CN101009683A - 处理网络流量的计算机系统及方法 - Google Patents
处理网络流量的计算机系统及方法 Download PDFInfo
- Publication number
- CN101009683A CN101009683A CNA2007100001786A CN200710000178A CN101009683A CN 101009683 A CN101009683 A CN 101009683A CN A2007100001786 A CNA2007100001786 A CN A2007100001786A CN 200710000178 A CN200710000178 A CN 200710000178A CN 101009683 A CN101009683 A CN 101009683A
- Authority
- CN
- China
- Prior art keywords
- virtual domain
- service processes
- network
- virtual
- network traffics
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 112
- 238000012545 processing Methods 0.000 title claims abstract description 36
- 230000008569 process Effects 0.000 claims abstract description 75
- 238000001914 filtration Methods 0.000 claims abstract description 10
- 230000004044 response Effects 0.000 claims abstract description 10
- 238000004891 communication Methods 0.000 claims description 34
- 230000005540 biological transmission Effects 0.000 claims description 19
- 238000012544 monitoring process Methods 0.000 claims description 3
- 230000000977 initiatory effect Effects 0.000 claims 2
- 230000026676 system process Effects 0.000 abstract description 22
- 230000015654 memory Effects 0.000 description 12
- 238000005516 engineering process Methods 0.000 description 7
- 230000008859 change Effects 0.000 description 5
- 238000010586 diagram Methods 0.000 description 4
- 230000006870 function Effects 0.000 description 4
- 230000009471 action Effects 0.000 description 2
- 238000012217 deletion Methods 0.000 description 2
- 230000037430 deletion Effects 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 230000007246 mechanism Effects 0.000 description 2
- 238000003672 processing method Methods 0.000 description 2
- 230000003068 static effect Effects 0.000 description 2
- 238000012546 transfer Methods 0.000 description 2
- CKRLIWFOVCLXTP-UHFFFAOYSA-N 4-phenyl-1-propyl-3,6-dihydro-2h-pyridine Chemical compound C1N(CCC)CCC(C=2C=CC=CC=2)=C1 CKRLIWFOVCLXTP-UHFFFAOYSA-N 0.000 description 1
- RYGMFSIKBFXOCR-UHFFFAOYSA-N Copper Chemical compound [Cu] RYGMFSIKBFXOCR-UHFFFAOYSA-N 0.000 description 1
- 241000700605 Viruses Species 0.000 description 1
- 230000004913 activation Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000002457 bidirectional effect Effects 0.000 description 1
- 150000001875 compounds Chemical class 0.000 description 1
- 229910052802 copper Inorganic materials 0.000 description 1
- 239000010949 copper Substances 0.000 description 1
- 230000004069 differentiation Effects 0.000 description 1
- 230000002349 favourable effect Effects 0.000 description 1
- 238000007689 inspection Methods 0.000 description 1
- 239000004973 liquid crystal related substance Substances 0.000 description 1
- 239000000203 mixture Substances 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 239000013307 optical fiber Substances 0.000 description 1
- 238000005457 optimization Methods 0.000 description 1
- 230000008520 organization Effects 0.000 description 1
- 230000002265 prevention Effects 0.000 description 1
- 239000007787 solid Substances 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0272—Virtual private networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (41)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510369654.6A CN105187378A (zh) | 2006-01-13 | 2007-01-05 | 处理网络流量的计算机系统及方法 |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/331,031 US8234361B2 (en) | 2006-01-13 | 2006-01-13 | Computerized system and method for handling network traffic |
