Systems and methods to forward packets not passed by criteria-based filters in packet forwarding systems

US 9,992,134 B2
Filed: 05/27/2015
Issued: 06/05/2018
Est. Priority Date: 05/27/2015
Status: Active Grant

First Claim

Patent Images

1. A packet forwarding system for network packets, comprising:

input ports configured to receive packets from one or more network sources;

output ports configured to send packets to one or more network destinations;

filter engines configured to determine how packets are forwarded by packet forwarding circuitry from the input ports to the output ports based upon packet forwarding rules;

a user interface configured to allow configuration of one or more pass-by-criteria (PBC) filters and a pass unmatched PBC filter coupled to a common input port,wherein each PBC filter is configured to pass received packets that match at least one criterion relating to the received packets from the common input port to at least one output port; and

wherein the pass unmatched PBC filter is configured to pass received packets that do not match any of the PBC filters from the common input port to at least one output port; and

a filter processor configured to generate packet forwarding rules for the filter engines based upon the one or more PBC filters and the pass unmatched PBC filter, and to apply the packet forwarding rules to the filter engines.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods are disclosed to forward packets not passed by criteria-based filters in packet forwarding systems. The disclosed embodiments include one or more Not Passed By Criteria (NPBC) filters that are defined for input ports along with one or more criteria-based filters, such as for example, Pass by Criteria (PBC) filters and/or Deny by Criteria filters (DBC), that forward packets not passed by these criteria-based filters. NPBC filters include, for example, Pass Unmatched PBC filters associated with PBC filters and configured to forward packets not passed by PBC filters and/or Pass Matched DBC filters associated with DBC filters and configured to forward packets not passed by DBC filters. Using one or more NPBC filters within the disclosed embodiments, packet data that is not being passed along to output ports by the criteria-based filters can be easily passed to one or more designated output ports.

59 Citations

View as Search Results

12 Claims

1. A packet forwarding system for network packets, comprising:
- input ports configured to receive packets from one or more network sources;
  
  output ports configured to send packets to one or more network destinations;
  
  filter engines configured to determine how packets are forwarded by packet forwarding circuitry from the input ports to the output ports based upon packet forwarding rules;
  
  a user interface configured to allow configuration of one or more pass-by-criteria (PBC) filters and a pass unmatched PBC filter coupled to a common input port,wherein each PBC filter is configured to pass received packets that match at least one criterion relating to the received packets from the common input port to at least one output port; and
  
  wherein the pass unmatched PBC filter is configured to pass received packets that do not match any of the PBC filters from the common input port to at least one output port; and
  
  a filter processor configured to generate packet forwarding rules for the filter engines based upon the one or more PBC filters and the pass unmatched PBC filter, and to apply the packet forwarding rules to the filter engines.
- View Dependent Claims (2)
- - 2. The packet forwarding system of claim 1, wherein the at least one output port for the pass unmatched PBC filter is different from the at least one output port for the PBC filters.

3. A packet forwarding system for network packets, comprising:
- input ports configured to receive packets from one or more network sources;
  
  output ports configured to send packets to one or more network destinations;
  
  filter engines configured to determine how packets are forwarded by packet forwarding circuitry from the input ports to the output ports based upon packet forwarding rules;
  
  a user interface configured to allow configuration of one or more deny by-criteria (DBC) filters and a pass matched DBC filter coupled to a common input port,wherein each DBC filter is configured to pass received packets that do not match at least one criterion relating to the received packets from the common input port to at least one output port; and
  
  wherein the pass matched DBC filter is configured to pass received packets that match all of the DBC filters from the common input port to at least one output port; and
  
  a filter processor configured to generate packet forwarding rules for the filter engines based upon the one or more DBC filters and the pass matched DBC filter, and to apply the packet forwarding rules to the filter engines.
- View Dependent Claims (4)
- - 4. The packet forwarding system of claim 3, wherein the at least one output port for the pass matched DBC filter is different from the at least one output port for the DBC filters.

5. A packet forwarding system for network packets, comprising:
- input ports configured to receive packets from one or more network sources;
  
  output ports configured to send packets to one or more network destinations;
  
  filter engines configured to determine how packets are forwarded by packet forwarding circuitry from the input ports to the output ports based upon packet forwarding rules;
  
  a user interface configured to allow configuration of;
  
  one or more pass-by-criteria (PBC) filters coupled to a common input port, each PBC filter being configured to pass received packets that match at least one criterion relating to the received packets from the common input port to at least one output port;
  
  one or more deny-by-criteria (DBC) filters coupled to the common input port, each DBC filter being configured to pass received packets that do not match at least one criterion relating to the received packets from the common input port to at least one output port;
  
  a pass unmatched PBC filter coupled to the common input port, the pass unmatched PBC filter being configured to pass received packets that do not match any of the PBC filters from the common input port to at least one output port; and
  
  a pass matched DBC filter coupled to the common input port, the pass matched DBC filter being configured to pass received packets that match all of the DBC filters from the common input port to at least one output port; and
  
  a filter processor configured to generate packet forwarding rules for the filter engines based upon the one or more PBC filters, the one or more DBC filters, the pass unmatched PBC filter, and the pass matched DBC filter, and to apply the packet forwarding rules to the filter engines.
- View Dependent Claims (6)
- - 6. The packet forwarding system of claim 5, wherein the at least one output port for the pass unmatched PBC filter is different from the at least one output port for the PBC filters, and wherein the at least one output port for the pass matched DBC filter is different from the at least one output port for the DBC filters.

