TIMING MANAGEMENT IN A LARGE FIREWALL CLUSTER
First Claim
9. A firewall cluster, comprising:
- three or more firewall processing nodes, each operable to report primary node status from at least one of the three or more firewall processing nodes based on the reporting node'"'"'s membership in a preexisting cluster; and
a controller operable to manage assignment of a primary node from among the three or more firewall processing nodes.
10 Assignments
0 Petitions
Accused Products
Abstract
A firewall cluster comprises three or more firewall processing nodes, which report primary node status based on the reporting node'"'"'s membership in a preexisting cluster. A controller uses the reported status to assign a primary node in the distributed firewall cluster. Reported primary node status includes reported primary node eligibility if the node is a member of a preexisting cluster, reported primary node status comprising reporting primary node ineligibility if the node is not a member of a preexisting cluster, reported primary node status if the node is a primary node in a preexisting cluster, and reported primary node eligibility in a node that has timed out
55 Citations
22 Claims
-
9. A firewall cluster, comprising:
-
three or more firewall processing nodes, each operable to report primary node status from at least one of the three or more firewall processing nodes based on the reporting node'"'"'s membership in a preexisting cluster; and a controller operable to manage assignment of a primary node from among the three or more firewall processing nodes. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A method of operating a distributed firewall processing node, comprising:
reporting primary node status based on the reporting node'"'"'s membership in a preexisting cluster. - View Dependent Claims (17)
- 18. A distributed firewall processing node comprising a processor, operable to report primary node status based on the node'"'"'s membership in a preexisting cluster.
-
20. A method of operating a distributed firewall controller, comprising:
assigning one of three or more firewall processing nodes as a primary firewall cluster node based on the node'"'"'s reported primary node status based on the reporting node'"'"'s membership in a preexisting cluster.
-
21-1. The distributed firewall controller of claim 22, wherein reported primary node status comprises at least one of reported primary node eligibility if the node is a member of a preexisting cluster, reported primary node status comprising reporting primary node ineligibility if the node is not a member of a preexisting cluster, reported primary node status if the node is a primary node in a preexisting cluster, and reported primary node eligibility in a node that has timed out.
- 22. A distributed firewall controller comprising a processor, operable to assign one of three or more firewall processing nodes as a primary firewall cluster node based on the node'"'"'s reported primary node status based on the reporting node'"'"'s membership in a preexisting cluster.
Specification