Node fault identification in wireless LAN access points
Granted: September 24, 2019
Patent Number:
10425305
A wireless access point array having a plurality of access point radios, a monitor radio and an array controller. The array controller includes processes, methods and functions for verifying the operation of the access point radios. The access point radios may be verified by attempting to establish a data connection between the monitor radio and each of the access point radios.
Methods and systems for distribution and retrieval of network traffic records
Granted: August 27, 2019
Patent Number:
10397329
A method includes transmitting, by a distribution server, to each of a plurality of worker computers, a request for an enumeration of Internet Protocol (IP) addresses ranked according to a criterion. The method includes receiving, by the distribution computer, from a first of the plurality of worker computers, a first partial enumeration of the requested IP addresses ranked according to the criterion, the first partial enumeration stored in a hash table. The method includes receiving, by…
Dynamic key generation for identifying data segments
Granted: August 6, 2019
Patent Number:
10375197
Systems and techniques are described for caching resources. Multiple distinct resource identifiers that correspond to the same resource can be automatically collected, wherein the multiple distinct resource identifiers are included in resource requests that are sent from at least one client to at least one server. Next, a key can be automatically determined that matches the multiple distinct resource identifiers by analyzing the multiple distinct resource identifiers. A resource request…
Auto discovery between proxies in an IPv6 network
Granted: July 23, 2019
Patent Number:
10361997
Systems and techniques are described for performing proxy auto-discovery in an Internet Protocol version 6 (IPv6) network by using the destination options extension header field in the IPv6 header. Specifically, systems and techniques are described to enable a pair of proxies to transparently intercept connection handshake messages that are carried in IPv6 packets between two network nodes, and to use the destination options extension header field in the IPv6 packets to automatically…
Network topology generation using traceroute data
Granted: July 16, 2019
Patent Number:
10355962
Embodiments provide systems, methods, and computer program products for inferring node and link information from traceroute data in order to generate topology information. A system receives traceroute data for a data packet that traverses a path from a source to a destination. The system infers port types for the addresses in the traceroute data and groups subsets of the addresses in the traceroute data into logical nodes based on neighbor relationships demonstrated in backward and…
Minimally invasive monitoring of path quality
Granted: July 16, 2019
Patent Number:
10355944
Systems and techniques are described for performing minimally invasive monitoring of path quality in a network. Specifically, path quality requests and measurements can be piggy-backed on the data traffic that is flowing through a secure connection between two network nodes. For example, path quality requests and measurements can be inserted into the TFC padding field of IP/ESP packets that are being communicated between two IPsec devices. The disclosed embodiments ensure that the…
Method and apparatus for path selection
Granted: June 4, 2019
Patent Number:
10313229
Systems and techniques are described for path selection. A packet can be transparently intercepted at an intermediary device. Next, the intermediary device may modify one or more bits in the header of the packet. The intermediary device can then forward the packet to the next hop device. In some network configurations, the modifications to the one or more bits in the header of the packet may cause a downstream device to select a path that is different from the path that would have been…
Large-scale distributed correlation
Granted: May 14, 2019
Patent Number:
10291463
Disclosed herein are system, method, and computer program product embodiments for performing distributed correlation to determine a probable cause for a performance problem detected in an application. An embodiment operates by triggering an alert for a performance metric of an application executing on a local-level node. The alert may be sent to a higher-level node. Upon receiving the alert, the higher-level node may send a distributed correlation request, used to determine a root cause…
Rule based alerting in anomaly detection
Granted: May 7, 2019
Patent Number:
10284571
A graphical user interface for constructing rules to run on an intrusion detection system is described. The user interface includes a field that specifies a first set of nodes on a network by Host-Group, a field that specifies a second set of nodes on a network by Host-Group and a field which determines whether to interpret the first and second host-group fields as Client, server, source, destination or any of these.
