Fast-forwarding and filtering of network packets in a computer system

US 6,067,569 A
Filed: 07/10/1997
Issued: 05/23/2000
Est. Priority Date: 07/10/1997
Status: Expired due to Term

First Claim

Patent Images

1. A method in a computer system for forwarding packets of data from a source network to a destination network, each packet being part of a message, the computer system having a main central processing unit connected via a bus to a network card, the network card being connected to the source and destination networks, the network card having a cache memory, the computer system having an operating system with instructions that are executed by main central processing unit, the method comprising:

under control of the network card,receiving a packet from the source network;

determining whether the cache memory contains routing information for the packet;

when the cache memory contains such routing information, transmitting the received packet on the destination network in accordance with the routing information; and

when the cache memory does not contain such routing information, sending the received packet to the operating system;

under control of the operating system,receiving the sent packet;

determining whether the received packet should be dropped based on filtering information; and

when the received packet should not be dropped,retrieving routing information that indicates that the receive packet should be transmitted on the destination network; and

sending the routing information to the network card; and

under control of the network card,receiving the sent routing information;

storing the received routing information in the memory cache so that subsequent packets can be transmitted onto the destination network without sending the subsequent packets to the operating system; and

transmitting the received packet on the destination network in accordance with the routing information wherein packets with the same packet identifiers can be forwarded on the destination network without processing by the operating system, while packets with other packet identifiers can be dropped based on the filtering criteria processing of the operating system.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computer system facilitates concurrent filtering and fast-forwarding of network packets. The computer system includes a network card for interfacing with multiple computer networks, and the network adapter is able to fast-forward network packets that it receives to other network destinations without assistance from the main central processing in the computer system. A fast-forwarding cache is stored on the network card to facilitate such fast-forwarding. Network packets that are not fast-forwarded are processed by the main central processing of the computer system that may apply filtering to the network packets and route network packets accordingly. The main central processing unit provides routing information to the network card so that subsequently received network packets can be transmitted to the network destinations without intervention by the main central processing unit.

313 Citations

26 Claims

1. A method in a computer system for forwarding packets of data from a source network to a destination network, each packet being part of a message, the computer system having a main central processing unit connected via a bus to a network card, the network card being connected to the source and destination networks, the network card having a cache memory, the computer system having an operating system with instructions that are executed by main central processing unit, the method comprising:
- under control of the network card,receiving a packet from the source network;
  
  determining whether the cache memory contains routing information for the packet;
  
  when the cache memory contains such routing information, transmitting the received packet on the destination network in accordance with the routing information; and
  
  when the cache memory does not contain such routing information, sending the received packet to the operating system;
  
  under control of the operating system,receiving the sent packet;
  
  determining whether the received packet should be dropped based on filtering information; and
  
  when the received packet should not be dropped,retrieving routing information that indicates that the receive packet should be transmitted on the destination network; and
  
  sending the routing information to the network card; and
  
  under control of the network card,receiving the sent routing information;
  
  storing the received routing information in the memory cache so that subsequent packets can be transmitted onto the destination network without sending the subsequent packets to the operating system; and
  
  transmitting the received packet on the destination network in accordance with the routing information wherein packets with the same packet identifiers can be forwarded on the destination network without processing by the operating system, while packets with other packet identifiers can be dropped based on the filtering criteria processing of the operating system.
- View Dependent Claims (2, 3)
- - 2. The method of claim 1 including:
    - under control of the operating system,receiving an update to the routing information; and
      
      in response to receiving the update, notifying the network card to flush its cache memory.
  - 3. The method of claim 1 wherein the computer system includes a plurality of network cards and the cache memory is accessible by each network card without interrupting the main central processing unit.

4. A method in a general-purpose computer system of forwarding a network packet from a source network to destination network, the computer system having a main central processing unit and a network card, the network card being connected to the source and destination networks, the method comprising:
- receiving the network packet at the network card, the network packet having a destination address;
  
  analyzing the received network packet to determine whether the network packet should be forwarded to its destination by the network card or forwarded to the main central processing unit;
  
  when it is determined that the network packet should be forwarded to its destination by the network card, transmitting the network packet to the destination network by the network card without intervention by the main central processing unit; and
  
  when it is determined that the network packet should be forwarded to the main central processing unit, providing the received network packet to the main central processing unit for further processing.
- View Dependent Claims (5, 6, 7, 8)
- - 5. The method of claim 4 wherein the network card is a multiport network card and wherein the network packet is received at a first port and transmitted through a second port.
  - 6. The method of claim 4 wherein the computer system further comprises a bus through which the main control processing unit and network card communicate and wherein the transmitting of the network packet is accomplished without sending the network packet over the bus.
  - 7. The method of claim 4, further comprising maintaining a fast-forwarding cache on the network card for use when analyzing, the fast-forward cache having routing information which is accessed to determine which network packets are to be transmitted by the network card without intervention by the main central processing unit.
  - 8. The method of claim 4 wherein the main central processing unit applies filtering to the network packet to determine whether to accept or drop the network packet and wherein such filtering is enabled while the transmitting by the network card without intervention by the main processing unit is also enabled.

