REDUNDANCY SUPPORT FOR NETWORK ADDRESS TRANSLATION (NAT)
First Claim
1. A method in a first network device, the method comprising:
- associating to said first network device a base address corresponding to a first pool of first addresses that are not owned by said first network device;
detecting, by said first network device, a failure of a second network device; and
asserting ownership, by said first network device, of a plurality of said first addresses of said first pool corresponding to said base address, in response to detection by said first network device of said failure.
5 Assignments
0 Petitions
Accused Products
Abstract
Stateful failover redundancy support is provided for network address translation (NAT). A master NAT device is backed-up with at least one back-up NAT device. Existing sessions are synchronized between the two NAT devices, such as via a dedicated link between them. In the event of a failover where the master NAT device is unable to perform its NAT functions, ownership of Internet protocol (IP) addresses is transferred from the master NAT device to the back-up NAT device. The back-up NAT device, which is now owner of the IP addresses, assumes the NAT functionality associated with these IP addresses and continues the existing sessions, as well as processing new sessions.
73 Citations
20 Claims
-
1. A method in a first network device, the method comprising:
-
associating to said first network device a base address corresponding to a first pool of first addresses that are not owned by said first network device; detecting, by said first network device, a failure of a second network device; and asserting ownership, by said first network device, of a plurality of said first addresses of said first pool corresponding to said base address, in response to detection by said first network device of said failure. - View Dependent Claims (2, 3)
-
-
4. An apparatus, comprising:
-
a first network device configured to be associated with a base address corresponding to a first pool of first addresses that are not owned by said first network device, wherein the first network device is further configured to; detect a failure of a second network device; and assert ownership of a plurality of said first addresses of said first pool corresponding to said base address, in response to detection of said failure. - View Dependent Claims (5, 6, 7)
-
-
8. A system, comprising:
-
a first network device configured to be associated with a base address corresponding to a first pool of first addresses that are not owned by said first network device; and a second network device to own said first pool of first addresses that are not owned by said first network device, wherein said first network device is further configured to; detect a failure of said second network device; and assert ownership of a plurality of said first addresses of said first pool corresponding to said base address, in response to detection of said failure. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. An apparatus, comprising:
-
device means for owning a base address corresponding to a first pool of first addresses, said first pool of first addresses being associated to but not owned by another device; and port means of said device means for receiving traffic, wherein ownership of a plurality of said first addresses of said first pool corresponding to said base address changes from said device means to said another device, in response to a failure of said device means with respect to any individual one of said first addresses in said first pool. - View Dependent Claims (18, 19, 20)
-
Specification