Marked packet forwarding
First Claim
Patent Images
1. A network chip comprising:
- logic to;
identify identity information of an originating network device based on information of a packet received from the originating network device;
determine a handle associated with the originating network device of the received packet using information from a header of the packet;
mark the packet with the handle;
store the handle and the identity information of the originating network device in a memory local to the network chip in a manner that associates the handle with the identity information of the originating network device;
change a destination address of the packet to an address of a checking functionality to redirect the packet to the checking functionality instead of the original destination of the packet; and
forward the marked packet to the checking functionality that detects unwanted network activity.
1 Assignment
0 Petitions
Accused Products
Abstract
A network, network devices, and methods are described for marked packet forwarding. A network device includes a network chip having a number of network ports for receiving and transmitting packets. The network chip includes logic to decapsulate a packet received from a tunnel, mark the packet with a handle associated with an originating network device of the packet using information from an encapsulation header, and forward the marked packet to a checking functionality having a destination address different from an original destination address of the packet.
-
Citations
15 Claims
-
1. A network chip comprising:
-
logic to; identify identity information of an originating network device based on information of a packet received from the originating network device; determine a handle associated with the originating network device of the received packet using information from a header of the packet; mark the packet with the handle; store the handle and the identity information of the originating network device in a memory local to the network chip in a manner that associates the handle with the identity information of the originating network device; change a destination address of the packet to an address of a checking functionality to redirect the packet to the checking functionality instead of the original destination of the packet; and forward the marked packet to the checking functionality that detects unwanted network activity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for packet forwarding, comprising:
in a network chip, identifying identity information of an originating network device based on information of a packet received from the originating network device; determining a handle indicative of the packet'"'"'s originating network device using information from a header of the packet; marking the packet with the handle; storing the handle and the identity information of the originating network device in a memory local to the network chip in a manner that associates the handle with the identity information of the originating network device; changing a destination address of the packet to an address of a checking functionality to redirect the packet to the checking functionality instead of the original destination of the packet; and forwarding the marked packet to the checking functionality, wherein the checking functionality detects unwanted network activity. - View Dependent Claims (10, 11, 12, 13, 14, 15)
Specification