Network device having service card for dynamic flow capture and monitoring of packet flows
    1.
    发明授权
    Network device having service card for dynamic flow capture and monitoring of packet flows 有权
    网络设备具有用于动态流捕获和监视分组流的业务卡

    公开(公告)号:US07747737B1

    公开(公告)日:2010-06-29

    申请号:US11517232

    申请日:2006-09-07

    IPC分类号: G06F15/173

    摘要: A network device comprises a service card (e.g., a dynamic flow capture (DFC) service card) executing a communication protocol to receive, from one or more control sources, flow capture information specifying at least one destination and criteria for matching one or more packet flows. The network device includes a network interface card to receive a packet from a network, a packet replication module to replicate the packet, and a control unit to provide the replicated packet from the interface card to the DFC service card. The network device includes a filter cache that caches flow capture information recently received from the CSs. The network device may provide real-time intercept and relaying of specified network-based communications. Moreover, the techniques described herein allow CSs to tap packet flows with little delay after specifying flow capture information, e.g., within 50 milliseconds, even under high-volume networks.

    摘要翻译: 网络设备包括执行通信协议的服务卡(例如,动态流捕获(DFC)服务卡),以从一个或多个控制源接收指定至少一个目的地的流捕获信息和用于匹配一个或多个分组的标准 流动。 网络设备包括从网络接收分组的网络接口卡,用于复制分组的分组复制模块,以及将接收卡的复制分组提供给DFC服务卡的控制单元。 网络设备包括高速缓存从CS接收到的流捕获信息的过滤器高速缓存。 网络设备可以提供指定的基于网络的通信的实时拦截和中继。 此外,本文描述的技术允许CS在指定流捕获信息(例如,在50毫秒内)甚至在高容量网络下,稍微延迟地敲击分组流。

    FORWARDING PACKETS USING NEXT-HOP INFORMATION
    2.
    发明申请
    FORWARDING PACKETS USING NEXT-HOP INFORMATION 审中-公开
    使用NEXT-HOP信息转发包

    公开(公告)号:US20100124229A1

    公开(公告)日:2010-05-20

    申请号:US12693891

    申请日:2010-01-26

    IPC分类号: H04L12/56

    CPC分类号: H04L45/00 H04L45/38 H04L45/54

    摘要: A method may include receiving a packet associated with a flow of packets, the packet including a destination address; selecting one of a plurality of memory banks, the selected memory bank being associated with the flow of packets, wherein each of the plurality of memory banks stores the same next-hop information for forwarding the packet to the destination address; accessing, in the selected memory bank, the next-hop information for forwarding the packet to the destination address; and forwarding the packet to the destination address based on the next-hop information.

    摘要翻译: 方法可以包括接收与分组流相关联的分组,所述分组包括目的地地址; 选择多个存储体之一,所选择的存储体与分组流相关联,其中多个存储体中的每一个存储用于将分组转发到目的地地址的相同的下一跳信息; 在所选择的存储体中访问用于将分组转发到目的地地址的下一跳信息; 并根据下一跳信息将报文转发到目的地址。

    Network device having service card for lawful intercept and monitoring of packet flows
    3.
    发明授权
    Network device having service card for lawful intercept and monitoring of packet flows 有权
    网络设备具有合法拦截和监控分组流的业务卡

    公开(公告)号:US07809827B1

    公开(公告)日:2010-10-05

    申请号:US11516878

    申请日:2006-09-07

    IPC分类号: G06F15/173

    摘要: A network device comprises a service card (e.g., a lawful intercept (LI) service card) executing a communication protocol to receive, from one or more sources (e.g., law enforcement agents), intercept information specifying at least one destination and criteria for matching one or more packet flows. The network device further includes a network interface card to receive a packet from a network, and a control unit to provide the packet from the interface card to the LI service card. The LI service card executes a flow match detection module that, when the packet matches the criteria of the intercept information, forwards the packet to the destination specified by the intercept information. The network device may provide real-time intercept and relaying of specified network-based communications. Moreover, the techniques described herein allow LEAs to tap packet flows with little delay after specifying intercept information, e.g., within 50 milliseconds, even under high-volume networks.

    摘要翻译: 网络设备包括执行通信协议的服务卡(例如合法拦截(LI)服务卡),以从一个或多个来源(例如执法人员)接收指定至少一个目的地的拦截信息和用于匹配的标准 一个或多个分组流。 网络设备还包括从网络接收分组的网络接口卡,以及将接口卡向L1服务卡提供分组的控制单元。 LI服务卡执行流匹配检测模块,当分组符合拦截信息的标准时,将分组转发到由拦截信息指定的目的地。 网络设备可以提供指定的基于网络的通信的实时拦截和中继。 此外,即使在高容量网络下,本文所描述的技术允许LEA在指定拦截信息(例如,在50毫秒内)之后稍微延迟地敲击分组流。

    Member link status change handling for aggregate interfaces
    4.
    发明授权
    Member link status change handling for aggregate interfaces 有权
    聚合接口的成员链路状态变化处理

    公开(公告)号:US08774179B1

    公开(公告)日:2014-07-08

    申请号:US12016740

    申请日:2008-01-18

    摘要: A method is provided for handling member link state changes in an aggregate interface. An aggregate interface may be established to include a number of member links. A mask may be associated with the aggregate interface, where the mask identifies a current state of each member link in the aggregate interface. The mask is retrieved and used to identify active links in the aggregate interface when packets are received for forwarding on the aggregate interface.

    摘要翻译: 提供了一种处理聚合接口中成员链路状态变化的方法。 可以建立聚合接口以包括多个成员链路。 掩码可以与聚合接口相关联,其中掩码标识聚合接口中每个成员链路的当前状态。 检索该掩码并用于标识聚合接口中的活动链路,当收到数据包以在聚合接口上进行转发时。

    Network device having service card for intercept and monitoring of packet flows
    5.
    发明授权
    Network device having service card for intercept and monitoring of packet flows 有权
    具有用于拦截和监视分组流的业务卡的网络设备

    公开(公告)号:US08037175B1

    公开(公告)日:2011-10-11

    申请号:US12822904

    申请日:2010-06-24

    IPC分类号: G06F15/173

    摘要: A network device comprises a service card (e.g., a dynamic flow capture (DFC) service card) executing a communication protocol to receive, from one or more control sources, flow capture information specifying at least one destination and criteria for matching one or more packet flows. The network device includes a network interface card to receive a packet from a network, a packet replication module to replicate the packet, and a control unit to provide the replicated packet from the interface card to the DFC service card. The network device includes a filter cache that caches flow capture information recently received from the CSs. The network device may provide real-time intercept and relaying of specified network-based communications. Moreover, the techniques described herein allow CSs to tap packet flows with little delay after specifying flow capture information, e.g., within 50 milliseconds, even under high-volume networks.

    摘要翻译: 网络设备包括执行通信协议的服务卡(例如,动态流捕获(DFC)服务卡),以从一个或多个控制源接收指定至少一个目的地的流捕获信息和用于匹配一个或多个分组的标准 流动。 网络设备包括从网络接收分组的网络接口卡,用于复制分组的分组复制模块,以及将接收卡的复制分组提供给DFC服务卡的控制单元。 网络设备包括高速缓存从CS接收到的流捕获信息的过滤器高速缓存。 网络设备可以提供指定的基于网络的通信的实时拦截和中继。 此外,本文描述的技术允许CS在指定流捕获信息(例如,在50毫秒内)甚至在高容量网络下,稍微延迟地敲击分组流。

    Forwarding packets using next-hop information
    6.
    发明授权
    Forwarding packets using next-hop information 有权
    使用下一跳信息转发数据包

    公开(公告)号:US07680117B1

    公开(公告)日:2010-03-16

    申请号:US11694738

    申请日:2007-03-30

    IPC分类号: H04L12/28 H04L12/56

    CPC分类号: H04L45/00 H04L45/38 H04L45/54

    摘要: A method may include receiving a packet associated with a flow of packets, the packet including a destination address; selecting one of a plurality of memory banks, the selected memory bank being associated with the flow of packets, wherein each of the plurality of memory banks stores the same next-hop information for forwarding the packet to the destination address; accessing, in the selected memory bank, the next-hop information for forwarding the packet to the destination address; and forwarding the packet to the destination address based on the next-hop information.

    摘要翻译: 方法可以包括接收与分组流相关联的分组,所述分组包括目的地地址; 选择多个存储体之一,所选择的存储体与分组流相关联,其中多个存储体中的每一个存储用于将分组转发到目的地地址的相同的下一跳信息; 在所选择的存储体中访问用于将分组转发到目的地地址的下一跳信息; 并根据下一跳信息将报文转发到目的地址。