公开(公告)号：US08621105B2

公开(公告)日：2013-12-31

申请号：US13093703

申请日：2011-04-25

申请人： Josephine Suganthi ,  Junxiao He ,  Sergey Verzunov ,  Anil Shetty ,  Charu Venkatraman

发明人： Josephine Suganthi ,  Junxiao He ,  Sergey Verzunov ,  Anil Shetty ,  Charu Venkatraman

IPC分类号： G06F15/173 ,  G06F15/16

CPC分类号： H04L63/0272

摘要： Methods for using a client agent to route client requests among a plurality of appliances using transport layer information include the steps of: establishing, by a client agent executing on a client, a first transport layer connection with a first appliance of a plurality of appliances, the first appliance providing access to one or more servers; establishing, by a client agent executing on the client, a second transport layer connection with a second appliance of a plurality of appliances, the second appliance providing access to one or more servers; intercepting, by the client agent, a packet transmitted by the client; selecting, by the client agent, one of the connections to transmit the intercepted packet based on a characteristic of at least one of: the transport layer connections, the plurality of appliances, or the servers; and transmitting the intercepted packet via the selected connection.

摘要翻译： 使用客户端代理使用传输层信息在多个设备之间路由客户端请求的方法包括以下步骤：由在客户端上执行的客户端代理建立与多个设备的第一设备的第一传输层连接， 第一个设备提供对一个或多个服务器的访问; 由在客户端上执行的客户端代理建立与多个设备的第二设备的第二传输层连接，所述第二设备提供对一个或多个服务器的访问; 由客户端代理拦截客户端发送的数据包; 基于以下至少一个的特征，由所述客户端代理选择所述连接之一来发送所截取的分组：传输层连接，所述多个设备或所述服务器; 并通过所选择的连接发送截取的分组。

公开(公告)号：US20130046876A1

公开(公告)日：2013-02-21

申请号：US13589796

申请日：2012-08-20

申请人： Raghav Somanahalli Narayana ,  Josephine Suganthi ,  Murali Raja ,  Ravi Kondamuru

发明人： Raghav Somanahalli Narayana ,  Josephine Suganthi ,  Murali Raja ,  Ravi Kondamuru

IPC分类号： G06F15/173

CPC分类号： H04L67/1027 ,  H04L67/1002 ,  H04L67/1029 ,  H04L67/14 ,  H04L67/142 ,  H04L67/28 ,  H04L67/2814 ,  H04L67/2885

摘要： The present invention provides maintains site persistence in a hierarchical Global Server Load Balancing (GSLB) deployment. Via configuration of GSLB services locally and remotely on each of the GSLB appliances and LB appliances at a site, a site appliance identifies and associates requests from the GSLB with the site. Furthermore, the site appliance may receive a GSLB cookie with the client request and confirms the request is from the expected GSLB in the site hierarchy. When the load balancers receives a response from a server, the appliance may include the GSLB cookie with the response back to the client. The appliance may also include an LB cookie to identify the server selected by the LB. When the client sends another request, the request may include the GSLB and LB cookie.

摘要翻译： 本发明在分级全局服务器负载平衡（GSLB）部署中提供维护站点持久性。 通过在站点上的GSLB设备和LB设备的本地和远程配置GSLB服务，站点设备会将GSLB的请求与站点相关联。 此外，站点设备可以接收具有客户端请求的GSLB cookie，并确认请求来自站点层次结构中的预期GSLB。 当负载平衡器收到来自服务器的响应时，设备可以将具有响应的GSLB cookie包括回客户端。 该设备还可以包括LB cookie以识别由LB选择的服务器。 当客户端发送另一个请求时，请求可能包括GSLB和LB cookie。

公开(公告)号：US20120072588A1

公开(公告)日：2012-03-22

申请号：US13302880

申请日：2011-11-22

申请人： Sandeep Kamath ,  Josephine Suganthi ,  Sergey Verzunov ,  Murali Raja ,  Anil Shetty

发明人： Sandeep Kamath ,  Josephine Suganthi ,  Sergey Verzunov ,  Murali Raja ,  Anil Shetty

IPC分类号： G06F15/173

CPC分类号： G06F9/505 ,  H04L67/1002 ,  H04L67/1008 ,  H04L67/101 ,  H04L67/1012 ,  H04L67/1029 ,  H04L67/1034

摘要： The present invention provides methods and systems for performing load balancing via a plurality of virtual servers upon a failover using metrics from a backup virtual server. The methods and systems described herein provide systems and methods for an appliance detecting that a first virtual server of a plurality of virtual servers having one or more backup virtual servers load balanced by an appliance is not available, identifying at least a first backup virtual server of a one or more backup virtual servers of the first virtual server is available, maintaining a status of the first virtual server as available in response to the identification, obtaining one or more metrics from the first backup virtual server of a one or more backup virtual servers, and determining the load across the plurality of virtual servers using the metrics obtained from the first backup virtual server associated with the first virtual server.

