Highly scalable application layer service appliances
First Claim
1. A network apparatus, comprising:
- a plurality of application service modules (ASMs) comprising an application service processor, wherein each of the plurality of ASMs is capable of providing one or more application services to network traffic, including an ISO layer 7 service;
a remote direct memory access (RDMA) lossless data transport fabric (LDTF) configured to transmit a data stream; and
a plurality of network service modules (NSMs) comprising a network service processor coupled to the ASMs over the LDTF, wherein the NSMs are configured to;
perform all of ISO layer 2 to layer 5 (layer 2-5) processes on one of a plurality of packets of a network transaction received from a client over a first network for accessing a server of a data center over a second network;
terminate transport protocol processing of the packets;
generate a data stream of the packets; and
route the data stream to the ASMs over the LDTF to allow the ASMs to perform all of ISO layer 5 to layer 7 (layer 5-7) processes on the packets;
wherein the NSMs are further configured to terminate a transport control protocol (TCP) connection associated with the network transaction and to route the data stream to the plurality of ASMs and to transform the data stream of the layer 5-7 processed packets received from the ASMs into protocol data units (PDUs); and
wherein the ASMs are further configured to route the data stream of layer 5-7 processed packets to the NSMs after the ASMs perform the layer 5-7 processes on the packets without having to terminate the TCP connection again.
3 Assignments
0 Petitions
Accused Products
Abstract
A highly scalable application layer service appliance is described herein. According to one embodiment, a network element includes a plurality of application service modules (ASMs), each providing one or more application services to network traffic, including layer 5-7 services, a lossless data transport fabric (LDTF), a network service module (NSM) coupled to each of the ASMs over the LDTF. In response to a packet of a network transaction received from a client over for accessing a server of a datacenter, the NSM is configured to perform layer 2-5 processes on the packet, generating a data stream. The NSM is configured to route the data stream to at least two ASMs over the LDTF to allow the ASMs to perform layer 5-7 services on the packet. Other methods and apparatuses are also described.
146 Citations
25 Claims
-
1. A network apparatus, comprising:
-
a plurality of application service modules (ASMs) comprising an application service processor, wherein each of the plurality of ASMs is capable of providing one or more application services to network traffic, including an ISO layer 7 service; a remote direct memory access (RDMA) lossless data transport fabric (LDTF) configured to transmit a data stream; and a plurality of network service modules (NSMs) comprising a network service processor coupled to the ASMs over the LDTF, wherein the NSMs are configured to; perform all of ISO layer 2 to layer 5 (layer 2-5) processes on one of a plurality of packets of a network transaction received from a client over a first network for accessing a server of a data center over a second network; terminate transport protocol processing of the packets; generate a data stream of the packets; and route the data stream to the ASMs over the LDTF to allow the ASMs to perform all of ISO layer 5 to layer 7 (layer 5-7) processes on the packets; wherein the NSMs are further configured to terminate a transport control protocol (TCP) connection associated with the network transaction and to route the data stream to the plurality of ASMs and to transform the data stream of the layer 5-7 processed packets received from the ASMs into protocol data units (PDUs); and wherein the ASMs are further configured to route the data stream of layer 5-7 processed packets to the NSMs after the ASMs perform the layer 5-7 processes on the packets without having to terminate the TCP connection again. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method comprising:
-
receiving at a network element one or more packets of a network transaction from a client over a first network for accessing a plurality of servers of a data center over a second network; operating the network element as an application services gateway of the data center with respect to a plurality of clients accessing at least one of the servers; at one of a plurality of network service modules (NSMs) comprising a network service processor; performing all of ISO layer 2 to layer 5 (layer 2-5) processes on the packets; terminating a transport control protocol (TCP) connection processing of the packets incoming from the client; generating a data stream of the packets; routing the data stream over a lossless data transport fabric (LDTF) from the NSMs to first and second application service modules (ASMs) comprising an application service processor coupled to the NSMs by the LDTF to perform ISO layer 5 to layer 7 (layer 5-7) processes without having to terminate the TCP connection again; routing the data stream of layer 5-7 processed packets over the LDTF from the ASMs back to the NSMs; and at the NSMs, transforming the data stream of layer 5-7 processed packets received from the ASMs into protocol data units (PDUs). - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. A machine-readable storage device storing instructions that, when executed by a processor, cause the processor to:
-
receive at a network element one or more packets of a network transaction from a client over a first network for accessing a plurality of servers of a data center over a second network; operate the network element as an application services gateway of the data center with respect to a plurality of clients accessing at least one of the servers; at one of a plurality of network service modules (NSMs); perform all of ISO layer 2 to layer 5 (layer 2-5) processes on the packets; terminate transport protocol processing of the packet incoming from the client; generate a data stream of the packets; routing the data stream over a lossless data transport fabric (LDTF) from the NSMs to first and second application service modules (ASMs) coupled to the NSMs by the LDTF to perform ISO layer 5 to layer 7 (layer 5-7) processes without having to terminate the TCP connection again; route the data streams of layer 5-7 processed packets over the LDTF from the ASMs back to the NSMs; and transform the data stream of layer 5-7 processed packets received from the ASMs into protocol data units (PDUs) at the NSMs. - View Dependent Claims (21, 22, 23, 24, 25)
-
Specification