Fault tolerant firewall sandwiches
First Claim
Patent Images
1. A system comprising;
- a plurality of firewalls;
a first FLB for exchanging packets between a first network and the plurality of firewalls;
a second FLB for exchanging packets between a second network and the plurality of firewalls; and
a first standby FLB configured to;
detect a failure in the first FLB and functionally replace the first FLB, if a failure in the first FLB is detected; and
detect a failure in the second FLB and functionally replace the second FLB, if a failure in the second FLB is detected.
1 Assignment
0 Petitions
Accused Products
Abstract
Firewall sandwich configurations having improved levels of system availability as well as an application-space implementation of a firewall load balancer (FLB) which provides greater operational flexibility while reducing the need for custom hardware and/or operating system software. Also disclosed is a firewall capable of functionally replacing an FLB upon detecting a failure therein.
-
Citations
14 Claims
-
1. A system comprising;
-
a plurality of firewalls; a first FLB for exchanging packets between a first network and the plurality of firewalls; a second FLB for exchanging packets between a second network and the plurality of firewalls; and a first standby FLB configured to; detect a failure in the first FLB and functionally replace the first FLB, if a failure in the first FLB is detected; and detect a failure in the second FLB and functionally replace the second FLB, if a failure in the second FLB is detected. - View Dependent Claims (2, 3, 4)
-
-
5. A system comprising:
-
a plurality of firewalls; a first FLB for exchanging packets between a first network and the plurality of firewalls; and a second FLB for exchanging packets between a second network and the plurality of firewalls; wherein at least the first FLB is configured to both exchange packets between the first network and the plurality of firewalls, and exchange packets between the second network and the plurality of firewalls, after determining that a failure has occurred in the second FLB. - View Dependent Claims (6, 7, 8, 9, 10, 11)
-
-
12. A system comprising:
-
a plurality of firewalls; a first FLB for exchanging packets between a first network and the plurality of firewalls; and a second FLB for exchanging packets between a second network and the plurality of firewalls; wherein each of the firewalls execute fault detection software such that each of the firewalls is configured to functionally replace the first FLB after detecting a failure in the first FLB, the fault detection software selecting a firewall from the plurality of firewalls to replace the first FLB. - View Dependent Claims (13, 14)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeBoard of Regents of the University of Nebraska
-
Original AssigneeBoard of Regents of the University of Nebraska
-
InventorsGoddard, Stephen M.
-
Primary Examiner(s)Barron; Gilberto
-
Assistant Examiner(s)Dinh; Minh
-
Application NumberUS10/274,344Publication NumberTime in Patent Office1,754 DaysField of SearchNoneUS Class Current726/11CPC Class CodesH04L 63/0218 Distributed architectures, ...H04L 67/1001 for accessing one among a p...H04L 67/1006 with static server selectio...H04L 67/1008 based on parameters of serv...H04L 67/1017 based on a round robin mech...H04L 67/1034 Reaction to server failures...H04L 67/60 Scheduling or organising th...H04L 69/40 for recovering from a failu...
