Intelligent integrated network security device for high-availability applications
First Claim
Patent Images
1. A method in a computer network, comprising:
- configuring a primary security system for processing packets, the primary security system being operable to maintain flow information for a plurality of devices to facilitate processing of the packets;
designating a secondary security system for processing packets upon a failover event; and
sharing flow records from the primary security system with the secondary security system.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and apparatuses for inspecting packets are provided. A primary security system may be configured for processing packets. The primary security system may be operable to maintain flow information for a group of devices to facilitate processing of the packets. A secondary security system may be designated for processing packets upon a failover event. Flow records may be shared from the primary security system with the secondary security system.
-
Citations
39 Claims
-
1. A method in a computer network, comprising:
-
configuring a primary security system for processing packets, the primary security system being operable to maintain flow information for a plurality of devices to facilitate processing of the packets;
designating a secondary security system for processing packets upon a failover event; and
sharing flow records from the primary security system with the secondary security system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A system comprising:
a first apparatus comprising;
a first security device;
a first module operable to maintain flow information associated with packets received from a computer network and to share device-specific flow information with the first security device; and
a communication interface operable to permit an exchange of flow records with a second apparatus. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
29. A system comprising:
-
a primary security apparatus operable to receive and process packets, the primary security apparatus including means for maintaining flow information for a plurality of devices included in the primary security apparatus;
a secondary security apparatus operable to process packets for the primary security apparatus when a failover event occurs, the secondary security apparatus including means for sharing flow information among a plurality of devices; and
means for sharing flow records from the primary security apparatus to the secondary security apparatus. - View Dependent Claims (30, 31, 32, 33, 34, 35, 36, 37, 38, 39)
-
Specification