NETWORK SERVICE HEADER USED TO RELAY AUTHENTICATED SESSION INFORMATION
First Claim
Patent Images
1. A method comprising:
- receiving a packet at a first node, whereinthe packet is received from a first client node;
authenticating the packet, whereinthe authenticating comprises determining whether a session has been established for the first client node;
setting a value in a header of the packet, whereinthe value indicates that the packet is authenticated; and
forwarding the packet to a second node.
2 Assignments
0 Petitions
Accused Products
Abstract
In one embodiment, a system, method, and computer program product are disclosed for authenticating a packet received from a client node, storing the results of the authentication in a cache memory of a service classifier node, and including the results of the authentication in a network service header of a packet before forwarding the packet to downstream service nodes. In one embodiment, the initial authentication is performed in conjunction with an authentication node.
9 Citations
20 Claims
-
1. A method comprising:
-
receiving a packet at a first node, wherein the packet is received from a first client node; authenticating the packet, wherein the authenticating comprises determining whether a session has been established for the first client node; setting a value in a header of the packet, wherein the value indicates that the packet is authenticated; and forwarding the packet to a second node. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system comprising:
a first node and a second node, wherein the first node is configured to receive a first packet, wherein the packet is received from a first client node, authenticate the packet, wherein the authentication of the packet comprises determining whether a session has been established for the first client node, set a value in a header of the packet, wherein the value indicates that the packet is authenticated, and forward the packet to the second node. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
15. A computer program product comprising:
-
a plurality of program instructions, comprising a first set of instructions, executable on a computer system, configured to receive a first packet, wherein the packet is received from a first client node; a second set of instructions, executable on the computer system, configured to authenticate the packet, wherein authentication of the packet comprises determining whether a session has been established for the first client node, and set a value in a header of the packet, wherein the value indicates that the packet is authenticated; a third set of instructions, executable on the computer system, configured to forward the packet to a second node; and a non-transitory computer-readable storage medium, wherein the instructions are encoded in the non-transitory computer-readable storage medium. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification