Transmission Control of Protocol State Exchange for Dynamic Stateful Service Insertion
First Claim
1. A system for a Transmission Control Protocol (TCP) state handoff of a data traffic flow, the system comprising:
- a state machine unit operable to;
determine a TCP state at predetermined times, wherein the TCP state includes data concerning a session between a client and a server;
a transaction processing unit operable to;
store the TCP state for the predetermined times to a database;
receive a request to apply a predetermined policy to the session;
based on the request, send a session request associated with the session between the client and the server to an access control unit; and
the access control unit operable to;
process the session request based on the TCP state and according to the predetermined policy.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided are methods and systems for a Transmission Control Protocol (TCP) state handoff of a data traffic flow. A method for a TCP state handoff of a data traffic flow comprises determining a TCP state at predetermined times by a state machine unit. The TCP state includes data concerning a session between a client and a server. The TCP state for the predetermined times is stored to a database. A request to apply a predetermined policy to the session is received by a transaction processing unit and, based on the request, a session request associated with the session between the client and the server is sent to an access control unit. The session request is processed by the access control unit based on the TCP state and according to the predetermined policy.
32 Citations
20 Claims
-
1. A system for a Transmission Control Protocol (TCP) state handoff of a data traffic flow, the system comprising:
-
a state machine unit operable to; determine a TCP state at predetermined times, wherein the TCP state includes data concerning a session between a client and a server; a transaction processing unit operable to; store the TCP state for the predetermined times to a database; receive a request to apply a predetermined policy to the session; based on the request, send a session request associated with the session between the client and the server to an access control unit; and the access control unit operable to; process the session request based on the TCP state and according to the predetermined policy. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method for a TCP state handoff of a data traffic flow, the method comprising:
-
determining, by a state machine unit, a TCP state at predetermined times, wherein the TCP state includes data concerning a session between a client and a server; storing, to a database, the TCP state for the predetermined times; receiving, by a transaction processing unit, a request to apply a predetermined policy to the session; based on the request, sending, by the transaction processing unit, a session request associated with the session between the client and the server to an access control unit; and processing, by the access control unit, the session request based on the TCP state and according to the predetermined policy. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A system for a TCP state handoff of a data traffic flow, the system comprising:
-
a state machine unit operable to; determine a TCP state at predetermined times, wherein the TCP state includes data concerning a session between a client and a server; a transaction processing unit operable to; store the TCP state for the predetermined times to a database; receive a request to apply a predetermined policy to the session; based on the request, send a session request associated with the session between the client and the server to an access control unit, wherein the session request is sent to the access control unit using a magic packet, the magic packet including the TCP state and an instruction to process the session according to the predetermined policy; and the access control unit operable to; process the session request based on the TCP state and according to the predetermined policy, wherein the processing of the session request includes establishing a further session between the client and the server, the further session being established based on the TCP state retrieved by the access control unit.
-
Specification