 并将处理的数据包发送到网络接口电路。 此外,描述了响应于主动审核模式重新插入分组的方法。
-
公开(公告)号:US08190767B1
公开(公告)日:2012-05-29
申请号:US11949715
申请日:2007-12-03
CPC分类号: G06F17/3033 , G06F17/30306 , G06F17/30312 , H04L63/0236
摘要: Described are data structures, and methodology for forming same, for network protocol processing. A method for creating data structures for firewalling and network address translating is described. A method for creating data structures for physical layer addressing is described. A method for security protocol support using a data structure is described. A method for creating at least one data structure sized responsive to whether a firewall is activated is described. A data structure for routing packets is described. A method of forming hashing table chains is described. Additionally, method and apparatus for tracking packet states is described. More particularly, Transmission Control Protocol (“TCP”) tracking of states for packets is described. In an embodiment, a division between software states and hardware states is made as a packet is processed by both software and hardware. Additionally, method and apparatus for network protocol processing are described. For example, a packet for network address translation having a media access control header is obtained, from which information, including the media access control header, is obtained. The information is parsed into one or more data structures. It is determined whether a network processing unit is in a first round processing mode, or a second round pass-through mode.
摘要翻译: 描述了用于网络协议处理的数据结构及其形成方法。 描述了一种创建用于防火墙和网络地址转换的数据结构的方法。 描述了一种用于创建物理层寻址的数据结构的方法。 描述了使用数据结构的安全协议支持的方法。 描述了一种用于创建响应于是否激活防火墙的至少一个数据结构的方法。 描述用于路由分组的数据结构。 描述了形成散列表链的方法。 另外,描述了用于跟踪分组状态的方法和装置。 更具体地,描述了用于分组的状态的传输控制协议(“TCP”)跟踪。 在一个实施例中,软件状态和硬件状态之间的划分是由软件和硬件两者处理的数据包进行的。 另外,描述了用于网络协议处理的方法和装置。 例如,获得具有媒体访问控制头的用于网络地址转换的分组,从中获得包括媒体访问控制头的信息。 信息被解析为一个或多个数据结构。 确定网络处理单元是处于第一轮处理模式还是第二轮直通模式。
-
3.发明授权Transmitting commands and information between a TCP/IP stack and an offload unit 有权在TCP / IP堆栈和卸载单元之间传输命令和信息公开(公告)号:US07991918B2
公开(公告)日:2011-08-02
申请号:US10731383
申请日:2003-12-09
申请人: Ashutosh K. Jha , Radoslav Danilak , Paul J. Gyugyi , Thomas A. Maufer , Sameer Nanda , Anand Rajagopalan , Paul J. Sidenblad
发明人: Ashutosh K. Jha , Radoslav Danilak , Paul J. Gyugyi , Thomas A. Maufer , Sameer Nanda , Anand Rajagopalan , Paul J. Sidenblad
IPC分类号: G06F15/16
CPC分类号: H04L69/16 , H04L29/06 , H04L47/12 , H04L47/225 , H04L69/10 , H04L69/12 , H04L69/161 , H04L69/163 , H04L69/166 , H04L69/22
摘要: A method and apparatus for transmitting commands between a TCP stack and an offload unit and for communicating receive and transmit data buffer locations is described. A command ring buffer stored in system memory is used to transmit commands from the TCP stack to the offload unit and to transmit command status from the offload unit to the TCP stack. A notification ring buffer is used to transmit connection information from the offload unit to the TCP stack. Other ring buffers are used to transmit locations of transmit buffers or receive buffers stored in system memory from the TCP stack to the offload unit.
摘要翻译: 描述了一种用于在TCP堆栈和卸载单元之间传送命令并用于传送接收和发送数据缓冲器位置的方法和装置。 存储在系统存储器中的命令环缓冲区用于将命令从TCP堆栈传输到卸载单元,并将卸载单元的命令状态发送到TCP堆栈。 通知环缓冲区用于将连接信息从卸载单元传输到TCP堆栈。 其他环形缓冲器用于将存储在系统存储器中的发送缓冲区或接收缓冲区的位置从TCP堆栈传送到卸载单元。
-
公开(公告)号:US07913294B1
公开(公告)日:2011-03-22
申请号:US10603416
申请日:2003-06-24
IPC分类号: H04L29/06 , G06F17/00 , G06F15/173 , H04L12/56
CPC分类号: H04L63/0227 , H04L12/66 , H04L29/12367 , H04L61/2514
摘要: Method and apparatus for network protocol filtering of a packet is described. An index to a table is obtained and stored to travel with the packet. The index is obtainable to access the table to obtain packet information. In particular, a method for inbound network address translation packet filtering and a method for outbound packet filtering are described.