US11/331,031 | 2006-01-13 |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510369654.6A Division CN105187378A (zh) | 2006-01-13 | 2007-01-05 | 处理网络流量的计算机系统及方法 |
Publications (1)
Publication Number | Publication Date |
---|---|
CN101009683A true CN101009683A (zh) | 2007-08-01 |
Family
ID=38264567
Family Applications (2)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510369654.6A Pending CN105187378A (zh) | 2006-01-13 | 2007-01-05 | 处理网络流量的计算机系统及方法 |
CNA2007100001786A Pending CN101009683A (zh) | 2006-01-13 | 2007-01-05 | 处理网络流量的计算机系统及方法 |
Family Applications Before (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510369654.6A Pending CN105187378A (zh) | 2006-01-13 | 2007-01-05 | 处理网络流量的计算机系统及方法 |
Country Status (2)
Country | Link |
---|---|
US (3) | US8234361B2 (zh) |
CN (2) | CN105187378A (zh) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102289614A (zh) * | 2010-06-18 | 2011-12-21 | 三星Sds株式会社 | 反恶意软件系统及其操作方法 |
CN101345711B (zh) * | 2008-08-13 | 2012-08-08 | 成都市华为赛门铁克科技有限公司 | 一种报文处理方法、防火墙设备及网络安全系统 |
CN106656717A (zh) * | 2015-10-28 | 2017-05-10 | 华耀(中国)科技有限公司 | 一种划分网络域的方法 |
Families Citing this family (48)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9130954B2 (en) | 2000-09-26 | 2015-09-08 | Brocade Communications Systems, Inc. | Distributed health check for global server load balancing |
US7657629B1 (en) * | 2000-09-26 | 2010-02-02 | Foundry Networks, Inc. | Global server load balancing |
US7454500B1 (en) | 2000-09-26 | 2008-11-18 | Foundry Networks, Inc. | Global server load balancing |
US7086061B1 (en) | 2002-08-01 | 2006-08-01 | Foundry Networks, Inc. | Statistical tracking of global server load balancing for selecting the best network address from ordered list of network addresses based on a set of performance metrics |
US7676576B1 (en) | 2002-08-01 | 2010-03-09 | Foundry Networks, Inc. | Method and system to clear counters used for statistical tracking for global server load balancing |
US7574508B1 (en) | 2002-08-07 | 2009-08-11 | Foundry Networks, Inc. | Canonical name (CNAME) handling for global server load balancing |
US9584360B2 (en) | 2003-09-29 | 2017-02-28 | Foundry Networks, Llc | Global server load balancing support for private VIP addresses |
US7496651B1 (en) * | 2004-05-06 | 2009-02-24 | Foundry Networks, Inc. | Configurable geographic prefixes for global server load balancing |
US7584301B1 (en) | 2004-05-06 | 2009-09-01 | Foundry Networks, Inc. | Host-level policies for global server load balancing |
US7423977B1 (en) | 2004-08-23 | 2008-09-09 | Foundry Networks Inc. | Smoothing algorithm for round trip time (RTT) measurements |
US7966654B2 (en) | 2005-11-22 | 2011-06-21 | Fortinet, Inc. | Computerized system and method for policy-based content filtering |
US8234361B2 (en) | 2006-01-13 | 2012-07-31 | Fortinet, Inc. | Computerized system and method for handling network traffic |
US20070266433A1 (en) * | 2006-03-03 | 2007-11-15 | Hezi Moore | System and Method for Securing Information in a Virtual Computing Environment |
EP1931085B1 (en) | 2006-12-06 | 2012-07-18 | Genexis B.V. | Modular network connection equipment |
IL189514A (en) | 2007-02-14 | 2011-12-29 | Marvell Israel Misl Ltd | Logical mediation system and method |
US20090328193A1 (en) * | 2007-07-20 | 2009-12-31 | Hezi Moore | System and Method for Implementing a Virtualized Security Platform |
