Intelligent integrated network security device for high-availability applications
First Claim
Patent Images
1. A method comprising:
- storing, by a first device and in a memory of the first device, first information relating to the first device operating as a primary security system;
storing, by the first device and in the memory of the first device, second information relating to the first device operating as a secondary security system,the first device operating as the secondary security system when a failover event, associated with a second device, has occurred,the second device being different than the first device;
determining, by the first device, whether the failover event has occurred;
processing, by the first device and using the first information, first packets when the failover event has not occurred; and
processing, by the first device and using the second information, second packets when the failover event has occurred,the second packets being intended for the second device.
0 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatuses for inspecting packets are provided. A primary security system may be configured for processing packets. The primary security system may be operable to maintain flow information for a group of devices to facilitate processing of the packets. A secondary security system may be designated for processing packets upon a failover event. Flow records may be shared from the primary security system with the secondary security system.
-
Citations
20 Claims
-
1. A method comprising:
-
storing, by a first device and in a memory of the first device, first information relating to the first device operating as a primary security system; storing, by the first device and in the memory of the first device, second information relating to the first device operating as a secondary security system, the first device operating as the secondary security system when a failover event, associated with a second device, has occurred, the second device being different than the first device; determining, by the first device, whether the failover event has occurred; processing, by the first device and using the first information, first packets when the failover event has not occurred; and processing, by the first device and using the second information, second packets when the failover event has occurred, the second packets being intended for the second device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A device comprising:
-
a memory to store; first information relating to the device processing packets in a first flow of packets, and second information relating to the device processing packets in a second flow of packets, the second flow of packets being different than the first flow of packets, the packets, in the second flow of packets, being intended for processing by another device; and one or more processors to; determine whether a failover event, associated with the other device, has occurred, process, using the first information, the packets in the first flow of packets when the failover event has not occurred, and process, using the second information, the packets in the second flow of packets when the failover event has occurred. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable medium storing instructions, the instructions comprising:
-
one or more instructions which, when executed by a first device, cause the first device to store first information relating to the first device processing packets in a first flow of packets; one or more instructions which, when executed by the first device, cause the first device to store second information relating to the first device processing packets in a second flow of packets, the second flow of packets being different than the first flow of packets, the packets, in the second flow of packets, being intended for processing by a second device that is different than the first device; one or more instructions which, when executed by the first device, cause the first device to determine whether a failover event, associated with the second device, has occurred; one or more instructions which, when executed by the first device, cause the first device to process, using the first information, the packets in the first flow of packets when the failover event has not occurred; and one or more instructions which, when executed by the first device, cause the first device to process, using the second information, the packets in the second flow of packets when the failover event has occurred. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification