WO2005109788A3 - Programmable packet parsing processor - Google Patents

Programmable packet parsing processor Download PDF

Info

Publication number
WO2005109788A3
WO2005109788A3 PCT/US2005/013191 US2005013191W WO2005109788A3 WO 2005109788 A3 WO2005109788 A3 WO 2005109788A3 US 2005013191 W US2005013191 W US 2005013191W WO 2005109788 A3 WO2005109788 A3 WO 2005109788A3
Authority
WO
WIPO (PCT)
Prior art keywords
parsing
processor
instructions
state
unit
Prior art date
Application number
PCT/US2005/013191
Other languages
French (fr)
Other versions
WO2005109788A2 (en
Inventor
Rina Panigrahy
Jacqueline Liu
Daniel Yu-Kuwong Ng
Sanjay Jain
Nagaraj Bagepalli
Abhijit Patra
Original Assignee
Cisco Tech Inc
Rina Panigrahy
Jacqueline Liu
Daniel Yu-Kuwong Ng
Sanjay Jain
Nagaraj Bagepalli
Abhijit Patra
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US10/832,796 external-priority patent/US7586851B2/en
Application filed by Cisco Tech Inc, Rina Panigrahy, Jacqueline Liu, Daniel Yu-Kuwong Ng, Sanjay Jain, Nagaraj Bagepalli, Abhijit Patra filed Critical Cisco Tech Inc
Priority to CN200580011925.5A priority Critical patent/CN101095310B/en
Priority to EP05745706A priority patent/EP1757039A4/en
Publication of WO2005109788A2 publication Critical patent/WO2005109788A2/en
Publication of WO2005109788A3 publication Critical patent/WO2005109788A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/18Protocol analysers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/60Software-defined switches
    • H04L49/608ATM switches adapted to switch variable length packets, e.g. IP packets
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0254Stateful filtering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/60Network streaming of media packets
    • H04L65/75Media network packet handling
    • H04L65/765Media network packet handling intermediate
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/54Store-and-forward switching systems 
    • H04L12/56Packet switching systems
    • H04L12/5601Transfer mode dependent, e.g. ATM
    • H04L2012/5638Services, e.g. multimedia, GOS, QOS
    • H04L2012/5646Cell characteristics, e.g. loss, delay, jitter, sequence integrity
    • H04L2012/5652Cell construction, e.g. including header, packetisation, depacketisation, assembly, reassembly
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/30Peripheral units, e.g. input or output ports
    • H04L49/3072Packet splitting

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Multimedia (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention provides a packet processing device (100) and method. A parsing processor (120) provides instruction-driven content inspection of network packets at 10-Gbps and above with a parsing engine that executes parsing instructions. A flow state unit maintains statefulness of packet flows to allow content inspection across several related network packets. A state-graph unit traces state-graph nodes to keyword indications and/or parsing instructions. The parsing instructions can be derived from a high-level application to emulate user-friendly parsing logic. The parsing processor (120) sends parsed packets to a network processor unit (130) for further processing.
PCT/US2005/013191 2004-04-26 2005-04-19 Programmable packet parsing processor WO2005109788A2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN200580011925.5A CN101095310B (en) 2004-04-26 2005-04-19 Packet parsing processor and the method for parsing grouping in the processor
EP05745706A EP1757039A4 (en) 2004-04-26 2005-04-19 Programmable packet parsing processor

Applications Claiming Priority (8)

Application Number Priority Date Filing Date Title
US10/832,796 2004-04-26
US10/832,796 US7586851B2 (en) 2004-04-26 2004-04-26 Programmable packet parsing processor
US10/927,602 US7957378B2 (en) 2004-04-26 2004-08-25 Stateful flow of network packets within a packet parsing processor
US10/927,290 US7623468B2 (en) 2004-04-26 2004-08-25 Programmable packet parsing processor
US10/927,290 2004-08-25
US10/927,175 2004-08-25
US10/927,602 2004-08-25
US10/927,175 US7619983B2 (en) 2004-04-26 2004-08-25 Parse state encoding for a packet parsing processor

Publications (2)

Publication Number Publication Date
WO2005109788A2 WO2005109788A2 (en) 2005-11-17
WO2005109788A3 true WO2005109788A3 (en) 2007-02-22

Family

ID=35320932

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2005/013191 WO2005109788A2 (en) 2004-04-26 2005-04-19 Programmable packet parsing processor

Country Status (2)