EP1973270B1 (en) * | 2007-03-22 | 2018-01-03 | PacketFront Software Solutions AB | Broadband service delivery |
EP1998505B1 (en) * | 2007-05-29 | 2010-05-12 | PacketFront Systems AB | Method of connecting VLAN systems to other networks via a router |
ATE447278T1 (de) * | 2007-08-08 | 2009-11-15 | Packetfront Systems Ab | Vlan-datenrahmen und -übertragung |
US8250641B2 (en) * | 2007-09-17 | 2012-08-21 | Intel Corporation | Method and apparatus for dynamic switching and real time security control on virtualized systems |
ATE464733T1 (de) | 2007-10-12 | 2010-04-15 | Packetfront Systems Ab | Konfiguration von routern für dhcp-dienstanfragen |
EP2048848B1 (en) | 2007-10-12 | 2013-12-18 | PacketFront Network Products AB | Optical data communications |
US20090100162A1 (en) * | 2007-10-15 | 2009-04-16 | Microsoft Corporation | Sharing Policy and Workload among Network Access Devices |
US20090328077A1 (en) * | 2008-06-25 | 2009-12-31 | International Business Machines Corporation | Software Appliances not Requiring Virtual Machines |
US8826138B1 (en) * | 2008-10-29 | 2014-09-02 | Hewlett-Packard Development Company, L.P. | Virtual connect domain groups |
WO2011053973A1 (en) * | 2009-11-02 | 2011-05-05 | Marvell World Trade Ltd. Et Al. | Switching apparatus and method based on virtual interfaces |
US20110282981A1 (en) * | 2010-05-11 | 2011-11-17 | Alcatel-Lucent Canada Inc. | Behavioral rule results |
US8964742B1 (en) | 2010-07-28 | 2015-02-24 | Marvell Israel (M.I.S.L) Ltd. | Linked list profiling and updating |
US8549148B2 (en) | 2010-10-15 | 2013-10-01 | Brocade Communications Systems, Inc. | Domain name system security extensions (DNSSEC) for global server load balancing |
US9100443B2 (en) * | 2011-01-11 | 2015-08-04 | International Business Machines Corporation | Communication protocol for virtual input/output server (VIOS) cluster communication |
US10135677B1 (en) * | 2012-07-06 | 2018-11-20 | Cradlepoint, Inc. | Deployment of network-related features over cloud network |
US10560343B1 (en) | 2012-07-06 | 2020-02-11 | Cradlepoint, Inc. | People centric management of cloud networks via GUI |
US10880162B1 (en) | 2012-07-06 | 2020-12-29 | Cradlepoint, Inc. | Linking logical broadcast domains |
US10110417B1 (en) | 2012-07-06 | 2018-10-23 | Cradlepoint, Inc. | Private networks overlaid on cloud infrastructure |
US10601653B2 (en) | 2012-07-06 | 2020-03-24 | Cradlepoint, Inc. | Implicit traffic engineering |
US10177957B1 (en) | 2012-07-06 | 2019-01-08 | Cradlepoint, Inc. | Connecting a cloud network to the internet |
US11126720B2 (en) | 2012-09-26 | 2021-09-21 | Bluvector, Inc. | System and method for automated machine-learning, zero-day malware detection |
US9292688B2 (en) | 2012-09-26 | 2016-03-22 | Northrop Grumman Systems Corporation | System and method for automated machine-learning, zero-day malware detection |
KR101558054B1 (ko) * | 2012-11-19 | 2015-10-06 | 삼성에스디에스 주식회사 | 안티 멀웨어 시스템 및 안티 멀웨어 시스템에서의 패킷 처리 방법 |
US9477500B2 (en) | 2013-03-15 | 2016-10-25 | Avi Networks | Managing and controlling a distributed network service platform |
CN103428301B (zh) * | 2013-08-05 | 2016-08-10 | 北京神州绿盟信息安全科技股份有限公司 | 一种接口系统及其对数据包进行处理的方法 |
WO2016081346A1 (en) | 2014-11-21 | 2016-05-26 | Northrup Grumman Systems Corporation | System and method for network data characterization |
CN106453553A (zh) * | 2016-10-11 | 2017-02-22 | 深圳市百盛佳信息咨询有限公司 | 一种dms系统数据接口方法及系统 |
US11258760B1 (en) * | 2018-06-22 | 2022-02-22 | Vmware, Inc. | Stateful distributed web application firewall |
US10771318B1 (en) | 2018-10-24 | 2020-09-08 | Vmware, Inc | High availability on a distributed networking platform |
CN113132969B (zh) * | 2021-03-03 | 2024-04-12 | 翱捷科技股份有限公司 | 一种多卡手机实现多个虚拟独立电话系统的方法及装置 |
US11843630B2 (en) * | 2021-04-08 | 2023-12-12 | EMC IP Holding Company LLC | NANON support for antivirus jobs in clustered storage |
CN115733721A (zh) * | 2021-08-31 | 2023-03-03 | 台湾联想环球科技股份有限公司 | 网络管理设备、网络管理系统及网络管理方法 |
Family Cites Families (22)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5864683A (en) * | 1994-10-12 | 1999-01-26 | Secure Computing Corporartion | System for providing secure internetwork by connecting type enforcing secure computers to external network for limiting access to data based on user and process access rights |
US5752003A (en) | 1995-07-14 | 1998-05-12 | 3 Com Corporation | Architecture for managing traffic in a virtual LAN environment |
US5826029A (en) * | 1995-10-31 | 1998-10-20 | International Business Machines Corporation | Secured gateway interface |
US6085238A (en) * | 1996-04-23 | 2000-07-04 | Matsushita Electric Works, Ltd. | Virtual LAN system |
US6453345B2 (en) * | 1996-11-06 | 2002-09-17 | Datadirect Networks, Inc. | Network security and surveillance system |
US6633916B2 (en) | 1998-06-10 | 2003-10-14 | Hewlett-Packard Development Company, L.P. | Method and apparatus for virtual resource handling in a multi-processor computer system |
US6182226B1 (en) * | 1998-03-18 | 2001-01-30 | Secure Computing Corporation | System and method for controlling interactions between networks |
US6674756B1 (en) | 1999-02-23 | 2004-01-06 | Alcatel | Multi-service network switch with multiple virtual routers |
US6691146B1 (en) | 1999-05-19 | 2004-02-10 | International Business Machines Corporation | Logical partition manager and method |
US7171492B1 (en) * | 2000-02-24 | 2007-01-30 | Utstarcom, Inc. | Method and application programming interface for assigning multiple network addresses |
US7039720B2 (en) | 2001-01-25 | 2006-05-02 | Marconi Intellectual Property (Ringfence) , Inc. | Dense virtual router packet switching |
US7441017B2 (en) * | 2001-06-29 | 2008-10-21 | Thomas Lee Watson | System and method for router virtual networking |
US7200662B2 (en) * | 2001-07-06 | 2007-04-03 | Juniper Networks, Inc. | Integrated rule network management system |
US7711844B2 (en) * | 2002-08-15 | 2010-05-04 | Washington University Of St. Louis | TCP-splitter: reliable packet monitoring methods and apparatus for high speed networks |
WO2004071038A1 (ja) * | 2003-02-05 | 2004-08-19 | Nippon Telegraph And Telephone Corporation | ファイアウォール装置 |
JP2004297792A (ja) | 2003-03-13 | 2004-10-21 | Ricoh Co Ltd | 画像形成装置及び機能キー割り付け方法 |
US20040249973A1 (en) * | 2003-03-31 | 2004-12-09 | Alkhatib Hasan S. | Group agent |
US7246156B2 (en) * | 2003-06-09 | 2007-07-17 | Industrial Defender, Inc. | Method and computer program product for monitoring an industrial network |
US7631086B2 (en) * | 2003-09-30 | 2009-12-08 | Onlex Technologies, Inc. | Virtual dedicated connection system and method |
GB2418326B (en) * | 2004-09-17 | 2007-04-11 | Hewlett Packard Development Co | Network vitrualization |
US8166474B1 (en) * | 2005-09-19 | 2012-04-24 | Vmware, Inc. | System and methods for implementing network traffic management for virtual and physical machines |
US8234361B2 (en) | 2006-01-13 | 2012-07-31 | Fortinet, Inc. | Computerized system and method for handling network traffic |
-
2006
