Rule swapping for network protection
First Claim
Patent Images
1. A method comprising:
- receiving, by a network device, a plurality of packets;
processing, by the network device, a first portion of the plurality of packets in accordance with a first rule set;
receiving, by the network device, a configuration signal to configure the network device to process packets in accordance with a second rule set; and
responsive to receiving the configuration signal;
ceasing processing of one or more packets of the plurality of packets;
caching the one or more packets; and
reconfiguring the network device to process packets in accordance with the second rule set; and
responsive to completing of the reconfiguring, processing the one or more cached packets in accordance with the second rule set.
2 Assignments
0 Petitions
Accused Products
Abstract
In some variations, first and second rule sets may be received by a network protection device. The first and second rule sets may be preprocessed. The network protection device may be configured to process packets in accordance with the first rule set. Packets may be received by the network protection device. A first portion of the packets may be processed in accordance with the first rule set. The network protection device may be reconfigured to process packets in accordance with the second rule set. A second portion of the packets may be processed in accordance with the second rule set.
-
Citations
20 Claims
-
1. A method comprising:
-
receiving, by a network device, a plurality of packets; processing, by the network device, a first portion of the plurality of packets in accordance with a first rule set; receiving, by the network device, a configuration signal to configure the network device to process packets in accordance with a second rule set; and responsive to receiving the configuration signal; ceasing processing of one or more packets of the plurality of packets; caching the one or more packets; and reconfiguring the network device to process packets in accordance with the second rule set; and responsive to completing of the reconfiguring, processing the one or more cached packets in accordance with the second rule set. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system comprising:
-
at least one processor; and memory comprising instructions that, when executed by the at least one processor, cause the system to; receive a plurality of packets; process a first portion of the plurality of packets in accordance with a first rule set; responsive to a configuration signal to process packets in accordance with a second rule set; cease processing of one or more packets of the received plurality of packets; cache the one or more packets; and reconfigure the system to process packets in accordance with the second rule set; and responsive to completion of reconfiguration, process the one or more cached packets in accordance with the second rule set. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. One or more non-transitory computer-readable media comprising instructions that when executed by a computing system cause the computing system to:
-
receive a plurality of packets; process a first portion of the plurality of packets in accordance with a first rule set; responsive to a configuration signal to process packets in accordance with a second rule set; cease processing of one or more packets of the plurality of received packets; cache the one or more packets; and reconfigure the computing system to process packets in accordance with the second rule set; and responsive to completion of reconfiguration, process the one or more cached packets in accordance with the second rule set. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification