MULTI-SERVICE VPN NETWORK CLIENT FOR MOBILE DEVICE HAVING INTEGRATED ACCELERATION
Granted: January 5, 2012
Application Number:
20120005476
An integrated, multi-service virtual private network (VPN) network client for cellular mobile devices is described. The multi-service network client can be deployed as a single software package on cellular mobile network devices to provide integrated services including secure enterprise VPN connectivity, acceleration, security management including monitored and enforced endpoint compliance, and collaboration services. The multi-service client integrates with an operating system of the…
MULTI-SERVICE VPN NETWORK CLIENT FOR MOBILE DEVICE HAVING DYNAMIC FAILOVER
Granted: January 5, 2012
Application Number:
20120005477
An integrated, multi-service network client for cellular mobile devices is described. The multi-service network client can be deployed as a single software package on cellular mobile network devices to provide integrated services including secure enterprise virtual private network (VPN) connectivity, acceleration, security management including monitored and enforced endpoint compliance, and collaboration services. Once installed on the cellular mobile device, the multi-service client…
VPN NETWORK CLIENT FOR MOBILE DEVICE HAVING DYNAMICALLY TRANSLATED USER HOME PAGE
Granted: January 5, 2012
Application Number:
20120005745
A virtual private network (VPN) client for cellular mobile devices is described. The VPN network client processes network packets for securely tunneling the network packets between the cellular mobile device and the remote VPN security device. Upon establishing the VPN connection, the VPN network client receives a web-based home page from the secure VPN device via a secure response, dynamically parses bookmark links from the secure response and renders a bookmark window using input…
DUAL-MODE MULTI-SERVICE VPN NETWORK CLIENT FOR MOBILE DEVICE
Granted: January 5, 2012
Application Number:
20120005746
An integrated, multi-service network client for cellular mobile devices is described. The multi-service client includes a VPN handler having an interface programmed to exchange the network packets with the security manager for application of the security service, wherein the VPN handler is configurable to operate in one of an enterprise mode and in a non-enterprise mode, wherein in the enterprise mode the VPN handler establishes a VPN connection with a remote VPN security device and…
SELF CLOCKING INTERRUPT GENERATION IN A NETWORK INTERFACE CARD
Granted: January 5, 2012
Application Number:
20120005300
A network interface card may issue interrupts to a host in which the determination of when to issue an interrupt to the host may be based on the incoming packet rate. In one implementation, an interrupt controller of the network interface card may issue interrupts to that informs a host of the arrival of packets. The interrupt controller may issue the interrupts in response to arrival of a predetermined number of packets, where the interrupt controller re-calculates the predetermined…
FIXED ATTENUATION AIR GAP INTERFACE FOR A MULTIMODE OPTICAL FIBER INTERCONNECTION
Granted: December 29, 2011
Application Number:
20110317961
A fiber-to-fiber connector system that includes a first connector for housing a portion of a first fiber, where the first fiber is terminated by a first end-face. The fiber-to-fiber connection system also includes a second connector for housing a portion of a second fiber, where the second fiber is terminated by a second end-face, where the first connector and the second connector permit the first fiber and the second fiber to be interconnected to form an air gap interface between the…
GUARANTEED BANDWIDTH SHARING IN A TRAFFIC SHAPING SYSTEM
Granted: December 22, 2011
Application Number:
20110310742
In one aspect the invention provides a method for allocating bandwidth in a network appliance where the network appliance includes a plurality of guaranteed bandwidth buckets used to evaluate when to pass traffic through the network appliance. The method includes providing a shared bandwidth bucket associated with a plurality of the guaranteed bandwidth buckets, allocating bandwidth to the shared bandwidth bucket based on the underutilization of bandwidth in the plurality of guaranteed…
APPARATUS AND METHOD OF COMPENSATING FOR CLOCK FREQUENCY AND PHASE VARIATIONS BY PROCESSING PACKET DELAY VALUES
Granted: December 22, 2011
Application Number:
20110310766
An apparatus and method are described for compensating for frequency and phase variations of electronic components by processing packet delay values. In one embodiment, a packet delay determination module determines packet delay values based on time values associated with a first and a second electronic component. A packet delay selection module selects a subset of the packet delay values based on the maximum frequency drift of the first electronic component. A statistical parameter…
VIRTUAL MACHINE MOBILITY IN DATA CENTERS
Granted: December 22, 2011
Application Number:
20110314155
A data center management device determines that a virtual machine should be moved from a first physical system to a second physical system. The data center management device instructs a first service appliance at the first physical system to perform state synchronization with a second service appliance at the second physical system in order to continue providing the services offered prior to the move. The data center management device instructs the virtual machine to be instantiated at…
SESSION-BASED SEQUENCE CHECKING
Granted: December 22, 2011
Application Number:
20110314179
A device may include logic configured to receive a data unit intended for a destination device and to obtain information from the data unit. The logic may be configured to identify a window using the obtained information, where the window has a range determined by a lower boundary and an upper boundary. The logic may be configured to forward the data unit to the destination device when a portion of the data unit information is within the window.