9. In a computer system having a main central processing unit and a network card for interfacing the computer system with multiple networks, a method of processing network packets that are received at the network card, comprising:
- having fast-forwarding active so that selected network packets that are received at the network card are fast-forwarded to at least one destination network by the network card without main central processing intervention; and
  
  concurrently having filtering active so that the main central processing unit applies filtering to at least some of the network packets received at the network card to determine whether to accept or drop the network packets.
- View Dependent Claims (10, 11, 12)
- - 10. The method of claim 9 wherein at least some of the network packets are Internet protocol (IP) network packets.
  - 11. The method of claim 9 wherein the main central processing unit provides the network card with routing information for fast-forwarding the selected network packets.
  - 12. The method of claim 9 wherein the network card provides to the main central processing unit those network packets that are not to be fast-forwarded.

13. A computer-readable medium containing instructions for causing a general-purpose computer system to forward a network packet from a source network to destination network, the computer system having a main central processing unit and a network card, the network card being connected to the source and destination networks by:
- receiving the network packet at the network card, the network packet having a destination address;
  
  analyzing the received network packet to determine whether the network packet should be forwarded to its destination by the network card or forwarded to the main central processing unit;
  
  when it is determined that the network packet should be forwarded to its destination by the network card, transmitting the network packet to the destination network by the network card without intervention by the main central processing unit; and
  
  when it is determined that the network packet should be forwarded to the main central processing unit, providing the received network packet to the main central processing unit to determine whether the network packet should be dropped or forwarded to the destination.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The computer-readable medium of claim 13 wherein the network card is a multiport network card and wherein the network packet is received at a first port and transmitted through a second port.
  - 15. The computer-readable medium of claim 13 wherein the computer system further comprises a bus through which the main control processing unit and network card communicate and wherein the transmitting of the network packet is accomplished without sending the network packet over the bus.
  - 16. The computer-readable medium of claim 13, further comprising maintaining a fast-forwarding cache on the network card for use when analyzing, the fast-forward cache having routing information which is accessed to determine which network packets are to be transmitted by the network card without intervention by the main central processing unit.
  - 17. The computer-readable medium of claim 13 wherein the main central processing unit applies filtering to the network packet to determine whether to accept or drop the network packet and wherein such filtering while the transmitting by the network card without intervention by the main processing unit is enabled.

18. A computer system having a main central processing unit and a network card for interfacing the computer system with multiple networks, the computer system for processing network packets that are received at the network card in which fast-forwarding is active so that selected network packets that are received at the network card are fast-forwarded to at least one destination network by the network card without main central processing intervention and in which filtering is concurrently active so that the main central processing unit applies filtering to at least some of the network packets received at the network card to determine whether to accept or drop the network packets.
- View Dependent Claims (19, 20, 21)
- - 19. The system of claim 18 wherein at least some of the network packets are Internet protocol (IP) network packets.
  - 20. The system of claim 18 wherein the main central processor provides the network card with routing information for fast-forwarding the selected network packets.
  - 21. The system of claim 18 wherein the network card provides to the main central processing unit, those network packets that are not to be fastforwarded.

22. A method in a general-purpose computer system of forwarding a network packet from a source network to destination network, the computer system having an operating system, a network driver, and a network card, the network card being connected to the source and destination networks, the method comprising:
- under control of the network card,receiving the network packet having a destination address from the source network; and
  
  forwarding the received network packet to the network driver;
  
  under control of the network driver,analyzing the received network packet to determine whether the network packet should be forwarded to its destination by the network card or provided to the operating system;
  
  when it is determined that the network packet should be forwarded to its destination by the network card, instructing the network card to transmit the network packet to the destination network; and
  
  when it is determined that the network packet should be provided to the operating system, providing the received network packet to the operating system for further processing; and
  
  under control of the network card,when instructed to transmit the received packet, transmitting the network packet to the destination networkso that a decision to forward a network packet is made by the network driver.
- View Dependent Claims (23, 24, 25, 26)
- - 23. The method of claim 22 wherein computer system has a plurality of network cards and wherein the network packet is received at a first network card and transmitted through a second network card.
  - 24. The method of claim 22, further comprising maintaining a fast-forwarding cache by the network driver for use when analyzing, the fastforward cache having routing information which is accessed to determine which network packets are to be transmitted by the network card without intervention from the operating system.
  - 25. The method of claim 22 wherein the operating system applies filtering to the network packet to determine whether to accept or drop the network packet and wherein such filtering is enabled while the network packets are fast-forwarded by the network driver without intervention by the operating system.
  - 26. The method of claim 22 wherein the network driver is an NDIS driver.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Pall, Gurdeep Singh, Khaki, Mohamed J.
Primary Examiner(s)
Maung, Zarni
Assistant Examiner(s)
DINH, KHANH Q

Application Number

US08/891,020
Time in Patent Office

1,048 Days
Field of Search

370/60, 370/800, 370/85.13, 709/224, 709/227, 709/249, 709/226, 709/201, 709/106, 709/202, 709/206
US Class Current

709/224
CPC Class Codes

H04L 12/4625   Single bridge functionality...

H04L 49/90   Buffering arrangements

H04L 49/9063   Intermediate storage in dif...

H04L 49/9084   Reactions to storage capaci...

H04L 69/32   Architecture of open system...

H04L 69/325   in the network layer [OSI l...

H04L 9/40   Network security protocols

Fast-forwarding and filtering of network packets in a computer system

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

313 Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Fast-forwarding and filtering of network packets in a computer system

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

313 Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links