State transition protocol for high availability units
First Claim
1. A high-availability system comprising:
- a first edge device managing policies of a first network;
a second edge device managing policies of a second network; and
a central policy server in communication with the first and second edge devices, the central policy server managing the first and second edge devices from a single location;
wherein, the central policy server and the first and second edge devices include first class units and second class units, each second class unit providing backup for a corresponding first class unit upon failure of the first class unit.
6 Assignments
0 Petitions
Accused Products
Abstract
A unified policy management system for an organization including a central policy server and remotely situated policy enforcers. A central database and policy enforcer databases storing policy settings are configured as LDAP databases adhering to a hierarchical object oriented structure. Such structure allows the policy settings to be defined in an intuitive and extensible fashion. Changes in the policy settings made at the central policy server are automatically transferred to the policy enforcers for updating their respective databases. Each policy enforcer collects and transmits health and status information in a predefined log format and transmits it to the policy server for efficient monitoring by the policy server. For further efficiencies, the policy enforcement functionalities of the policy enforcers are effectively partitioned so as to be readily implemented in hardware.
-
Citations
15 Claims
-
1. A high-availability system comprising:
-
a first edge device managing policies of a first network;
a second edge device managing policies of a second network; and
a central policy server in communication with the first and second edge devices, the central policy server managing the first and second edge devices from a single location;
wherein, the central policy server and the first and second edge devices include first class units and second class units, each second class unit providing backup for a corresponding first class unit upon failure of the first class unit. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
detecting a failure of a corresponding first class unit; and
transitioning from the inactive state to an active state upon detection of the failure.
-
-
3. The system of claim 1, wherein each of the second class units includes logic for:
-
assuming a role of the second class unit;
searching for the corresponding first class unit; and
initializing as the second class unit if the corresponding first class unit is detected.
-
-
4. The system of claim 3, wherein each of the second class units further includes logic for:
-
assuming a role of the first class unit if the first class unit is not detected;
searching for a corresponding second class unit; and
initializing as the first class unit if the corresponding second class unit is detected.
-
-
5. The system of claim 4, wherein each of the second class units further includes logic for initializing as a third class unit if the corresponding second class unit is not detected.
-
6. The system of claim 1 further comprising:
-
means for transitioning each of the first class units to an active state;
means for receiving and storing first database configuration changes for each of the first class units;
means for transferring the configuration changes to the corresponding second class units; and
means for storing the configuration changes on the corresponding second class units.
-
-
7. The system of claim 6 further comprising:
-
means for transitioning each of the first class units to an inactive state;
means for receiving and storing second database configuration changes for the second class unit while the corresponding first class unit is in the inactive state; and
means for transferring the second database configuration changes from the second class unit to the first class unit after the first class unit re-transitions to the active state.
-
-
8. The system of claim 1 further comprising:
-
means for transmitting update information to each of the first class units;
means for updating each of the first class units;
means for transmitting the update information from each of the first class units to each of the second class units; and
means for updating each of the second class units.
-
-
9. In a system including a first edge device managing policies of a first network, a second edge device managing policies of a second network, and a central policy server in communication with the first and second edge devices, a method for avoiding a single point of failure in the central policy server and the first and second edge devices, the method comprising:
-
maintaining first class units for the central policy server and the first and second edge devices, wherein the central policy server manages the first and second edge devices from a single location;
maintaining second class units of the central policy server and the first and second edge devices, each of the second class units acting as a backup for a corresponding first class unit, each of the second class units being initially in an inactive state;
detecting a failure of one of the first class units; and
transitioning the corresponding backup unit from the inactive state to an active state upon detection of the failure. - View Dependent Claims (10, 11, 12, 13, 14, 15)
assuming a role of the second class unit;
searching for the corresponding first class unit; and
initializing as the second class unit if the corresponding first class unit is detected.
-
-
11. The method of claim 10 further comprising:
-
assuming a role of the first class unit if the first class unit is not detected;
searching for a corresponding second class unit; and
initializing as the first class unit if the corresponding second class unit is detected.
-
-
12. The method of claim 11 further comprising initializing as a third class unit if the corresponding second class unit is not detected.
-
13. The method of claim 9 further comprising:
-
transitioning each of the first class units to an active state;
receiving and storing first database configuration changes for each of the first class units;
transferring the configuration changes to the corresponding second class units; and
storing the configuration changes on the corresponding second class units.
-
-
14. The method of claim 13 further comprising:
-
transitioning each of the first class units to an inactive state;
receiving and storing second database configuration changes for the second class unit while the corresponding first class unit is in the inactive state; and
transferring the second database configuration changes from the second class unit to the first class unit after the first class unit re-transitions to the active state.
-
-
15. The method of claim 9 further comprising:
-
transmitting update information to each of the first class units;
updating each of the first class units;
transmitting the update information from each of the first class units to each of the second class units; and
updating each of the second class units.
-
Specification