Discovery of network nodes and routable addresses
First Claim
Patent Images
1. A system comprising:
- at least one scan server within an enterprise network, the scan server configured to locate machines on the enterprise network and determine security states of the machines and services the machines are exposing on the enterprise network;
at least one local link segment within the enterprise network;
at least one agent within the enterprise network coupled to a corresponding one of the at least one local link segment; and
at least one router coupled to place one of the at least one scan server in communication with one of the at least one agent, the communication between the scan server and the agent flowing through the at least one router;
wherein responsive to a request of the scan server to discover at least one network node coupled to the local link segment, the agent is configured to;
send a query message on the local link segment,maintain one or more responses from one or more network nodes on the local link segment within a predetermined time window after sending the query message, the predetermined time window being adjustable to compensate for noisiness and latency of the local link segment,obtain a link-local address corresponding to a network node of the one or more network nodes,convert the link-local address that is valid only within the local link segment to a routable site-local address that is valid within the enterprise network and invalid on a public network, andprovide the routable site-local address to the scan server via the at least one router, andwherein a time delay between the scan server sending the request to the agent to discover the at least one network node and the agent providing the routable site-local address to the scan server is configured to be less than or equal to a preconfigured response time.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and related methods for discovering network nodes and routable addresses include a scan server, local link segment, an agent coupled to the local link segment, and a router coupled to place the scan server in communication with the agent. The scan server commands the agent to discover a network node coupled to the local link segment. The agent is responsive to commands from the scan server to discover a network node coupled to the local link segment. The agent also obtains a link-local address for the network node, and obtains a routable site-local address to which the link-local address maps. The agent provides the routable site-local address to the scan server.
46 Citations
18 Claims
-
1. A system comprising:
-
at least one scan server within an enterprise network, the scan server configured to locate machines on the enterprise network and determine security states of the machines and services the machines are exposing on the enterprise network; at least one local link segment within the enterprise network; at least one agent within the enterprise network coupled to a corresponding one of the at least one local link segment; and at least one router coupled to place one of the at least one scan server in communication with one of the at least one agent, the communication between the scan server and the agent flowing through the at least one router; wherein responsive to a request of the scan server to discover at least one network node coupled to the local link segment, the agent is configured to; send a query message on the local link segment, maintain one or more responses from one or more network nodes on the local link segment within a predetermined time window after sending the query message, the predetermined time window being adjustable to compensate for noisiness and latency of the local link segment, obtain a link-local address corresponding to a network node of the one or more network nodes, convert the link-local address that is valid only within the local link segment to a routable site-local address that is valid within the enterprise network and invalid on a public network, and provide the routable site-local address to the scan server via the at least one router, and wherein a time delay between the scan server sending the request to the agent to discover the at least one network node and the agent providing the routable site-local address to the scan server is configured to be less than or equal to a preconfigured response time. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method comprising:
-
under control of one or more processors configured with executable instructions; receiving a command to discover a plurality of network nodes coupled to a local link segment on an enterprise network, the command being received from a scan server configured to locate machines on the enterprise network and determine security states of the machines and services the machines are exposing on the enterprise network; sending a message on the local link segment to discover the plurality of network nodes coupled to the local link segment; maintaining one or more responses that are received from one or more network nodes within a predetermined time window after sending the message, the predetermined time window being adjustable to compensate for noisiness and latency of the local link segment; converting one or more link-local addresses included in the one or more responses received from the one or more network nodes into one or more site-local addresses, wherein the one or more link-local addresses are valid only within the local link segment and the one or more site-local addresses are valid within the enterprise network and invalid on a public network; and sending the one or more site-local addresses associated with the one or more network nodes to the scan server, wherein a time delay between receiving the command to discover the plurality of network nodes from the scan server and sending the one or more site-local addresses to the scan server is configured to be less than or equal to a preconfigured response time. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. One or more computer-usable storage memories for storing computer-executable instructions that, when executed by one or more processors, perform acts comprising:
-
receiving a command to discover a plurality of network nodes coupled to a local link segment on an enterprise network, the command being received from a scan server configured to locate machines on the enterprise network and determine security states of the machines and services the machines are exposing on the enterprise network; sending a message on the local link segment to discover the plurality of network nodes coupled to the local link segment; maintaining one or more responses that are received from one or more network nodes within a predetermined time window after sending the message, the predetermined time window being adjustable to compensate for noisiness and latency of the local link segment; converting one or more link-local addresses included in the one or more responses received from the one or more network nodes into one or more site-local addresses, wherein the one or more link-local addresses are valid only within the local link segment and the one or more site-local addresses are valid within the enterprise network and invalid on a public network; and sending the one or more site-local addresses associated with the one or more network nodes to the scan server, wherein a time delay between receiving the command to discover the plurality of network nodes from the scan server and sending the one or more site-local addresses to the scan server is configured to be less than or equal to a preconfigured response time. - View Dependent Claims (16, 17, 18)
-
Specification