PACKET PRIORITIZATION SYSTEMS AND METHODS USING ADDRESS ALIASES
Granted: March 24, 2011
Application Number:
20110072179
A switch fabric includes input links, output links, and at least one switching element. The input links are configured to receive data items that include destination addresses. At least some of the data items have different priority levels. The output links are configured to output the data items. Each of the output links is assigned multiple ones of the destination addresses. Each of the destination addresses corresponds to one of the priority levels. The switching element(s) is/are…
SYSTEMS AND METHODS FOR RECOVERING MEMORY
Granted: March 24, 2011
Application Number:
20110072301
A system includes a group of devices and a shared memory that is partitioned into blocks that are capable of being allocated to the group of devices using linked lists. The system also includes check logic configured to store a group of bits, where each bit corresponds to one of the blocks, and counter logic configured to count for a predetermined period of time. The system further includes logic configured to clear the group of bits stored in the check logic, cause the counter logic to…
INTERCEPTING GPRS DATA
Granted: March 24, 2011
Application Number:
20110069663
GPRS Tunneling Protocol (“GTP”) packets are intercepted by receiving a GTP tunnel packet, determining whether the GTP tunnel packet is to be intercepted, intercepting GTP tunnel packets if it is determined that the GTP tunnel packet is to be intercepted, and processing the intercepted GTP tunnel packets. Multiple tunnels may be intercepted simultaneously and GTP tunnel packets from different tunnels may be processed differently. Implementations include both inline and offline…
System and Method for Controlling a Mobile
Granted: March 17, 2011
Application Number:
20110065419
A system includes a controlling module for controlling a mobile device remotely A system includes a controlling module for controlling a mobile device remotely, wherein the controlling module includes a parental control module for controlling a mobile device used by a child. A system includes a controlling module for controlling a mobile device remotely, wherein the controlling module includes a parental control module for controlling a mobile device used by a child, wherein the parental…
DISTRIBUTION OF NETWORK COMMUNICATIONS BASED ON SERVER POWER CONSUMPTION
Granted: March 17, 2011
Application Number:
20110066727
A network device is described that load-balances network traffic among a set of network servers based on electrical power consumption of the network servers. The network device may measure electrical power consumption in a variety of ways, and may generate and maintain a power consumption profile for each of the network server. The power consumption profile may describe the respective server power consumption in increasing granularity. For instance, each power consumption profile may…
SYSTEMS AND METHODS FOR IP SESSION KEEPALIVE USING BFD PROTOCOLS
Granted: March 17, 2011
Application Number:
20110066735
A network device may include logic to establish an IP session, establish a BFD session within the established IP session, transmit BFD packets within the established BFD session, and determine that the established IP session is active based upon reception of the BFD packets. In another embodiment, the logic may also determine that an IP session is active using an inactivity timer that may also trigger transmission of BFD packets.
FRONT-TO-BACK COOLING SYSTEM FOR MODULAR SYSTEMS WITH ORTHOGONAL MIDPLANE CONFIGURATION
Granted: March 10, 2011
Application Number:
20110056660
A front-to-back cooling system allows cooling of an apparatus containing two orthogonal sets of modules. Each set of modules is independently cooled. A vertical set of modules is cooled with vertical air flow across the modules that enters from a front of the apparatus and exhausts from a back of the apparatus. A horizontal set of modules is cooled with horizontal front-to-back air flow. When the horizontal set of modules is at the front of the apparatus, a plenum extending exterior to…
CONTEXT SWITCHED ROUTE LOOK UP KEY ENGINE
Granted: March 3, 2011
Application Number:
20110055425
A key engine that performs route lookups for a plurality of keys may include a data processing portion configured to process one data item at a time and to request data when needed. A buffer may be configured to store a partial result from the data processing portion. A controller may be configured to load the partial result from the data processing portion into the buffer. The controller also may be configured to input another data item into the data processing portion for processing…
PROTECTING AGAINST DISTRIBUTED NETWORK FLOOD ATTACKS
Granted: March 3, 2011
Application Number:
20110055921
A network security device performs a three-stage analysis of traffic to identify malicious clients. In one example, a device includes an attack detection module to, during a first stage, monitor network connections to a protected network device, during a second stage, to monitor a plurality of types of transactions for the plurality of network sessions when a parameter for the connections exceeds a connection threshold, and during a third stage, to monitor communications associated with…
DYNAMIC PROGRAMMABLE DELAY SELECTION CIRCUIT AND METHOD
Granted: February 24, 2011
Application Number:
20110047402
A controller may include a measurement circuit configured to generate a proxy signal representing delay variations in the controller. The measurement circuit may also generate a measurement value from the proxy signal. A control circuit may be configured to convert the measurement value into a control value. A delay circuit may be adjusted by the control value to alter an amount of delay of a signal.
PROTECTION OF DATABASE OPERATIONS
Granted: February 24, 2011
Application Number:
20110047154
A system protects database operations performed on a shared resource. The system may chunk memory to form a set of memory chunks which have memory blocks, at least some of the memory blocks including database objects. The system may configure at least one binary search tree using the memory chunks as nodes and buffer a set of pointers corresponding to the memory blocks. The system may further validate the buffered pointers and dereference validated buffered pointers.
MEASURING NETWORK TRAFFIC BASED ON PREDICTED AMOUNT OF PADDING
Granted: February 10, 2011
Application Number:
20110032841
A system measures traffic in a device. The system tracks an amount of data and the data units and predicts the amount of padding associated with the data units. The system determines the amount of traffic in the device based on the predicted padding, the amount of data, and the number of data units.
SYSTEMS AND METHODS FOR ACCELERATING TCP/IP DATA STREAM PROCESSING
Granted: February 10, 2011
Application Number:
20110032941
A network device includes an interface (105), a TCP/IP protocol fast processing path (115), and a TCP/IP protocol slow processing path (110). The interface (105) receives a packet and parses the packets to determine a characteristic of the packet. The TCP/IP protocol fast processing path (115) processes the packet if the characteristic of the packet includes a first characteristic. The TCP/IP protocol slow processing path (110) processes the packet if the characteristic of the packet…
SYSTEMS FOR SCHEDULING THE TRANSMISSION OF DATA IN A NETWORK DEVICE
Granted: January 27, 2011
Application Number:
20110019544
In a network device, a line card includes a first scheduler configured to perform scheduling for data units of a first type and a second scheduler that is connected in series to the first scheduler and configured to perform scheduling for data units of a second type. The schedulers may be configured in a variety of ways to achieve certain data unit flow characteristics.
TRAFFIC ARBITRATION
Granted: January 27, 2011
Application Number:
20110019548
The invention provides an arbitration method and an arbiter circuit by which equal arbitration of output cells can be achieved with a comparatively simple configuration even where a very great number of queues are involved. The arbiter circuit includes a plurality of queues for storing output cells, and a plurality of round robins for successively providing the right of outputting output cells to the queues. The round robins are arranged in a multi-stage tree link configuration, and the…
CONTENT SERVICE AGGREGATION SYSTEM
Granted: January 27, 2011
Application Number:
20110019550
A network content service apparatus includes a set of compute elements adapted to perform a set of network services; and a switching fabric coupling compute elements in said set of compute elements. The set of network services includes firewall protection, Network Address Translation, Internet Protocol forwarding, bandwidth management, Secure Sockets Layer operations, Web caching, Web switching, and virtual private networking. Code operable on the compute elements enables the network…
METHOD AND APPARATUS FOR SHARED SHAPING
Granted: January 27, 2011
Application Number:
20110019572
A method and a network device for sharing bandwidth among a group of classes of traffic for an interface are provided. Bandwidth may be allocated to at least one traffic class of a first priority for the interface. At least some unused bandwidth of the at least one traffic class may be allocated to at least one other traffic class of a second priority for the interface. In some implementations, weighted constituents may be allocated unused interface bandwidth based on an assigned weight…
ROUTING FRAMES IN A SHORTEST PATH COMPUTER NETWORK FOR A MULTI-HOMED LEGACY BRIDGE NODE
Granted: January 27, 2011
Application Number:
20110019678
Methods, apparatus, and products for routing frames in a shortest path computer network for a multi-homed legacy bridge, wherein the network includes a plurality of bridges. At least two of the plurality of bridges operate as edge bridges through which the frames ingress and egress the network. A first edge bridge identifies a legacy bridge nickname for a legacy bridge connected to the network through the first edge bridge and a second edge bridge using active-active link aggregation.…
FRONT-TO-BACK COOLING SYSTEM FOR MODULAR SYSTEMS WITH ORTHOGONAL MIDPLANE CONFIGURATION
Granted: January 20, 2011
Application Number:
20110011562
A front-to-back cooling system allows cooling of an apparatus containing two orthogonal sets of modules. Each set of modules is independently cooled. A vertical set of modules is cooled with vertical air flow across the modules that enters from a front of the apparatus and exhausts from a back of the apparatus. A horizontal set of modules is cooled with horizontal front-to-back air flow. When the horizontal set of modules is at the front of the apparatus, a plenum extending exterior to…
FRONT-TO-BACK COOLING SYSTEM FOR MODULAR SYSTEMS WITH ORTHOGONAL MIDPLANE CONFIGURATION
Granted: January 20, 2011
Application Number:
20110011567
A front-to-back cooling system allows cooling of an apparatus containing two orthogonal sets of modules. Each set of modules is independently cooled. A vertical set of modules is cooled with vertical air flow across the modules that enters from a front of the apparatus and exhausts from a back of the apparatus. A horizontal set of modules is cooled with horizontal front-to-back air flow. When the horizontal set of modules is at the front of the apparatus, a plenum extending exterior to…