摘要翻译： 本发明提供了使用来自备份虚拟服务器的度量的故障转移时通过多个虚拟服务器执行负载平衡的方法和系统。 本文所述的方法和系统提供用于设备的系统和方法，该系统和方法检测具有由设备负载平衡的一个或多个备份虚拟服务器的多个虚拟服务器的第一虚拟服务器不可用，至少识别至少第一备份虚拟服务器 第一虚拟服务器的一个或多个备份虚拟服务器可用，响应于该标识将第一虚拟服务器的状态维持为可用，从一个或多个备份虚拟服务器的第一备份虚拟服务器获取一个或多个度量 以及使用从与所述第一虚拟服务器相关联的所述第一备份虚拟服务器获得的度量来确定所述多个虚拟服务器之间的负载。

公开(公告)号：US08077622B2

公开(公告)日：2011-12-13

申请号：US11833777

申请日：2007-08-03

申请人： Ravi Kondamuru ,  Henk Bots ,  Josephine Suganthi ,  Anil Shetty

发明人： Ravi Kondamuru ,  Henk Bots ,  Josephine Suganthi ,  Anil Shetty

IPC分类号： H04L1/00

CPC分类号： H04L67/1008 ,  H04L67/1002 ,  H04L67/1012 ,  H04L67/1017

摘要： Systems and methods for load balancing services based on fewest connections by decreasing granularity of service selection as a number of fewest connections serviced by the services increases may include establishing, by an appliance, a set of identifiers corresponding to a number of connections serviced by a service, the set comprising a first plurality of identifiers each identifying a predetermined number of connections and a second plurality of identifiers each identifying a predetermined range of numbers of connections. The appliance assigns, to each service servicing connections, an identifier corresponding to the number of connections serviced by the service, at least one of the identifiers selected from the second plurality of identifiers. The appliance receives a request for a service, and forwards the request to a service assigned to the identifier corresponding to a fewest number of connections with at least one service assigned to the identifier.

摘要翻译： 基于最少连接的负载平衡服务的系统和方法通过将服务选择的粒度降低为由服务增加服务的最少的连接数量可以包括由设备建立与服务服务的多个连接数相对应的一组标识符 该集合包括每个识别预定数量的连接的第一多个标识符和每个识别连接数量的预定范围的第二多个标识符。 设备向每个服务服务连接分配与由服务服务的连接数量相对应的标识符，从第二多个标识符中选择的至少一个标识符。 设备接收对服务的请求，并且将该请求转发到分配给与分配给标识符的至少一个服务的与最少数量的连接相对应的标识符的服务。

公开(公告)号：US08065559B2

公开(公告)日：2011-11-22

申请号：US12128978

申请日：2008-05-29

申请人： Sandeep Kamath ,  Josephine Suganthi ,  Sergey Verzunov ,  Murali Raja ,  Anil Shetty

发明人： Sandeep Kamath ,  Josephine Suganthi ,  Sergey Verzunov ,  Murali Raja ,  Anil Shetty

IPC分类号： G06F11/00

CPC分类号： G06F9/505 ,  H04L67/1002 ,  H04L67/1008 ,  H04L67/101 ,  H04L67/1012 ,  H04L67/1029 ,  H04L67/1034

摘要： The present invention provides methods and systems for performing load balancing via a plurality of virtual servers upon a failover using metrics from a backup virtual server. The methods and systems described herein provide systems and methods for an appliance detecting that a first virtual server of a plurality of virtual servers having one or more backup virtual servers load balanced by an appliance is not available, identifying at least a first backup virtual server of a one or more backup virtual servers of the first virtual server is available, maintaining a status of the first virtual server as available in response to the identification, obtaining one or more metrics from the first backup virtual server of a one or more backup virtual servers, and determining the load across the plurality of virtual servers using the metrics obtained from the first backup virtual server associated with the first virtual server.

摘要翻译： 本发明提供了使用来自备份虚拟服务器的度量的故障转移时通过多个虚拟服务器执行负载平衡的方法和系统。 本文所述的方法和系统提供用于设备的系统和方法，该系统和方法检测具有由设备负载平衡的一个或多个备份虚拟服务器的多个虚拟服务器的第一虚拟服务器不可用，至少识别至少第一备份虚拟服务器 第一虚拟服务器的一个或多个备份虚拟服务器可用，响应于该标识将第一虚拟服务器的状态维持为可用，从一个或多个备份虚拟服务器的第一备份虚拟服务器获取一个或多个度量 以及使用从与所述第一虚拟服务器相关联的所述第一备份虚拟服务器获得的度量来确定所述多个虚拟服务器之间的负载。

公开(公告)号：US07926116B2

公开(公告)日：2011-04-12

申请号：US12608753

申请日：2009-10-29

申请人： Sandeep Kamath ,  Josephine Suganthi ,  Anil Shetty ,  Sergey Verzunov ,  Murali Raja

发明人： Sandeep Kamath ,  Josephine Suganthi ,  Anil Shetty ,  Sergey Verzunov ,  Murali Raja

IPC分类号： H04L29/00

CPC分类号： H04L43/08 ,  H04L43/0805 ,  H04L47/10 ,  H04L67/1002 ,  H04L67/1008 ,  H04L67/1012 ,  H04L67/1029

摘要： A method for enabling decentralized dynamic load balancing among a plurality of appliances providing access to a plurality of sites, each site comprising a local area network and at least one server includes: determining, by a first appliance, a first number of services currently available for access via a local area network connected to the first appliance; receiving, by the first appliance from a second appliance, a communication indicating a second number of services currently available for access via a local area network connected to the second appliance; receiving, by the first appliance, a plurality of requests to connect to a service; determining, by the first appliance, a weight to be assigned to the second appliance, wherein the determination is responsive to the second number; and forwarding, by the first appliance to the second appliance, a subset of the plurality of requests, wherein the number of requests comprising the subset is determined in response to the determined weight. Corresponding systems are also described.

摘要翻译： 一种用于在提供对多个站点的访问的多个设备之间实现分散式动态负载平衡的方法，每个站点包括局域网和至少一个服务器包括：由第一设备确定当前可用于 通过连接到第一设备的局域网访问; 由第一设备从第二设备接收指示当前可用于经由连接到第二设备的局域网访问的第二数量的服务的通信; 由所述第一设备接收多个连接到服务的请求; 由所述第一设备确定要分配给所述第二设备的重量，其中所述确定响应于所述第二数量; 以及由所述第一设备向所述第二设备转发所述多个请求的子集，其中响应于所确定的权重来确定包括所述子集的请求的数量。 还描述了相应的系统。

公开(公告)号：US20100322250A1

公开(公告)日：2010-12-23

申请号：US12489201

申请日：2009-06-22

申请人： Anil Shetty ,  Josephine Suganthi ,  Prakash Khemani

发明人： Anil Shetty ,  Josephine Suganthi ,  Prakash Khemani

IPC分类号： H04L12/56

CPC分类号： H04L41/50 ,  G06F9/505

摘要： The present invention is directed towards systems and methods for using a distributed hash table to maintain the same configuration and resource persistency across a plurality of cores in a multi-core system. The distributed hash table includes a plurality of partitions, each partition being owned by a respective core of the multi-core system. A core may establish resources in the partition it owns. A core may request other cores to establish resources in the partitions they own and send resource information to the core. The core may locally cache the resource information.

摘要翻译： 本发明涉及用于使用分布式哈希表在多核系统中跨多个核心维持相同配置和资源持久性的系统和方法。 分布式散列表包括多个分区，每个分区由多核系统的相应核心拥有。 核心可以在其拥有的分区中建立资源。 核心可以请求其他核心在其拥有的分区中建立资源并将资源信息发送到核心。 核心可以在本地缓存资源信息。

公开(公告)号：US20090300407A1

公开(公告)日：2009-12-03

申请号：US12128978

申请日：2008-05-29

申请人： Sandeep Kamath ,  Josephine Suganthi ,  Sergey Verzunov ,  Murali Raja ,  Anil Shetty

发明人： Sandeep Kamath ,  Josephine Suganthi ,  Sergey Verzunov ,  Murali Raja ,  Anil Shetty

IPC分类号： G06F11/20

CPC分类号： G06F9/505 ,  H04L67/1002 ,  H04L67/1008 ,  H04L67/101 ,  H04L67/1012 ,  H04L67/1029 ,  H04L67/1034

摘要： The present invention provides methods and systems for performing load balancing via a plurality of virtual servers upon a failover using metrics from a backup virtual server. The methods and systems described herein provide systems and methods for an appliance detecting that a first virtual server of a plurality of virtual servers having one or more backup virtual servers load balanced by an appliance is not available, identifying at least a first backup virtual server of a one or more backup virtual servers of the first virtual server is available, maintaining a status of the first virtual server as available in response to the identification, obtaining one or more metrics from the first backup virtual server of a one or more backup virtual servers, and determining the load across the plurality of virtual servers using the metrics obtained from the first backup virtual server associated with the first virtual server.

摘要翻译： 本发明提供了使用来自备份虚拟服务器的度量的故障转移时通过多个虚拟服务器执行负载平衡的方法和系统。 本文所述的方法和系统提供用于设备的系统和方法，该系统和方法检测具有由设备负载平衡的一个或多个备份虚拟服务器的多个虚拟服务器的第一虚拟服务器不可用，至少识别至少第一备份虚拟服务器 第一虚拟服务器的一个或多个备份虚拟服务器可用，响应于该标识将第一虚拟服务器的状态维持为可用，从一个或多个备份虚拟服务器的第一备份虚拟服务器获取一个或多个度量 以及使用从与所述第一虚拟服务器相关联的所述第一备份虚拟服务器获得的度量来确定所述多个虚拟服务器之间的负载。

公开(公告)号：US20080046616A1

公开(公告)日：2008-02-21

申请号：US11465943

申请日：2006-08-21

申请人： Sergey Verzunov ,  Charu Venkatraman ,  Junxiao He ,  Shashi Nanjundaswamy ,  Bharath Bhushan ,  Saravana Annamalaisami ,  Josephine Suganthi ,  Anil Shetty

发明人： Sergey Verzunov ,  Charu Venkatraman ,  Junxiao He ,  Shashi Nanjundaswamy ,  Bharath Bhushan ,  Saravana Annamalaisami ,  Josephine Suganthi ,  Anil Shetty

IPC分类号： G06F13/12

CPC分类号： H04L69/04 ,  H04L63/0272 ,  H04L63/166 ,  H04L67/28 ,  H04W28/06 ,  H04W80/06

摘要： A method for compressing a stream of application layer network traffic communicated over a transport layer connection of a virtual private network connection between a client and a server using an appliance. The appliance intercepts one or more transport layer packets of a stream of application network traffic communicated via a transport layer connection of a virtual private network connection between a client and a server. The appliance accumulates data from a payload of the intercepted transport layer packets, determines data accumulated for transmission should be compressed based on one or more compression trigger, and compresses the accumulated data into a self-contained compression block for transmission.

摘要翻译： 一种用于压缩通过使用设备的客户端和服务器之间的虚拟专用网络连接的传输层连接上传送的应用层网络流量流的方法。 设备拦截通过客户端和服务器之间的虚拟专用网络连接的传输层连接传送的应用网络业务流的一个或多个传输层分组。 设备从被拦截的传输层分组的有效载荷中积累数据，确定用于传输的数据被压缩，并根据一个或多个压缩触发进行压缩，并将累积的数据压缩为独立的压缩块进行传输。

公开(公告)号：US20080043749A1

公开(公告)日：2008-02-21

申请号：US11465958

申请日：2006-08-21

申请人： Josephine Suganthi ,  Shashi Nanjundaswamy

发明人： Josephine Suganthi ,  Shashi Nanjundaswamy

IPC分类号： H04L12/56

CPC分类号： H04L12/4641 ,  H04L29/12207 ,  H04L61/20

摘要： The intranet IP address management solution of the appliance and/or client described herein provides an environment for efficiently assigning, managing and querying virtual private network addresses, referred to as intranet IP (IIP) addresses of virtual private network users, such as a multitude of SSL VPN users on an enterprise network. The appliance provides techniques and policies for assigning previously assigned virtual private network addresses of a user to subsequent sessions of the user as the user logs in multiple times or roams between access points. This technique is referred to IIP stickiness as the appliance attempts to provide the same IIP address to a roaming VPN user. The appliance also provides a configurable user domain naming policy so that one can ping or query the virtual private network address of a user by an easily referenceable host name identifying the user. The appliance and/or client agent also provide techniques to allow applications to seamlessly and transparently communicate on the virtual private network using the virtual private network address of the user or client on the private network.

摘要翻译： 本文描述的设备和/或客户端的Intranet IP地址管理解决方案提供了一种用于有效地分配，管理和查询虚拟专用网地址的环境，被称为虚拟专用网络用户的内部网IP（IIP）地址，诸如大量 企业网络上的SSL VPN用户。 该设备提供用于在用户多次登录或者在接入点之间漫游时将用户先前分配的虚拟专用网地址分配给用户的后续会话的技术和策略。 该技术被称为IIP粘性，因为设备试图向漫游VPN用户提供相同的IIP地址。 该设备还提供可配置的用户域命名策略，以便可以通过标识用户的易于引用的主机名来ping或查询用户的虚拟专用网络地址。 设备和/或客户端代理还提供技术，以允许应用程序使用专用网络上的用户或客户端的虚拟专用网地址在虚拟专用网络上无缝和透明地通信。