Port allocation in a firewall cluster

Invention Grant

US08677471B2 Port allocation in a firewall cluster 有权

Title translation: 防火墙集群中的端口分配

Please log in to see more content

Patent Title: Port allocation in a firewall cluster
Patent Title (中): 防火墙集群中的端口分配
Application No.: US13323815

Application Date: 2011-12-12
Publication No.: US08677471B2

Publication Date: 2014-03-18
Inventor: Michael J. Karels , Michael James Silbersack
Applicant: Michael J. Karels , Michael James Silbersack
Applicant Address: US CA Santa Clara
Assignee: McAfee, Inc.
Current Assignee: McAfee, Inc.
Current Assignee Address: US CA Santa Clara
Agency: Wong, Cabello, Lutsch, Rutherford & Brucculeri, LLP
Main IPC: G06F9/00
IPC: G06F9/00

Abstract:

A firewall cluster having three or more firewall processing nodes sharing the same shared IP address. Port numbers are assigned to the firewall processing nodes within the cluster and are used to distinguish between traffic sent to the cluster. Each network connection is assigned a destination port number. Each node receives the network connection and its assigned port number and determines if the assigned destination port number matches one of its assigned port numbers. If so, the node processes the network connection. If the assigned destination port number does not match one of its assigned port numbers, the network connection is discarded.

Abstract(Chinese):

具有共享相同共享IP地址的三个或更多防火墙处理节点的防火墙集群。端口号分配给集群内的防火墙处理节点，用于区分发送到集群的流量。每个网络连接都被分配一个目标端口号。每个节点接收网络连接及其分配的端口号，并确定分配的目的地端口号是否与其分配的端口号之一相匹配。如果是，则节点处理网络连接。如果分配的目的地端口号与其分配的端口号之一不匹配，则网络连接将被丢弃。

Public/Granted literature

US20130152188A1 PORT ALLOCATION IN A FIREWALL CLUSTER Public/Granted day:2013-06-13

Information query

Espacenet

IPC分类:

G	物理
G06	计算；推算或计数
G06F	电数字数据处理（基于特定计算模型的计算机系统入G06N）
G06F9/00	程序控制装置，例如，控制单元（用于外部设备的程序控制入G06F13/10）