Highly scalable architecture for application network appliances
First Claim
1. A method comprising:
- at a client host machine, sending a data packet from an application server of the client host machine to an agent of the client host machine, wherein the data packet comprises a header with a destination address, a destination port number and a payload;
at the client host machine, encrypting the payload of the data packet with an encryption header while maintaining the destination address information of the data packet unencrypted and maintaining the destination port number information of the data packet unencrypted; and
at the client host machine, performing a Layer 4 analysis on the data packet.
0 Assignments
0 Petitions
Accused Products
Abstract
A highly scalable application network appliance is described herein. According to one embodiment, a network element includes a switch fabric, a first service module coupled to the switch fabric, and a second service module coupled to the first service module over the switch fabric. In response to packets of a network transaction received from a client over a first network to access a server of a data center having multiple servers over a second network, the first service module is configured to perform a first portion of OSI (open system interconnection) compatible layers of network processes on the packets while the second service module is configured to perform a second portion of the OSI compatible layers of network processes on the packets. The first portion includes at least one OSI compatible layer that is not included in the second portion. Other methods and apparatuses are also described.
-
Citations
21 Claims
-
1. A method comprising:
-
at a client host machine, sending a data packet from an application server of the client host machine to an agent of the client host machine, wherein the data packet comprises a header with a destination address, a destination port number and a payload; at the client host machine, encrypting the payload of the data packet with an encryption header while maintaining the destination address information of the data packet unencrypted and maintaining the destination port number information of the data packet unencrypted; and at the client host machine, performing a Layer 4 analysis on the data packet. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An apparatus comprising:
-
a network interface unit configured to enable communications over a network; and a processor configured to execute instructions associated with an application server and an agent server, so that the application server sends a data packet to the agent server, and the agent server encrypts a payload of the data packet with an encryption header such that a destination address of the data packet remains unencrypted and destination port number information of the data packet remains unencrypted, and the agent server performs Layer 4 analysis on the data packet. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. One or more computer readable storage media encoded with software comprising computer executable instructions and when the software is executed operable to:
-
send a data packet from an application server of the client host machine to an agent of the client host machine, wherein the data packet comprises a header with a destination address, a destination port number and a payload; encrypt the payload of the data packet with an encryption header while maintaining the destination address information of the data packet unencrypted and maintaining the destination port number information of the data packet unencrypted; and perform a Layer 4 analysis on the data packet. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification