Patent · US Active

Sequentially serving network security devices using a software defined networking (SDN) switch

US10091166B2 · kind B2 · utility

0Cited by

5References

10Claims

0Family size

Assignee

Fortinet, Inc. · US

Inventors

Son Pham · San Jose, US
Donald Krall · San Jose, US
Venkateswara Adusumilli · San Jose, US
Edward Lopez · Herndon, US
Neil Huynh · Fremont, US

Key dates

Filing date	Dec 31, 2015
Grant date	Oct 2, 2018
Priority date	—
Expiry date	Jul 10, 2036

Classification

Technology area (CPC H)Electricity
CPC primaryH04L41/40
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems and methods for an SDN switch that provides service group chaining for sequentially serving multiple network security devices are provided. According to one embodiment, a packet received by the switch is processed by a first FPU based on a first set of rules and forwarded conditionally to a first security device. The packet is security processed, including dropping it or forwarding it to an egress port or forwarding it to a second FPU. When forwarded to the second FPU, the packet is processed based on a second set of rules by forwarding it to a second security device or dropping it or forwarding it to the egress port. When forwarded to the second security device, the packet is security processed, including dropping it or forwarding it to the egress port or conditionally forwarding it to a third FPU to be sequentially forwarded to a third security device.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.