- 2006-01-13 US US11/331,031 patent/US8234361B2/en active Active
-
2007
- 2007-01-05 CN CN201510369654.6A patent/CN105187378A/zh active Pending
- 2007-01-05 CN CNA2007100001786A patent/CN101009683A/zh active Pending
-
2012
- 2012-07-26 US US13/558,822 patent/US8495200B2/en active Active
-
2013
- 2013-07-23 US US13/948,341 patent/US10038668B2/en active Active
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101345711B (zh) * | 2008-08-13 | 2012-08-08 | 成都市华为赛门铁克科技有限公司 | 一种报文处理方法、防火墙设备及网络安全系统 |
CN102289614A (zh) * | 2010-06-18 | 2011-12-21 | 三星Sds株式会社 | 反恶意软件系统及其操作方法 |
CN106656717A (zh) * | 2015-10-28 | 2017-05-10 | 华耀(中国)科技有限公司 | 一种划分网络域的方法 |
CN106656717B (zh) * | 2015-10-28 | 2019-06-28 | 华耀(中国)科技有限公司 | 一种划分网络域的方法 |
Also Published As
Publication number | Publication date |
---|---|
US20120291117A1 (en) | 2012-11-15 |
US20130305343A1 (en) | 2013-11-14 |
US10038668B2 (en) | 2018-07-31 |
CN105187378A (zh) | 2015-12-23 |
US8234361B2 (en) | 2012-07-31 |
US20070168547A1 (en) | 2007-07-19 |
US8495200B2 (en) | 2013-07-23 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN101009683A (zh) | 处理网络流量的计算机系统及方法 | |
US10999312B2 (en) | Systems and methods for protecting a service mesh from external attacks on exposed software vulnerabilities | |
CN109561108B (zh) | 一种基于策略的容器网络资源隔离控制方法 | |
CN103917967B (zh) | 用于配置中间盒的网络控制系统 | |
CN1972297B (zh) | 用于基于策略的内容过滤的计算机系统与方法 | |
EP3494682B1 (en) | Security-on-demand architecture | |
JP7373560B2 (ja) | 相乗的なdnsセキュリティ更新 | |
CN101099345B (zh) | 利用采样和试探在网络元件处解释应用消息的方法和设备 | |
EP3449598B1 (en) | A data driven orchestrated network with installation control using a light weight distributed controller | |
US8081640B2 (en) | Network system, network management server, and access filter reconfiguration method | |
CN106953837A (zh) | 具有威胁可视化的集成安全系统 | |
US11848854B1 (en) | Method, apparatus, and computer program product for dynamic security based grid routing | |
CN103946834A (zh) | 虚拟网络接口对象 | |
US10694402B2 (en) | Security orchestration and network immune system deployment framework | |
US20040059943A1 (en) | Embedded filtering policy manager using system-on-chip | |
WO2020106464A1 (en) | Method and apparatus to have entitlement follow the end device in network | |
CN101009704A (zh) | 一种处理高级网络内容的计算机系统与方法 | |
CN109617753B (zh) | 一种网络平台管理方法、系统及电子设备和存储介质 | |
CN112822037B (zh) | 一种安全资源池的流量编排方法及系统 | |
Gheisari et al. | A method for privacy-preserving in IoT-SDN integration environment | |
Costa et al. | Enhancing orchestration and infrastructure programmability in SDN with notoriety | |
Sayler et al. | Jobber: Automating {Inter-Tenant} Trust in the Cloud | |
KR101880828B1 (ko) | 네트워크 운영 지원 체제(noss)를 기반으로 하는 가상 네트워크 엔티티(vne)를 위한 방법 및 시스템 | |
CN113572700A (zh) | 流量检测方法、系统、装置及计算机可读存储介质 | |
CN100373800C (zh) | 可继承主接口业务特性的备份方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
ASS | Succession or assignment of patent right |
Owner name: FORTINET INC. Free format text: FORMER OWNER: FORTINET INFORMATION TECHNOLOGY (BEIJING) CO., LTD. Effective date: 20090925 |
|
C41 | Transfer of patent application or patent right or utility model | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20090925 Address after: California, USA Applicant after: Fortinet, Inc. Address before: Room 7, digital media building, No. 507 information road, Beijing, Haidian District, China: 100085 Applicant before: Fortinet,Inc. |
|
C12 | Rejection of a patent application after its publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20070801 |