×

Determining the likelihood of traffic being legitimately received at a proxy server in a cloud-based proxy service

  • US 10,581,904 B2
  • Filed: 05/02/2017
  • Issued: 03/03/2020
  • Est. Priority Date: 08/07/2012
  • Status: Active Grant
First Claim
Patent Images

1. A method for determining a likelihood of a packet having a particular source address being received at a particular one of a plurality of proxy servers that are anycasted to a same IP address, wherein the proxy servers are part of a cloud-based proxy service and are situated between a plurality of client computing devices accessing network resources and a plurality of origin servers that serve network resources, the method comprising:

  • receiving, from each of the plurality of proxy servers, one or more messages that indicate source IP addresses of packets received at that proxy server that are directed to the same IP address, wherein the proxy servers receive traffic at the same IP address as a result of one or more domains resolving to the same IP address, and wherein a first proxy server of the proxy servers receives packets directed to the same IP address as a result of an anycast protocol implementation selecting the first proxy server of the proxy servers as the closest in terms of routing protocol metric used to route traffic to the proxy servers;

    determining, based on an historical analysis of the source IP addresses of packets received at the plurality of proxy servers as a result of the anycast protocol implementation as indicated in the one or more messages from each of the plurality of proxy servers, a likelihood of a packet having a particular source IP address being legitimately received at each of the proxy servers, wherein packets are likely to be legitimately received at each of the proxy servers when probabilities for each source-destination IP address pair determined using the historical analysis are above a threshold value;

    transmitting, to each of the proxy servers, a message that indicates which source IP addresses of packets are not likely to be legitimately received at that proxy server based on the probabilities for each source-destination IP address pair determined using the historical analysis; and

    responsive to a network event that affects the likelihood of a packet having a particular source IP address being legitimately received at each of the proxy servers, transmitting a message to the proxy servers that indicates a suspension of any rate limits that have been installed as a result of transmitting the messages to the proxy servers that indicate which source IP addresses of packets are not likely to be legitimately received at the proxy servers.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×