Routing a packet by a device
First Claim
Patent Images
1. A network device comprising:
- a first port, of a plurality of ports of the network device, to receive a packet via a network; and
a controller to;
obtain a destination address from the received packet,determine that a table, associated with the network device, does not store the obtained destination address, the table storing a plurality of destination addresses,create a probe packet that includes the destination address, the probe packet being created based on determining that the table does not store the obtained destination address, the probe packet being different than the received packet,broadcast the probe packet to each of a group of ports of the plurality of ports,prevent the received packet from being transmitted until a response, to the probe packet, is received via a particular port, of the group of ports, that is associated with the destination address, andtransmit the received packet when the response, to the probe packet, is received.
0 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus for transferring packets in a packet switched communication system. A system is provided that includes an L2 device including a controller determining for each packet received whether the received packet is to be inspected, an inspection device operable to inspect and filter packets identified by the controller including using a zone specific policy and an L2 controller for transferring inspected packets in accordance with L2 header information using L2 protocols.
77 Citations
20 Claims
-
1. A network device comprising:
-
a first port, of a plurality of ports of the network device, to receive a packet via a network; and a controller to; obtain a destination address from the received packet, determine that a table, associated with the network device, does not store the obtained destination address, the table storing a plurality of destination addresses, create a probe packet that includes the destination address, the probe packet being created based on determining that the table does not store the obtained destination address, the probe packet being different than the received packet, broadcast the probe packet to each of a group of ports of the plurality of ports, prevent the received packet from being transmitted until a response, to the probe packet, is received via a particular port, of the group of ports, that is associated with the destination address, and transmit the received packet when the response, to the probe packet, is received. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method comprising:
-
determining, by a security device, that a destination address, obtained from a packet, is not stored in a table associated with the security device, the packet being received via a first port of a plurality of ports of the security device; creating, by the security device, a probe packet that includes the destination address, the probe packet being created based on determining that the destination address is not stored in the table; transmitting, by the security device, the probe packet to one or more ports of the plurality of ports, the probe packet being transmitted to the one or more ports based on determining that the destination address is not stored in the table; preventing, by the security device, the packet from being transmitted until a response, to the transmitted probe packet, is received via a particular port of the one or more ports that is associated with the destination address; and transmitting, by the security device, the packet when the response, to the transmitted probe packet, is received. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. A system comprising:
a non-transitory computer-readable medium comprising a plurality of instructions which, when executed by a security device, cause the security device to; obtain a destination address included in a first packet, the first packet being received via a port of a plurality of ports of the security device; determine that an entry, corresponding to the destination address, is not stored in a table associated with the security device; transmit a second packet, that includes the destination address, to one or more ports of the plurality of ports, the second packet being transmitted to the one or more ports based on determining that the entry is not stored in the table, the second packet being different than the first packet; prevent the first packet from being transmitted until a response, to the transmitted second packet, is received via a particular port of the one or more ports that is associated with the destination address; and transmit the first packet when the response is received. - View Dependent Claims (18, 19, 20)
Specification