Methods, systems and computer program products for transferring security processing between processors in a cluster computing environment
First Claim
1. A method of transferring network security based communications from a first distribution processor, which provides secure communications over a network in a distributed workload environment having target hosts which are accessed through the first distribution processor by a common network address, to a second distribution processor, the method comprising:
- providing information sufficient to restart the transferred network security based communications at the second distribution processor;
detecting takeover of the common address by the second distribution processor;
terminating existing network security based communications to the first distribution processor;
restarting the transferred network security based communications at the second distribution processor utilizing the provided information;
routing both inbound and outbound network security based communications with target hosts utilizing the common network address through the second distribution processor; and
network security processing both the inbound and the outbound network security based communications utilizing the common network address at the second distribution processor.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods, systems and computer program products provide for transferring network security based communications from a first distribution processor, which provides secure communications over a network in a distributed workload environment having target hosts which are accessed through the first distribution processor by a common network address, to a second distribution processor. Information sufficient to restart the transferred network security based communications at the second distribution processor is provided. Takeover of the common address by the second distribution processor is detected and existing network security based communications to the first distribution processor are terminated. The transferred communications are restarted at the second distribution processor utilizing the provided information. Both inbound and outbound network security based communications with target hosts utilizing the common network address are routed through the second distribution processor. Network security processing for both the inbound and the outbound network security based communications utilizing the common network address is performed at the second distribution processor.
88 Citations
12 Claims
-
1. A method of transferring network security based communications from a first distribution processor, which provides secure communications over a network in a distributed workload environment having target hosts which are accessed through the first distribution processor by a common network address, to a second distribution processor, the method comprising:
-
providing information sufficient to restart the transferred network security based communications at the second distribution processor;
detecting takeover of the common address by the second distribution processor;
terminating existing network security based communications to the first distribution processor;
restarting the transferred network security based communications at the second distribution processor utilizing the provided information;
routing both inbound and outbound network security based communications with target hosts utilizing the common network address through the second distribution processor; and
network security processing both the inbound and the outbound network security based communications utilizing the common network address at the second distribution processor. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for transferring network security based communications from a first distribution processor, which provides secure communications over a network in a distributed workload environment having target hosts which are accessed through the first distribution processor by a common network address, to a second distribution processor, comprising:
-
means for providing information sufficient to restart the transferred network security based communications at the second distribution processor;
means for detecting takeover of the common address by the second distribution processor;
means for terminating existing network security based communications to the first distribution processor;
means for restarting the transferred network security based communications at the second distribution processor utilizing the provided information;
means for routing both inbound and outbound network security based communications with target hosts utilizing the common network address through the second distribution processor; and
means for network security processing both the inbound and the outbound network security based communications utilizing the common network address at the second distribution processor.
-
-
12. A computer program product for transferring network security based communications from a first distribution processor, which provides secure communications over a network in a distributed workload environment having target hosts which are accessed through the first distribution processor by a common network address, to a second distribution processor, comprising:
-
a computer readable medium having computer readable program code embodied therein, the computer readable program code comprising;
computer readable program code which provides information sufficient to restart the transferred network security based communications at the second distribution processor;
computer readable program code which detects takeover of the common address by the second distribution processor;
computer readable program code which terminates existing network security based communications to the first distribution processor;
computer readable program code which restarts the transferred network security based communications at the second distribution processor utilizing the provided information;
computer readable program code which routes both inbound and outbound network security based communications with target hosts utilizing the common network address through the second distribution processor; and
computer readable program code which network security processes both the inbound and the outbound network security based communications utilizing the common network address at the second distribution processor.
-
Specification