7. A method to forward network packets within a packet forwarding system, comprising:
- allowing a user to define through a user interface for a packet forwarding system one or more pass-by-criteria (PBC) filters and a pass unmatched PBC filter coupled to a common input port,wherein each PBC filter is configured to pass received packets that match at least one criterion relating to the received packets from the common input port to at least one output port, andwherein the pass unmatched PBC filter is configured to pass received packets that do not match any of the PBC filters from the common input port to at least one output port;
  
  generating packet forwarding rules based upon the one or more PBC filters and the pass unmatched PBC filter;
  
  applying the packet forwarding rules to filter engines within the packet forwarding system, the filter engines being configured to determine how packets are forwarded between input ports and output ports within the packet forwarding system;
  
  receiving, with the common input port, packets from one or more network sources;
  
  passing received packets to at least one output port for the packet forwarding system based upon the one or more PBC filters; and
  
  forwarding received packets that do not match any of the one or more PBC filters to at least one output port based upon the pass unmatched PBC filter.
- View Dependent Claims (8)
- - 8. The method of claim 7, wherein the at least one output port for the pass unmatched PBC filter is different from the at least one output port for the PBC filters.

9. A method to forward network packets within a packet forwarding system, comprising:
- allowing a user to define through a user interface for a packet forwarding system one or more deny-by-criteria (DBC) filters and a pass matched DBC filter coupled to a common input port,wherein each DBC filter is configured to pass received packets that do not match at least one criterion relating to the received packets from the common input port to at least one output port, andwherein the pass matched DBC filter is configured to pass received packets that match all of the DBC filters from the common input port to at least one output port;
  
  generating packet forwarding rules based upon the one or more DBC filters and the pass matched DBC filter;
  
  applying the packet forwarding rules to filter engines within the packet forwarding system, the filter engines being configured to determine how packets are forwarded between input ports and output ports within the packet forwarding system;
  
  receiving, with the common input port, packets from one or more network sources;
  
  passing received packets to at least one output port for the packet forwarding system based upon the one or more DBC filters; and
  
  forwarding received packets that match all of the one or more DBC filters to at least one output port based upon the pass matched DBC filter.
- View Dependent Claims (10)
- - 10. The method of claim 9, wherein the at least one output port for the pass matched DBC filter is different from the at least one output port for the DBC filters.

11. A method to forward network packets within a packet forwarding system, comprising:
- allowing a user to define through a user interface for a packet forwarding system;
  
  one or more pass-by-criteria (PBC) filters coupled to a common input port, each PBC filter being configured to pass received packets that match at least one criterion relating to the received packets from the common input port to at least one output port; and
  
  one or more deny-by-criteria (DBC) filters coupled to the common input port, each DBC filter being configured to pass received packets that do not match at least one criterion relating to the received packets from the common input port to at least one output port;
  
  a pass unmatched PBC filter coupled to the common input port, the pass unmatched PBC filter being configured to pass received packets that do not match any of the PBC filters from the common input port to at least one output port; and
  
  a pass matched DBC filter coupled to the common input port, the pass matched DBC filter being configured to pass received packets that match all of the DBC filters from the common input port to at least one output port;
  
  generating packet forwarding rules based upon the one or more PBC filters, the one or more DBC filters, the pass unmatched PBC filter, and the pass matched DBC filter;
  
  applying the packet forwarding rules to filter engines within the packet forwarding system, the filter engines being configured to determine how packets are forwarded between input ports and output ports within the packet forwarding system;
  
  receiving, with the common input port, packets from one or more network sources;
  
  passing received packets to at least one output port for the packet forwarding system based upon the one or more PBC filters and the one or more DBC filters;
  
  forwarding received packets that do not match any of the one or more PBC filters to at least one output port based upon the pass unmatched PBC filter; and
  
  forwarding received packets that match all of the one or more DBC filters to at least one output port based upon the pass matched DBC filter.
- View Dependent Claims (12)
- - 12. The method of claim 11, wherein the at least one output port for the pass unmatched PBC filter is different from the at least one output port for the PBC filters, and wherein the at least one output port for the pass matched DBC filter is different from the at least one output port for the DBC filters.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Keysight Technologies Singapore (Holdings) Pte. Limited. (Keysight Technologies, Inc.)
Original Assignee
Keysight Technologies Singapore (Holdings) Pte. Limited. (Keysight Technologies, Inc.)
Inventors
Abkowitz, Patricia A., Boyd, Ramona, Spooner, Andrew, Pleshek, Ronald A.
Primary Examiner(s)
Zhu, Alvin
Assistant Examiner(s)
ZHU, BO HUI ALVIN

Application Number

US14/722,459
Publication Number

US 20160352626A1
Time in Patent Office

1,105 Days
Field of Search
US Class Current
CPC Class Codes

H04L 49/253 using establishment or rele...

Systems and methods to forward packets not passed by criteria-based filters in packet forwarding systems

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

59 Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods to forward packets not passed by criteria-based filters in packet forwarding systems

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

59 Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links