Country Link
EP (1) EP1757039A4 (en)
WO (1) WO2005109788A2 (en)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA2635969C (en) * 2006-01-05 2014-09-30 Wireless Edge Canada Inc. Systems and methods for improved network based content inspection
EP2424169B1 (en) 2010-08-31 2014-03-19 Alcatel Lucent Method of providing MMoIP communication device
US9282508B2 (en) 2010-12-29 2016-03-08 Telefonaktiebolaget L M Ericsson (Publ) Rate optimized power consumption in micro wave radio links
US20120173702A1 (en) * 2010-12-30 2012-07-05 Telefonaktiebolaget L M Ericsson (Publ) Automatic Signature Generation For Application Recognition And User Tracking Over Heterogeneous Networks
US9258273B2 (en) * 2013-10-03 2016-02-09 Mcafee, Inc. Duplicating packets efficiently within a network security appliance
JP6306441B2 (en) * 2014-06-09 2018-04-04 日本電信電話株式会社 Packet analysis apparatus and packet analysis method

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5748905A (en) * 1996-08-30 1998-05-05 Fujitsu Network Communications, Inc. Frame classification using classification keys
US6952756B1 (en) * 2001-05-08 2005-10-04 Lewiz Communications Method and apparatus for speculative loading of a memory

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6356951B1 (en) * 1999-03-01 2002-03-12 Sun Microsystems, Inc. System for parsing a packet for conformity with a predetermined protocol using mask and comparison values included in a parsing instruction
US20030185220A1 (en) * 2002-03-27 2003-10-02 Moshe Valenci Dynamically loading parsing capabilities
WO2004025920A1 (en) 2002-09-12 2004-03-25 International Business Machines Corporation A method and apparatus for deep packet processing

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5748905A (en) * 1996-08-30 1998-05-05 Fujitsu Network Communications, Inc. Frame classification using classification keys
US6952756B1 (en) * 2001-05-08 2005-10-04 Lewiz Communications Method and apparatus for speculative loading of a memory

Also Published As

Publication number Publication date
EP1757039A2 (en) 2007-02-28
EP1757039A4 (en) 2013-01-02
WO2005109788A2 (en) 2005-11-17

Similar Documents

Publication Publication Date Title
WO2005109788A3 (en) Programmable packet parsing processor
WO2008024818A3 (en) Apparatus and method of controlled delay packet forwarding
WO2008005907A3 (en) Sidestream gas sampling system with closed sample circuit
BRPI0502509A (en) Method and apparatus for managing packet loss over a wireless network
WO2006063003A3 (en) Network and application attack protection based on application layer message inspection
MY141638A (en) Tail fairing designed with features for suppression of vortices addition between fairings, apparatus incorporating such fairings, methods of making and using such fairings and apparatus, and methods of installing such fairings
WO2009116020A3 (en) In-band dpi application awareness propagation enhancements
WO2005119530A3 (en) Method and apparatus for fixing hold time violations in a circuit design
WO2006068969A3 (en) Method and device for publishing cross-network user behavioral data
WO2007030917A8 (en) Packet flow bifurcation and analysis
WO2007140364A3 (en) Method for scoring changes to a webpage
DK2290109T3 (en) Development of mutations useful for attenuation of dengue viruses as well as chimeric dengue viruses
EP1933506A4 (en) A method and apparatus for realizing the interworking of oam function between the ethernet and the mpls network
WO2004023734A3 (en) Fault tolerant network routing
MY144831A (en) A method of configuring a communication device
WO2008109848A3 (en) Pseudo-agent
WO2003084465A3 (en) Modeling biological systems
TW200642729A (en) Illegal conduct prevention method, game device, and illegal conduct prevention program
WO2006057749A3 (en) System for scrubbing alkyl halides from gases
FR2877046B1 (en) TURBOMACHINE WITH DECOUPLING DEVICE AND FUSE SCREW FOR TURBOMACHINE DECOUPLING DEVICE
WO2006085028A3 (en) Test flight on-board processing system and method
WO2007046595A3 (en) Method for generating/changing transport connection identifier in portable internet network and portable subscriber station therefor
ATE495621T1 (en) IMPROVEMENTS TO MONITORING IN AN INTERNET PROTOCOL (IP) DOMAIN
FR2882441B1 (en) DEVICE FOR COUNTERMEASING AND CONTINUING THREAT WITH OPTICAL DELAY DEVICE
DE502004012376D1 (en) DEVICE AND COUPLING DEVICE, SUCH AS SECURE SWITCH, FOR SECURING DATA ACCESS

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 200580011925.5

Country of ref document: CN

NENP Non-entry into the national phase

Ref country code: DE

WWW Wipo information: withdrawn in national office

Ref document number: DE

REEP Request for entry into the european phase

Ref document number: 2005745706

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2005745706

Country of ref document: EP

WWP Wipo information: published in national office

Ref document number: 2005745706

Country of ref document: EP