Virtual insertion into a network
First Claim
Patent Images
1. A method, comprising:
- virtually inserting, by a system comprising a processor, a network appliance in a data path within a network, wherein virtually inserting the network appliance in the data path comprises dynamically defining a data tap that describes a logical point within the data path to intercept data;
defining, by the system, a first application path from the data tap to a first application running on the network appliance;
defining, by the system, a second application path from the data tap to a second application; and
binding, by the system, the first application path to the second application path, the binding causing chaining of the first and second applications together at the data tap.
0 Assignments
0 Petitions
Accused Products
Abstract
A network appliance is virtually inserted in a data path within a network. Packet data that matches a criteria is intercepted at a logical point within the data path. The intercepted packet data is forwarded to an application running on the virtually inserted network appliance.
21 Citations
21 Claims
-
1. A method, comprising:
-
virtually inserting, by a system comprising a processor, a network appliance in a data path within a network, wherein virtually inserting the network appliance in the data path comprises dynamically defining a data tap that describes a logical point within the data path to intercept data; defining, by the system, a first application path from the data tap to a first application running on the network appliance; defining, by the system, a second application path from the data tap to a second application; and binding, by the system, the first application path to the second application path, the binding causing chaining of the first and second applications together at the data tap. - View Dependent Claims (2, 3, 14, 15, 16, 19, 20)
binding the second application path to the data tap.
-
-
3. The method of claim 1, wherein intercepting the data packet comprises:
performing highest precedence interception on the data packet when multiple data taps are defined in the network.
-
14. The method of claim 1, wherein defining the second application path comprises defining the second application path from the data tap to the second application on the network appliance.
-
15. The method of claim 1, wherein defining the second application path comprises defining the second application path from the data tap to the second application on another network appliance.
-
16. The method of claim 1, further comprising:
-
intercepting, by the system, a data packet matching a criterion at the logical point within the data path in the network; and forwarding, by the system, the intercepted data packet to the first application running on the virtually inserted network appliance.
-
-
19. The method of claim 16, further comprising:
injecting, by the virtually inserted network appliance, the intercepted packet data packet into the data path.
-
20. The method of claim 16, wherein the criterion for intercepting the data packet includes a criterion relating to whether the data packet is traveling to or from an agent of a switch.
-
4. A network device, comprising:
-
a processor; and a non-transitory storage medium storing instructions executable on the processor to; virtually insert a network appliance in a data path within a network by dynamically defining a data tap that describes a logical point within the data path to intercept data; define a first application path from the data tap to a first application running on the network appliance; define a second application path from the data tap to a second application; and bind the first application path to the second application path, the binding causing chaining of the first and second applications together at the data tap. - View Dependent Claims (5, 6, 7, 8, 17, 21)
-
-
9. A non-transitory computer-readable storage medium containing instructions that, when executed, cause a computer to:
-
virtually insert a network appliance in a data path within a network, wherein virtually inserting the network appliance in the data path comprises dynamically defining a data tap that describes a logical point within the data path to intercept data; define a first application path from the data tap to a first application running on the network appliance; define a second application path from the data tap to a second application; and bind the first application path to the second application path, the binding causing chaining of the first and second applications together at the data tap. - View Dependent Claims (10, 11, 12, 13, 18)
-
Specification