Intelligent integrated network security device for high-availability applications
First Claim
Patent Images
1. A system comprising:
- a first apparatus comprising;
a first security device; and
a first memory to store;
first information relating to processing a first flow associated with one or more first packets received from a network, andsecond information relating to processing a second flow associated with one or more second packets received from the network and intended for a second apparatus, the first flow being different than the second flow, the second apparatus being different than the first apparatus,the first apparatus to;
determine whether a failover event, associated with the second apparatus, has occurred,activate the second information in the first memory when the failover event, associated with the second apparatus, has occurred, andprocess packets, associated with the second flow, using the first security device and the activated second information when the failover event, associated with the second apparatus, has occurred,packets, associated with the first flow, being processed using the first security device and the first information when the failover event, associated with the second apparatus, has not occurred.
0 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatuses for inspecting packets are provided. A primary security system may be configured for processing packets. The primary security system may be operable to maintain flow information for a group of devices to facilitate processing of the packets. A secondary security system may be designated for processing packets upon a failover event. Flow records may be shared from the primary security system with the secondary security system.
-
Citations
27 Claims
-
1. A system comprising:
-
a first apparatus comprising; a first security device; and a first memory to store; first information relating to processing a first flow associated with one or more first packets received from a network, and second information relating to processing a second flow associated with one or more second packets received from the network and intended for a second apparatus, the first flow being different than the second flow, the second apparatus being different than the first apparatus, the first apparatus to; determine whether a failover event, associated with the second apparatus, has occurred, activate the second information in the first memory when the failover event, associated with the second apparatus, has occurred, and process packets, associated with the second flow, using the first security device and the activated second information when the failover event, associated with the second apparatus, has occurred, packets, associated with the first flow, being processed using the first security device and the first information when the failover event, associated with the second apparatus, has not occurred. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system comprising:
-
a primary security apparatus, to process packets in a first traffic flow; a secondary security apparatus to; store first information relating to processing the first traffic flow, store second information relating to processing a second traffic flow that is different than the first traffic flow, activate the first information when a failover event, associated with the primary security apparatus, has been detected, process the packets, in the first traffic flow, when the failover event has been detected, the packets, in the first traffic flow, being processed using the activated first information, and process packets, in the second traffic flow, when the failover event has not been detected, the packets, in the second traffic flow, being processed using the second information. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A method comprising:
-
storing, by a first device, first information relating to processing a first flow associated with one or more first packets; storing, by the first device, second information relating to processing a second flow associated with one or more second packets and intended for a second device, the second device being different than the first device, and the second flow being different than the first flow; determining, by the first device, whether a failover event, associated with the second device, has occurred; activating, by the first device, the second information when the failover event has occurred; processing, by the first device and using the activated second information, packets, associated with the second flow, when the failover event has occurred; and processing, by the first device and using the first information, packets, associated with the first flow, when the failover event has not occurred. - View Dependent Claims (21, 22, 23)
-
-
24. A non-transitory computer-readable medium comprising:
a plurality of instructions which, when executed by a first device, cause the first device to; store first information relating to processing a first flow associated with one or more first packets; store second information relating to processing a second flow associated with one or more second packets and intended for a second device, the second device being different than the first device, and the second flow being different than the first flow; determine whether a failover event, associated with the second device, has occurred; activate the second information when the failover event has occurred; process, using the activated second information, packets, associated with the second flow, when the failover event has occurred; and process, using the first information, packets, associated with the first flow, when the failover event has not occurred. - View Dependent Claims (25, 26, 27)
Specification