Dynamically influencing route re-distribution between an exterior gateway protocol and an interior gateway protocol
Granted: April 16, 2019
Patent Number:
10263882
Systems and techniques are described for dynamically influencing route re-distribution between an exterior gateway protocol (EGP) and an interior gateway protocol (IGP). Some embodiments can dynamically influence which routes are re-distributed into the IGP network for use in cases where traffic destined to that particular remote site is desired to be steered on the desired network/border router. Moreover, some embodiments can dynamically influence route re-distribution from the IGP…
Dual band MIMO antenna and wireless access point
Granted: February 26, 2019
Patent Number:
10218087
Antenna arrays and access points are disclosed. An antenna array includes first second, third, and fourth antennas formed in a 2×2 grid on a first surface of a planar substrate. Each of the four antennas is linearly polarized in a first direction and provides a roughly cardiod radiation pattern in a plane normal to the first direction. Nulls of the cardiod radiation patterns of the first and second antennas face the third and fourth antennas, respectively, and nulls of the cardiod…
Capture, analysis, and visualization of concurrent system and network behavior of an application
Granted: September 11, 2018
Patent Number:
10075509
A first capture system that captures network communication events related to an application, and a second capture system that captures internal processing events related to the application. A visualization system analyzes the data captured by each of the capture systems, synchronizes and correlates the data, and presents an integrated display of these communication and processing events. In a preferred embodiment, the communicated messages include an identifier of the application, and…
Connecting transparent network devices to optimize unidirectional network traffic
Granted: August 7, 2018
Patent Number:
10044670
Transparent network devices intercept unidirectional network traffic and use bidirectional network protocol messages to discover each other and configure an inner connection. A first transparent network device intercepting unidirectional network traffic between a source and destination will send a bidirectional network protocol message addressed to the destination that includes an indicator of its presence. Additional transparent network devices that intercept this network message each…
Packet tracing
Granted: June 19, 2018
Patent Number:
10003509
To evaluate a network's performance in processing communications related to a target transaction, a set of “reference” communications corresponding to the target transaction are compared to a larger set of communications in the network in a “production” environment, to identify the occurrence of the target transaction in the production environment. Preferably, the reference communications are recorded in a laboratory environment that models the production environment, or recorded…
Hybrid segment-oriented file server and WAN accelerator
Granted: March 27, 2018
Patent Number:
9930099
In a network including WAN accelerators and segment-oriented file servers, a method comprises responding to a client request to manipulate a file via a network file protocol by receiving a first request at a first WAN accelerator, wherein the request is a request to open a file located at a file server that is a segment-oriented file server, sending a local request for the file, corresponding to the first request, from the WAN accelerator to the file server, using a segment-aware network…
Stitching together partial network topologies
Granted: August 8, 2017
Patent Number:
9729426
A method and system that takes advantage of processes that are efficient for determining the topology of small to medium size networks to determine individual network topologies for such networks, and then merges these individual topologies into a consolidated topology for the entire network. Each of the processes that determines the topology of the smaller networks provides the determined network topology, as well as a list of factors that may be relevant in the determination of how the…
Persisting large volumes of data in an efficient unobtrusive manner
Granted: March 28, 2017
Patent Number:
9606887
Embodiments provide a data persisting mechanism that allows for efficient, unobtrusive persisting of large volumes of data while optimizing the use of system resources by the persisting process. In an embodiment, the persisting process includes a self-tuning algorithm that constantly monitors persistence performance and that adjusts persistence time to maintain performance within user-defined criteria. From one aspect, this allows the persisting process to seamlessly adapt to changes in…
User-configurable network performance monitors
Granted: February 28, 2017
Patent Number:
9584391
A network analysis system provides for a user-definable display of information related to messages communicated on the network. The network analysis system includes one or more display formats that provide a display of message exchanges between nodes of a network, and a display augmenter that provides additional information on the display based on a user-defined visualization. The user defined visualization includes augmenting the display based on user-defined coloring characteristics…
Optimizing secure communications between a client authenticating server and a mobile client
Granted: February 21, 2017
Patent Number:
9578016
Systems and techniques are described for optimizing secure communications. Specifically, a first intermediary and a second intermediary can split-terminate a secure connection handshake or a handshake renegotiation between two computing devices. The first and second intermediaries can then optimize secure communications between the two computing devices.
Correlating input and output requests between client and server components in a multi-tier application
Granted: January 17, 2017
Patent Number:
9549030
The present invention relates to correlating requests between a client and a server to a particular transaction. In one embodiment, transactions in a system of clients and servers are monitored and traced. From this information, a context comprising sets or groupings of transaction call sequences are determined. For example, a sequence of method calls on a client process is traced to a socket carrying data for transmission of a request message to a server. In response to this request…