Patent · US Active

Distributed network security controller cluster for performing security operations

US10142287B2 · kind B2 · utility

0Cited by

5References

20Claims

0Family size

Assignee

Nicira, Inc. · US

Inventors

Keyong Sun · Beijing, CN
Yonggang Wang · Beijing, CN
Frank Guo · Danville, US
Liang Li · Shanghai, CN
Zikang Chen · Beijing, CN

Key dates

Filing date	Jul 28, 2015
Grant date	Nov 27, 2018
Priority date	—
Expiry date	Sep 26, 2035

Classification

Technology area (CPC H)Electricity
CPC primaryH04L69/22
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Some embodiments of the invention provide a method for a first security controller that performs security operations on the packets that are transmitted within a network. The method of some embodiments receives a packet from a forwarding element in the network based on a decision made by a security agent that operates along with the forwarding element. When the first security controller stores a security rule for the packet, the method processes the packet according to the stored security rule. When the first security controller does not store a security rule for the packet, the method (i) determines that a second security controller stores a security rule for the packet based on a set of header values of the packet, and (ii) sends the packet to the second security controller for security processing according to the security rule for the packet stored on the second security controller.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.