Intelligent integrated network security device
First Claim
Patent Images
1. A method comprising:
- receiving, by one or more processors of a device, a data packet;
examining, by the one or more processors, the data packet;
determining, by the one or more processors, a single flow record associated with the data packet,determining the single flow record including;
determining a packet identifier associated with the data packet, andevaluating a flow table to identify the single flow record using the packet identifier;
extracting, by the one or more processors, a session identifier and flow instructions, for two or more security devices, from the single flow record,the session identifier identifying a session associated with the data packet,the two or more security devices being included in the device;
sending, by the one or more processors, the flow instructions and the session identifier to respective ones of the two or more security devices to facilitate processing of the data packet;
receiving, by the one or more processors and from the two or more security devices, processing results,the processing results being generated by the two or more security devices when processing the data packet based on the flow instructions and the session identifier; and
processing, by the one or more processors, the data packet using the processing results.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods, computer program products and apparatus for processing data packets are described. Methods include receiving the data packet, examining the data packet, determining a single flow record associated with the packet and extracting flow instructions for two or more devices from the single flow record.
90 Citations
20 Claims
-
1. A method comprising:
-
receiving, by one or more processors of a device, a data packet; examining, by the one or more processors, the data packet; determining, by the one or more processors, a single flow record associated with the data packet, determining the single flow record including; determining a packet identifier associated with the data packet, and evaluating a flow table to identify the single flow record using the packet identifier; extracting, by the one or more processors, a session identifier and flow instructions, for two or more security devices, from the single flow record, the session identifier identifying a session associated with the data packet, the two or more security devices being included in the device; sending, by the one or more processors, the flow instructions and the session identifier to respective ones of the two or more security devices to facilitate processing of the data packet; receiving, by the one or more processors and from the two or more security devices, processing results, the processing results being generated by the two or more security devices when processing the data packet based on the flow instructions and the session identifier; and
processing, by the one or more processors, the data packet using the processing results. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer-readable medium storing instructions, the instructions comprising:
-
one or more instructions which, when executed by one or more processors of a device, cause the one or more processors to receive a data packet; one or more instructions which, when executed by the one or more processors, cause the one or more processors to examine the data packet; one or more instructions which, when executed by the one or more processors, cause the one or more processors to determine a single flow record associated with the data packet, the one or more instructions to determine the single flow record including; one or more instructions which, when executed by the one or more processors, cause the one or more processors to determine a packet identifier associated with the data packet, and one or more instructions which, when executed by the one or more processors, cause the one or more processors to evaluate a flow table to identify the single flow record using the packet identifier; one or more instructions which, when executed by the one or more processors, cause the one or more processors to extract a session identifier and flow instructions, for two or more security devices, from the single flow record, the two or more security devices being included in the device; the session identifier identifying a session associated with the data packet; one or more instructions which, when executed by the one or more processors, cause the one or more processors to send the session identifier and the flow instructions to respective ones of the two or more security devices to facilitate processing of the data packet; one or more instructions which, when executed by the one or more processors, cause the one or more processors to receive, from the two or more security devices, processing results, the processing results being generated by the two or more security devices when processing the data packet based on the flow instructions and the session identifier; and one or more instructions which, when executed by the one or more processors, cause the one or more processors to process the data packet using the processing results. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A system comprising:
a device to; receive a data packet; determine a packet identifier associated with the data packet; search a flow table, using the packet identifier, to identify a single flow record associated with the data packet; extract a session identifier and flow instructions, for two or more security devices, from the single flow record, the two or more security devices being included in the device; the session identifier identifying a session associated with the data packet; send the session identifier and the flow instructions to respective ones of the two or more security devices to facilitate processing of the data packet; receive, from the two or more security devices, processing results, the processing results being generated by the two or more security devices when processing the data packet based on the flow instructions and the session identifier; and selectively; drop the data packet based on the processing results, or forward the data packet to a destination of the data packet based on the processing results. - View Dependent Claims (16, 17, 18, 19, 20)
Specification