摘要翻译: 描述了用于分组的网络协议过滤的方法和装置。 获取并存储表的索引以与包一起行进。 索引可以访问表以获取分组信息。 具体来说,描述了入站网络地址转换分组过滤的方法和出站分组过滤的方法。
-
公开(公告)号:US20080056124A1
公开(公告)日:2008-03-06
申请号:US10875013
申请日:2004-06-23
申请人: Sameer Nanda , Radoslav Danilak , Paul J. Gyugyi , Thomas A. Maufer , Paul J. Sidenblad , Ashutosh K. Jha , Anand Rajagopalan
发明人: Sameer Nanda , Radoslav Danilak , Paul J. Gyugyi , Thomas A. Maufer , Paul J. Sidenblad , Ashutosh K. Jha , Anand Rajagopalan
IPC分类号: H04L12/26
CPC分类号: H04L69/166 , H04L29/06 , H04L69/10 , H04L69/16 , H04L69/161 , H04L69/163 , H04L69/22
摘要: A method and apparatus for filtering a packet on a connection within a computing system. In one embodiment, the method includes: receiving the packet; delegating the packet to an offload unit for filtering the packet; and determining, by the offload unit, whether the connection is a delegated connection.
摘要翻译: 一种用于过滤计算系统内的连接上的分组的方法和装置。 在一个实施例中,该方法包括:接收该分组; 将分组委托给用于过滤分组的卸载单元; 以及由所述卸载单元确定所述连接是否是委托连接。
-
公开(公告)号:US08738800B1
公开(公告)日:2014-05-27
申请号:US11949735
申请日:2007-12-03
IPC分类号: G06F15/173
CPC分类号: G06F17/3033 , G06F17/30306 , G06F17/30312 , H04L63/0236
摘要: Described are data structures, and methodology for forming same, for network protocol processing. A method for creating data structures for firewalling and network address translating is described. A method for creating data structures for physical layer addressing is described. A method for security protocol support using a data structure is described. A method for creating at least one data structure sized responsive to whether a firewall is activated is described. A data structure for routing packets is described. A method of forming hashing table chains is described. Additionally, method and apparatus for tracking packet states is described. More particularly, Transmission Control Protocol (“TCP”) tracking of states for packets is described. In an embodiment, a division between software states and hardware states is made as a packet is processed by both software and hardware. Additionally, method and apparatus for network protocol processing are described. For example, a packet for network address translation having a media access control header is obtained, from which information, including the media access control header, is obtained. The information is parsed into one or more data structures. It is determined whether a network processing unit is in a first round processing mode, or a second round pass-through mode.
摘要翻译: 描述了用于网络协议处理的数据结构及其形成方法。 描述了一种创建用于防火墙和网络地址转换的数据结构的方法。 描述了一种用于创建物理层寻址的数据结构的方法。 描述了使用数据结构的安全协议支持的方法。 描述了一种用于创建响应于是否激活防火墙的至少一个数据结构的方法。 描述用于路由分组的数据结构。 描述了形成散列表链的方法。 另外,描述了用于跟踪分组状态的方法和装置。 更具体地,描述了用于分组的状态的传输控制协议(“TCP”)跟踪。 在一个实施例中,软件状态和硬件状态之间的划分是由软件和硬件两者处理的数据包进行的。 另外,描述了用于网络协议处理的方法和装置。 例如,获得具有媒体访问控制头的用于网络地址转换的分组,从中获得包括媒体访问控制头的信息。 信息被解析为一个或多个数据结构。 确定网络处理单元是处于第一轮处理模式还是第二轮直通模式。
-
7.发明授权公开(公告)号:US08417852B2
公开(公告)日:2013-04-09
申请号:US10731063
申请日:2003-12-09
申请人: Anand Rajagopalan , Radoslav Danilak , Paul J. Gyugyi , Ashutosh K. Jha , Thomas A. Maufer , Sameer Nanda , Paul J. Sidenblad
发明人: Anand Rajagopalan , Radoslav Danilak , Paul J. Gyugyi , Ashutosh K. Jha , Thomas A. Maufer , Sameer Nanda , Paul J. Sidenblad
IPC分类号: G06F13/38
CPC分类号: H04L69/16 , H04L29/06 , H04L47/12 , H04L47/225 , H04L69/10 , H04L69/12 , H04L69/161 , H04L69/163 , H04L69/166 , H04L69/22
摘要: A system and methods of uploading payload data to user buffers in system memory and of uploading partially processed frame data to legacy buffers allocated in Operating System memory space are described. User buffers are stored in a portion of system memory allocated to an application program, therefore data stored in user buffers does not need to be copied from another portion of system memory to the portion of system memory allocated to the application program. When partially processed frame data is uploaded by hardware to a legacy buffer in system memory, a tag, uniquely identifying the legacy buffer location is transferred by the hardware to a TCP stack, enabling the TCP stack to locate the legacy buffer.
摘要翻译: 描述了将有效载荷数据上传到系统存储器中的用户缓冲器并且将部分处理的帧数据上传到在操作系统存储器空间中分配的传统缓冲器的系统和方法。 用户缓冲器存储在分配给应用程序的系统存储器的一部分中,因此存储在用户缓冲器中的数据不需要从系统存储器的另一部分复制到分配给应用程序的系统存储器的部分。 当部分处理的帧数据由硬件上传到系统存储器中的传统缓冲器时,唯一地标识传统缓冲器位置的标签由硬件传送到TCP堆栈,使TCP堆栈能够定位传统缓冲区。
-
公开(公告)号:US07613109B2
公开(公告)日:2009-11-03
申请号:US10731632
申请日:2003-12-09
申请人: Ashutosh K. Jha , Radoslav Danilak , Paul J. Gyugyi , Thomas A. Maufer , Sameer Nanda , Anand Rajagopalan , Paul J. Sidenblad
发明人: Ashutosh K. Jha , Radoslav Danilak , Paul J. Gyugyi , Thomas A. Maufer , Sameer Nanda , Anand Rajagopalan , Paul J. Sidenblad
CPC分类号: H04L69/16 , H04L29/06 , H04L47/12 , H04L47/225 , H04L69/10 , H04L69/12 , H04L69/161 , H04L69/163 , H04L69/166 , H04L69/22
摘要: A method and apparatus for processing data received and transmitted on a TCP connection is described. An offload unit processes received data for which a special case does not exist, to produce payload data, which is uploaded directly to application memory. The offload unit partially processes received data for which a special case does exist and uploads the partially processed received data to a buffer stored in system memory. The partially processed received data is then further processed by a TCP stack to produce payload data, which is copied to application memory.
摘要翻译: 描述用于处理在TCP连接上接收和发送的数据的方法和装置。 卸载单元处理不存在特殊情况的接收数据,以产生直接上传到应用存储器的有效载荷数据。 卸载单元部分处理特定情况确实存在的接收数据,并将部分处理的接收数据上传到存储在系统存储器中的缓冲器。 然后,部分处理的接收数据由TCP堆栈进一步处理,以产生被复制到应用存储器的有效载荷数据。
-
公开(公告)号:US07363572B2
公开(公告)日:2008-04-22
申请号:US10731176
申请日:2003-12-09
申请人: Paul J. Sidenblad , Radoslav Danilak , Paul J. Gyugyi , Ashutosh K. Jha , Thomas A. Maufer , Sameer Nanda , Anand Rajagopalan
发明人: Paul J. Sidenblad , Radoslav Danilak , Paul J. Gyugyi , Ashutosh K. Jha , Thomas A. Maufer , Sameer Nanda , Anand Rajagopalan
IPC分类号: H03M13/00
CPC分类号: H04L69/16 , H04L29/06 , H04L47/12 , H04L47/225 , H04L69/10 , H04L69/12 , H04L69/161 , H04L69/163 , H04L69/166 , H04L69/22
摘要: A method and apparatus for editing outbound frames and generating acknowledgements for a TCP connection is described. Acknowledgements are automatically generated and included in outbound frames during data transmissions with minimal processor intervention.
摘要翻译: 描述了用于编辑出站帧并且生成用于TCP连接的确认的方法和装置。 在数据传输期间,自动生成鸣叫并将其包含在出站帧中,同时以最少的处理器干预。
-
公开(公告)号:US07620070B1
公开(公告)日:2009-11-17
申请号:US10603792
申请日:2003-06-24
IPC分类号: H04J3/24
CPC分类号: H04L49/9094 , H04L49/90 , H04L49/9026
摘要: Method and apparatus for packet processing by re-insertion into network interface circuitry. A method for handling a burst of packets sent to network interface circuitry includes checking for a connection table entry for received packets, and responsive to non-existence of the connection table entry for the received packets, sending the packets to network interface software for processing. The network interface software processing includes: building the connection table entry; processing the packets; and sending the packets as processed to the network interface circuitry. Additionally, a method for re-inserting a packet responsive to an active audit mode is described.
摘要翻译: 通过重新插入网络接口电路来进行数据包处理的方法和装置。 一种用于处理发送到网络接口电路的分组的突发的方法包括:检查所接收分组的连接表条目,并且响应于接收到的分组的连接表条目的不存在,将分组发送到网络接口软件进行处理。 网络接口软件处理包括:建立连接表条目; 处理数据包; 并将处理的数据包发送到网络接口电路。 此外,描述了响应于主动审核模式重新插入分组的方法。
-
-
-
-
-
-
-
-
-
搜索结果
34 条记录 (耗时 0.032 秒)