Layers 4-7 service gateway for converged datacenter fabric
First Claim
1. A method comprising:
- at a network element, receiving at least one of a plurality of packets of a plurality of network transactions from a plurality of clients over a first network for accessing one of a plurality of servers of a data center over a second network;
terminating at least one of a plurality of a transport control protocol (TCP) connections of data streams at a network service module (NSM) associated with each of the network transactions at a central network point;
storing meta-data for each of the terminated TCP connections in order to preserve session information, transaction information and packet information for each of the terminated TCP connections;
assembling the data streams from a plurality of protocol data units of the plurality of packets, wherein the data streams are configured to be transported within the second network;
transmitting the data streams over a switch fabric to an application service module (ASM) for layer 5 to layer 7 (layer 5-7) processing;
routing the data streams without TCP information for application layer processing to one of the plurality of servers of the data center via a converged input/output (I/O) interface over the second network if the second network is a converged fabric network;
performing the layer 5-7 processing at the ASM without having to terminate the TCP connections again; and
routing the data streams with TCP information via a TCP connection to one of the plurality of servers of the data center if the second network is an Ethernet network.
3 Assignments
0 Petitions
Accused Products
Abstract
Layer 4 gateway for a converged datacenter fabric is described herein. According to one embodiment, a packet of a network transaction is received from a client over a first network for accessing a server of a datacenter having a plurality of servers over a second network. One or more network services are performed on the packet including terminating a TCP (transport control protocol) connection associated with the network transaction and generating a data stream. The data stream without TCP information is routed to the server via a converged I/O interface over the second network if the second network is a converged fabric network. The data stream with TCP information is routed via a TCP connection to the server if the second network is an Ethernet. Other methods and apparatuses are also described.
127 Citations
23 Claims
-
1. A method comprising:
-
at a network element, receiving at least one of a plurality of packets of a plurality of network transactions from a plurality of clients over a first network for accessing one of a plurality of servers of a data center over a second network; terminating at least one of a plurality of a transport control protocol (TCP) connections of data streams at a network service module (NSM) associated with each of the network transactions at a central network point; storing meta-data for each of the terminated TCP connections in order to preserve session information, transaction information and packet information for each of the terminated TCP connections; assembling the data streams from a plurality of protocol data units of the plurality of packets, wherein the data streams are configured to be transported within the second network; transmitting the data streams over a switch fabric to an application service module (ASM) for layer 5 to layer 7 (layer 5-7) processing; routing the data streams without TCP information for application layer processing to one of the plurality of servers of the data center via a converged input/output (I/O) interface over the second network if the second network is a converged fabric network; performing the layer 5-7 processing at the ASM without having to terminate the TCP connections again; and routing the data streams with TCP information via a TCP connection to one of the plurality of servers of the data center if the second network is an Ethernet network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer-readable non-transitory memory storing instructions that, when executed by a processor, causes the processor to:
-
receive at a network element at least one of a plurality of packets of a plurality of network transaction from a plurality of clients over a first network for accessing one of a plurality of servers of a data center over a second network; terminate at least one of a plurality of a transport control protocol (TCP) connections of data streams at a network service module (NSM) associated with the network transactions at a central network point; store meta-data for each of the terminated TCP connections in order to preserve session information, transaction information and packet information for each of the terminated TCP connections; assemble the data streams from a plurality of protocol data units of the plurality of packets, wherein the data streams are configured to be transported within the second network; transmit the data streams over a switch fabric to an application service module (ASM) for layer 5 to layer 7 (layer 5-7) processing; route the data streams without TCP information for application layer processing to one of the plurality of servers of the data center via a converged input/output (I/O) interface over the second network if the second network is a converged fabric network; and perform the layer 5 to layer 7 (layer 5-7) processing at the ASM without having to terminate the TCP connections again; and route the data streams with TCP information via a TCP connection to one of the plurality of servers of the data center if the second network is an Ethernet network. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A network apparatus, comprising:
-
an Ethernet interface to be coupled to an Ethernet network; a converged input/output (I/O) interface to be coupled to a converged fabric network; and a plurality of service modules coupled to each other over an internal switch fabric, including a network service module (NSM) and an application service module (ASM); wherein the NSM is configured to receive at least one of a plurality of packets of a network transaction from at least one of a plurality of clients via the Ethernet interface, terminate a transport control protocol (TCP) connection of data streams at the NSM of the packet at a central network point, assemble a data stream for each of the plurality of packets to perform a layer 2 to layer 5 (layer 2-5) processing on the data stream of each of the packets and route the data stream to the ASM for layer 5 to layer 7 (layer 5-7) processing; wherein the ASM is configured to receive the data stream from the NSM over the internal switch fabric, perform a layer 5 to layer 7 (layer 5-7) processing on the data stream without having to terminate the TCP connection again, and route the data stream to the NSM; and wherein the NSM is further configured to transform the data stream into a plurality of protocol data units to be transmitted to an application server. - View Dependent Claims (20, 21, 22, 23)
-
Specification