SELECTION OF MULTICAST ROUTER INTERFACES IN AN L2 SWITCH CONNECTING END HOSTS AND ROUTERS, WHICH IS RUNNING IGMP AND PIM SNOOPING
Granted: December 15, 2011
Application Number:
20110305239
Multicast traffic received by a subnet that uses IGMP/PIM snooping may be efficiently processed so that only required multicast router interfaces are used. A router may, for example, receive a source-specific PIM join/prune message indicating that a multicast receiver of the multicast traffic is to join/leave a multicast group to receive/stop traffic from a multicast source; determine whether the router is a first hop router relative to a subnet of the multicast source; and forward, when…
NO SPLIT VIRTUAL CHASSIS BASED ON PASS THROUGH MODE
Granted: December 8, 2011
Application Number:
20110299385
A method includes operating in a normal mode to receive and transmit packets, where the network device is one of multiple network devices that operate as a virtual chassis, where the virtual chassis corresponds to a single logical network device, and detecting when the network device crashes. The method further includes initiating a resetting process and operating in a pass through mode, during the resetting process, where the pass through mode permits packets to be received and…
SYSTEMS AND METHODS FOR AUTOMATED SENSOR POLLING
Granted: December 8, 2011
Application Number:
20110302351
A device may include polling logic configured to store a table of received addresses, sequentially receive sensor data from each address in the table via a serial data bus, store the sensor data in a memory, receive an address from a processor via a high speed data bus, and provide stored sensor data from the memory to the processor via a parallel data bus.
SYSTEM AND METHOD FOR FAIR SHARED DE-QUEUE AND DROP ARBITRATION IN A BUFFER
Granted: December 1, 2011
Application Number:
20110292795
Systems and methods consistent with the present invention provide a mechanism that can efficiently manage multiple queues and maintain fairness among ports while not placing additional performance demands on the memory used to store the queue data structures. Within a port, high priority traffic is dropped only if it is consuming more than its fair share of bandwidth allocated to that port. Queue arbitration is of low performance cost and simple because it arbitrates only across queues…
POINT-TO-MULTIPOINT SERVICE IN A LAYER TWO ETHERNET NETWORK
Granted: December 1, 2011
Application Number:
20110292937
Techniques are described for providing point-to-multipoint (P2MP) Ethernet service in a L2 network. Routers providing the Ethernet service allow an administrator to classify local attachment circuits as either “leaf” attachment circuits or “root” attachment circuits to define a tree-like architecture for forwarding Ethernet frames within a VPLS domain. Based on the classifications, each of router constructs flood domains, referred to herein as mesh groups, that control switching…
APPLICATION-LAYER TRAFFIC OPTIMIZATION SERVICE MAP UPDATES
Granted: December 1, 2011
Application Number:
20110295942
Using the ALTO Service, networking applications can request through the ALTO protocol information about the underlying network topology from the ISP or Content Provider. The ALTO Service provides information such as preferences of network resources with the goal of modifying network resource consumption patterns while maintaining or improving application performance. This document describes, in one example, an ALTO server that implements enhancements to the ALTO service to enable…
APPLICATION-LAYER TRAFFIC OPTIMIZATION SERVICE ENDPOINT TYPE ATTRIBUTE
Granted: December 1, 2011
Application Number:
20110295983
Using the ALTO Service, networking applications can request through the ALTO protocol information about the underlying network topology from the ISP or Content Provider. The ALTO Service provides information such as network resource preferences with the goal of modifying network resource consumption patterns while maintaining or improving application performance. This document describes, in one example, an ALTO server that implements enhancements to the ALTO service to assign a PID-type…
APPLICATION-LAYER TRAFFIC OPTIMIZATION SERVICE SPANNING MULTIPLE NETWORKS
Granted: December 1, 2011
Application Number:
20110296053
Using the ALTO Service, networking applications can request through the ALTO protocol information about the underlying network topology from the ISP or Content Provider. The ALTO Service provides information such as preferences of network resources with the goal of modifying network resource consumption patterns while maintaining or improving application performance. This document describes, in one example, an ALTO server that intersects network and cost maps for a first network with…
SYSTEMS AND METHODS FOR EQUAL-COST MULTI-PATH VIRTUAL PRIVATE LAN SERVICE
Granted: November 24, 2011
Application Number:
20110286462
A provider edge device, associated with a virtual private local area network service (VPLS) system, includes a memory to store instructions to implement a pseudowire mechanism to receive a first data frame from a source customer edge (CE) device associated with the VPLS system, incorporate the first data frame into a first VPLS packet, determine whether the source CE device is a single-homed CE device or a multi-homed CE device, and incorporate, into the first VPLS packet, a first…
GLOBAL FLOW TRACKING SYSTEM
Granted: November 17, 2011
Application Number:
20110280150
A device may obtain a flow signature, identify a destination collector to which packets bearing the flow signature are sent, obtain a list of potential source collectors that may have sent the packets bearing the flow signature to the destination collector, and identify a source collector, among the potential source collectors, that sent the packets to the destination collector. In addition, the device may output information related to a path from the source collector the destination…
