Data flow segment optimized for hot flows
First Claim
1. A method for managing connection flows over a network with a traffic management device (TMD) that includes one or more processors, wherein execution of logic by the one or more processors performs actions, comprising:
- employing one or more control segment (CS) components to perform actions, including;
generating one or more connection flow metrics based on one or more received network packets for one or more managed connection flows; and
employing the one or more connection flow metrics to determine one or more hot connection flows in the managed connection flows based on a predicted capacity of the one or more CS components, wherein a percentile of the connection flows are identified as the one or more hot connection flows; and
employing one or more data flow segment (DFS) components to perform actions, including maintaining packet level flow handling for one or more of the connection flows.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments are directed towards improving the performance of network traffic management devices by optimizing the management of hot connection flows. A packet traffic management device (“PTMD”) may employ a data flow segment (“DFS”) and control segment (“CS”). The CS may perform high-level control functions and per-flow policy enforcement for connection flows maintained at the DFS, while the DFS may perform statistics gathering, per-packet policy enforcement (e.g., packet address translations), or the like, on connection flows maintained at the DFS. The DFS may include high-speed flow caches and other high-speed components that may be comprised of high-performance computer memory. Making efficient use of the high speed flow cache capacity may be improved by maximizing the number of hot connection flows and minimizing the number of malicious and/or in-operative connections flows (e.g., non-genuine flows) that may have flow control data stored in the high-speed flow cache.
111 Citations
20 Claims
-
1. A method for managing connection flows over a network with a traffic management device (TMD) that includes one or more processors, wherein execution of logic by the one or more processors performs actions, comprising:
-
employing one or more control segment (CS) components to perform actions, including; generating one or more connection flow metrics based on one or more received network packets for one or more managed connection flows; and employing the one or more connection flow metrics to determine one or more hot connection flows in the managed connection flows based on a predicted capacity of the one or more CS components, wherein a percentile of the connection flows are identified as the one or more hot connection flows; and employing one or more data flow segment (DFS) components to perform actions, including maintaining packet level flow handling for one or more of the connection flows. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A traffic management computer (TMC) that includes a plurality of components to manage connection flows over a network, wherein the TMC employs one or more processors to execute logic that performs actions, comprising:
-
employing one or more control segment (CS) components to perform actions, including; generating one or more connection flow metrics based on one or more received network packets for one or more managed connection flows; and employing the one or more connection flow metrics to determine one or more hot connection flows in the managed connection flows based on a predicted capacity of the one or more CS components, wherein a percentile of the connection flows are identified as the one or more hot connection flows; and employing one or more data flow segment (DFS) components to perform actions, including maintaining packet level flow handling for one or more of the connection flows. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A system that includes a plurality of components to manage connection flows over a network, wherein the system employs one or more processors to execute logic that performs actions, comprising:
-
one or more control segment (CS) components that perform actions, including; generating one or more connection flow metrics based on one or more received network packets for one or more managed connection flows; and employing the one or more connection flow metrics to determine one or more hot connection flows in the managed connection flows based on a predicted capacity of the one or more CS components, wherein a percentile of the connection flows are identified as the one or more hot connection flows; and one or more data flow segment (DFS) components to perform actions, including maintaining packet level flow handling for one or more of the connection flows. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification