Apparatus and Method for Domain Name Resolution
First Claim
1. An apparatus for facilitating communications between a client and a server over a network, said apparatus comprising:
- a processor coupled with said network, said network operative to transmit a plurality of translation requests including a translation request generated by said client, said translation request comprising an address identifying said server, said translation request being directed, by said client, to an address translator separate from said processor, said address translator being coupled with said network;
said processor being operative to selectively intercept said translation request from among said plurality of translation requests prior to receipt by said address translator, said selective interception being determined based on a criteria other than only that said translation request is one of said plurality of translation requests;
wherein said address translator is operative to translate said address into a translated address when said translation request is not selectively intercepted, and return said translated address to said client via said network thereby facilitating said communications between said client and said server; and
said processor being operative to analyze said selectively intercepted translation request and delete said selectively intercepted translation request based on said analysis.
3 Assignments
0 Petitions
Accused Products
Abstract
An apparatus and method for enhancing the infrastructure of a network such as the Internet is disclosed. Multiple edge servers and edge caches are provided at the edge of the network so as to cover and monitor all points of presence. The edge servers selectively intercept domain name translation requests generated by downstream clients, coupled to the monitored points of presence, to subscribing Web servers and provide translations which either enhance content delivery services or redirect the requesting client to the edge cache to make its content requests. Further, network traffic monitoring is provided in order to detect malicious or otherwise unauthorized data transmissions.
-
Citations
31 Claims
-
1. An apparatus for facilitating communications between a client and a server over a network, said apparatus comprising:
-
a processor coupled with said network, said network operative to transmit a plurality of translation requests including a translation request generated by said client, said translation request comprising an address identifying said server, said translation request being directed, by said client, to an address translator separate from said processor, said address translator being coupled with said network; said processor being operative to selectively intercept said translation request from among said plurality of translation requests prior to receipt by said address translator, said selective interception being determined based on a criteria other than only that said translation request is one of said plurality of translation requests; wherein said address translator is operative to translate said address into a translated address when said translation request is not selectively intercepted, and return said translated address to said client via said network thereby facilitating said communications between said client and said server; and said processor being operative to analyze said selectively intercepted translation request and delete said selectively intercepted translation request based on said analysis. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method of facilitating communications over a network, said network comprising a server and at least one sub-network coupled with said server, said at least one sub-network coupled with an address translator and a client, said method comprising:
-
monitoring said at least one sub-network for a translation request of a plurality of translation requests, said translation request being generated by said client and directed by said client to said address translator, said translation request comprising an address intended to be translated into a translated address by said address translator; intercepting, selectively by a device separate from said address translator, said translation request from among said plurality of translation requests prior to receipt by said address translator and prior to translation of said address thereby, said selective interception being based on a criteria other than only that said translation request is one of said plurality of translation requests; and detecting a security attack based on said intercepted translation request and absorbing said detected security attack. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. An apparatus for facilitating communications between a client and a server over a network, said apparatus comprising:
-
a processor coupled with said network, said network operative to transmit a plurality of translation requests including a translation request generated by said client, said translation request comprising an address identifying said server, said translation request being directed, by said client, to an address translator separate from said processor, said address translator being coupled with said network; said processor being operative to selectively intercept said translation request from among said plurality of translation requests prior to receipt by said address translator, said selective interception being determined based on a criteria other than only that said translation request is one of said plurality of translation requests; wherein said address translator is operative to translate said address into a translated address when said translation request is not selectively intercepted, and return said translated address to said client via said network thereby facilitating said communications between said client and said server; and said processor being operative to analyze said selectively intercepted translation request and absorb said selectively intercepted translation request based on said analysis, said analysis comprising a determination that said intercepted translation request is one of a plurality of translation requests directed to said server, and a determination of whether a capacity of said address translator is exceeded by a quantity of translation requests of said plurality of translation requests.
-
Specification