Dynamically controlling packet processing
First Claim
1. A routing device comprising:
- a network interface to receive inbound packets from a networka detection module to detect a traffic level of the inbound packets; and
a routing engine to process the packets by;
when the traffic level of the inbound packets does not exceed the threshold, issuing software interrupts to invoke a packet service routine as an interrupt-driven service routine to process the inbound packets; and
when the traffic level of the inbound packets exceeds a threshold, calling the packet service routine without issuing the interrupts and controlling a usage rate by which the software process uses computing resources to process the inbound packets.
0 Assignments
0 Petitions
Accused Products
Abstract
A router includes a detection module to detect a presence of the network attack, such as a denial of service (DOS) attack. The detection module may, for example, include counters indicating a number of packets processed for various network protocols supported by the router. The detection module enables a rate-limiting operating mode for the router when one or more of the counters exceed a protocol-specific threshold. Under normal traffic levels, the router receives inbound packets using interrupt-driven service routines. When a network attack is detected, however, the router dynamically switches modes and processes the patents using a finely controlled software process. This allows the software process to control the computing resources allocated to servicing packets during a network attack, thereby reserving sufficient resources for lower priority software processes to process the packets and service other tasks.
22 Citations
7 Claims
-
1. A routing device comprising:
-
a network interface to receive inbound packets from a network a detection module to detect a traffic level of the inbound packets; and a routing engine to process the packets by; when the traffic level of the inbound packets does not exceed the threshold, issuing software interrupts to invoke a packet service routine as an interrupt-driven service routine to process the inbound packets; and when the traffic level of the inbound packets exceeds a threshold, calling the packet service routine without issuing the interrupts and controlling a usage rate by which the software process uses computing resources to process the inbound packets. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification