-
公开(公告)号:US20230269228A1
公开(公告)日:2023-08-24
申请号:US17585204
申请日:2022-01-26
Applicant: Cisco Technology, Inc.
Inventor: Kyle Andrew Donald Mestery , Mark A. Bakke , William Mark Townsley
CPC classification number: H04L63/0263 , H04L45/38 , H04L45/42 , H04L63/0236
Abstract: The present disclosure is directed to managing network traffic in a cloud-based secure access service. In one aspect, a method includes determining, by a controller of a cloud-based secure access service, that data packets from a user device should be dropped, a plurality of user devices, including the user device, being remotely connected to the controller for access to the cloud-based secure access service; determining, by the controller, a type of remote connection through which the user device is connected to the controller, each type of remote connection having a corresponding communication prototype; and transmitting a message, by the controller, to the user device, over a control protocol corresponding to the type of remote connection through which the user device is connected to the controller, the message providing a signal to the user device to drop packets at the user device prior to sending the packets to the controller.
-
公开(公告)号:US12132734B2
公开(公告)日:2024-10-29
申请号:US17678885
申请日:2022-02-23
Applicant: Cisco Technology, Inc.
Inventor: Mark A. Bakke
CPC classification number: H04L63/10 , H04L12/4641 , H04L45/54 , H04L63/0263 , H04L63/0272 , H04L63/20
Abstract: In one aspect, the present disclosure is directed to a method that includes receiving, at an edge component of a cloud-based secure access service, a corresponding access designation for each of a plurality of endpoints, each access designation specifying a type of access a corresponding endpoint has to remaining ones of the plurality of endpoints and other accessible network resources; based on the corresponding access designation of each of the plurality of endpoints, updating a routing table at the edge component, to include routing information for a subset of the plurality of endpoints having access to at least one other endpoint of the plurality of endpoints or to the other accessible network resources; and enabling routing of network traffic, via the cloud-based secure access service, between any number of the plurality of endpoints based at least in part on the routing table.
-
Patent Agency Ranking
3.发明公开公开(公告)号:US20240323129A1
公开(公告)日:2024-09-26
申请号:US18732016
申请日:2024-06-03
Applicant: Cisco Technology, Inc.
Inventor: Kyle Andrew Donald Mestery , Mark A. Bakke , William Mark Townsley
IPC: H04L47/2441 , H04L9/40 , H04L61/5007
CPC classification number: H04L47/2441 , H04L61/5007 , H04L63/02
Abstract: The present disclosure is directed to network traffic management and load balancing at a cloud-based secure access service accessible to remotely connected user devices. In one example, a cloud-based secure service system includes a network controller configured to receive network traffic from one or more user devices remotely connected to the controller; parse the network traffic into flow data and contextual information associated with the network traffic; determine that the network traffic is to be serviced by a target firewall service at the cloud-based secure service system based on the flow data and the contextual information; and direct the network traffic to the target firewall service to be serviced.
-
4.发明公开公开(公告)号:US20230269191A1
公开(公告)日:2023-08-24
申请号:US17678866
申请日:2022-02-23
Applicant: Cisco Technology, Inc.
Inventor: Kyle Andrew Donald Mestery , Mark A. Bakke , William Mark Townsley
IPC: H04L47/2441 , H04L9/40 , H04L61/5007
CPC classification number: H04L47/2441 , H04L63/02 , H04L61/2007
Abstract: The present disclosure is directed to network traffic management and load balancing at a cloud-based secure access service accessible to remotely connected user devices. In one example, a cloud-based secure service system includes a network controller configured to receive network traffic from one or more user devices remotely connected to the controller; parse the network traffic into flow data and contextual information associated with the network traffic; determine that the network traffic is to be serviced by a target firewall service at the cloud-based secure service system based on the flow data and the contextual information; and direct the network traffic to the target firewall service to be serviced.
-
公开(公告)号:US20240414160A1
公开(公告)日:2024-12-12
申请号:US18807340
申请日:2024-08-16
Applicant: Cisco Technology, Inc.
Inventor: Mark A. Bakke
Abstract: In one aspect, the present disclosure is directed to a method that includes receiving, at an edge component of a cloud-based secure access service, a corresponding access designation for each of a plurality of endpoints, each access designation specifying a type of access a corresponding endpoint has to remaining ones of the plurality of endpoints and other accessible network resources; based on the corresponding access designation of each of the plurality of endpoints, updating a routing table at the edge component, to include routing information for a subset of the plurality of endpoints having access to at least one other endpoint of the plurality of endpoints or to the other accessible network resources; and enabling routing of network traffic, via the cloud-based secure access service, between any number of the plurality of endpoints based at least in part on the routing table.
-
6.发明授权公开(公告)号:US12058051B2
公开(公告)日:2024-08-06
申请号:US17678866
申请日:2022-02-23
Applicant: Cisco Technology, Inc.
Inventor: Kyle Andrew Donald Mestery , Mark A. Bakke , William Mark Townsley
IPC: H04L47/2441 , H04L9/40 , H04L61/5007
CPC classification number: H04L47/2441 , H04L61/5007 , H04L63/02
Abstract: The present disclosure is directed to network traffic management and load balancing at a cloud-based secure access service accessible to remotely connected user devices. In one example, a cloud-based secure service system includes a network controller configured to receive network traffic from one or more user devices remotely connected to the controller; parse the network traffic into flow data and contextual information associated with the network traffic; determine that the network traffic is to be serviced by a target firewall service at the cloud-based secure service system based on the flow data and the contextual information; and direct the network traffic to the target firewall service to be serviced.
-
7.发明公开公开(公告)号:US20230269252A1
公开(公告)日:2023-08-24
申请号:US17678885
申请日:2022-02-23
Applicant: Cisco Technology, Inc.
Inventor: Mark A. Bakke
CPC classification number: H04L63/10 , H04L12/4641 , H04L45/54 , H04L63/0272 , H04L63/20
Abstract: In one aspect, the present disclosure is directed to a method that includes receiving, at an edge component of a cloud-based secure access service, a corresponding access designation for each of a plurality of endpoints, each access designation specifying a type of access a corresponding endpoint has to remaining ones of the plurality of endpoints and other accessible network resources; based on the corresponding access designation of each of the plurality of endpoints, updating a routing table at the edge component, to include routing information for a subset of the plurality of endpoints having access to at least one other endpoint of the plurality of endpoints or to the other accessible network resources; and enabling routing of network traffic, via the cloud-based secure access service, between any number of the plurality of endpoints based at least in part on the routing table.
-
-
-
-
-
-
Search Results
7
records
(took 0.013 seconds)
