Packet classifying network services
First Claim
Patent Images
1. A system comprising:
- a network device having a plurality of interfaces to receive and transmit packets of data, the network device including a forwarding element to apply classification rules to the packets; and
a packet classification chain that resides at least temporarily on the network device, wherein the chain includes classification rules, an associated action, and an update field to trigger insertion or deletion of the rule in the chains.
1 Assignment
0 Petitions
Accused Products
Abstract
A system for updating classification chains, including but not limited to firewall ACLS, can include a network device having a plurality of interfaces to receive and transmit packets of data, a forwarding element to apply classification rules to the packets, and a packet classification chain that resides at least temporarily on the network device, wherein the chain includes classification rules, an associated action, and an update field to trigger insertion or deletion of the rule.
219 Citations
27 Claims
-
1. A system comprising:
-
a network device having a plurality of interfaces to receive and transmit packets of data, the network device including a forwarding element to apply classification rules to the packets; and
a packet classification chain that resides at least temporarily on the network device, wherein the chain includes classification rules, an associated action, and an update field to trigger insertion or deletion of the rule in the chains. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. An article comprising a machine-accessible medium having associated data, wherein the data, when accessed, results in a machine performing:
-
receive packet classification update information;
access a packet classification chain that includes packet classification rules, an associated action, and an update field to trigger insertion or deletion of the rule;
modify the update field based on information contained in the update information; and
modify the classification chain based on information contained in the update field. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A method comprising:
-
receiving packet classification update information;
accessing a packet classification chain that includes packet classification rules, an associated action, and an update field to trigger insertion or deletion of the rule;
modifying the update field based on information contained in the update information, and modifying the classification chain based on information contained in the update field. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27)
-
Specification