Reassembly-free rewriting of out-of-order data payload
First Claim
Patent Images
1. A machine implemented method for processing network data packets, comprising:
- in response to packets received at a network access device from a first network node over a first network destined to a second network node over a second network, determining whether the packets need to be modified based on one or more policies associated with the packets maintained by the network access device, wherein the packets are out-of-order network packets transmitted from the first network node;
passing the packets to the second network node without buffering the packets within the network access device if the packets do not need to be modified; and
if the packets need to be modified,storing the packets in a buffer within the network access device before sending the packets to the second network node,modifying payloads of the packets stored in the buffer, andtransmitting the packets with the modified payloads to the second network node, wherein original packets without modified are not transmitted to the second network node.
22 Assignments
0 Petitions
Accused Products
Abstract
Techniques for reassembly-free rewriting of out-of-order data packet payload are described herein. In one aspect of the invention, in response to packets received at a network access device from a first network node destined to a second network node, the packets are stored in a buffer within the network access device if the packets need to be modified before sending the packets to the second network node. The original our-of-order packets are dropped and do not reach the second network node. The payloads of the packets stored in the buffer are modified and thereafter, the modified packets with the modified payloads are sent to the second network node. Other methods and apparatuses are also described.
-
Citations
14 Claims
-
1. A machine implemented method for processing network data packets, comprising:
-
in response to packets received at a network access device from a first network node over a first network destined to a second network node over a second network, determining whether the packets need to be modified based on one or more policies associated with the packets maintained by the network access device, wherein the packets are out-of-order network packets transmitted from the first network node; passing the packets to the second network node without buffering the packets within the network access device if the packets do not need to be modified; and if the packets need to be modified, storing the packets in a buffer within the network access device before sending the packets to the second network node, modifying payloads of the packets stored in the buffer, and transmitting the packets with the modified payloads to the second network node, wherein original packets without modified are not transmitted to the second network node. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A non-transitory machine-readable medium having instructions stored therein, which when executed by a processor, cause the processor to perform a method for processing network data packets, the method comprising:
-
in response to packets received at a network access device from a first network node over a first network destined to a second network node over a second network, determining whether the packets need to be modified based on one or more policies associated with the packets maintained by the network access device, wherein the packets are out-of-order network packets transmitted from the first network; passing the packets to the second network node without buffering the packets within the network access device if the packets do not need to be modified; and if the packets need to be modified, storing the packets in a buffer within the network access device before sending the packets to the second network node, modifying payloads of the packets stored in the buffer, and transmitting the packets with the modified payloads to the second network node, wherein original packets without modified are not transmitted to the second network node. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A network access device for routing network data packets, comprising:
-
an ingress interface to receive packets from a first network node over a first network destined to a second network node over a second network, wherein the packets are out-of-order network packets; a policy module to maintain one or more policies to determine whether the packets need to be modified; a buffer coupled to temporarily store the packets if the packets need to be modified before sending the packets to the second network node, without sending the packets to the second network node; a packet reassembly logic coupled to the buffer to modify payloads of the packets stored in the buffer if the packets need to be modified, wherein the packet reassembly logic is configured to pass the packets to the second network node without buffering the packets in the buffer if the packets do not need to be modified; and an egress interface to transmit the packets having the modified payloads to the second network node over the second network, wherein original packets without modified are not transmitted to the second network node, if the packets need to be modified. - View Dependent Claims (12, 13, 14)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeQuest Software, Inc.
-
Original AssigneeSonicWALL, Inc. (SonicWall Holdings Ltd.)
-
InventorsYanovsky, Boris, Yanovsky, Roman, Dubrovsky, Aleksandr
-
Primary Examiner(s)Pham; Chi H.
-
Assistant Examiner(s)HOM, SHICK C
-
Application NumberUS11/772,723Time in Patent Office1,079 DaysField of Search370/394, 370/474, 370411-419, 726/3US Class Current370/235CPC Class CodesH04L 51/063 Content adaptation, e.g. re...H04L 69/16 Implementation or adaptatio...
