-
公开(公告)号:KR20180054800A
公开(公告)日:2018-05-24
申请号:KR20187011147
申请日:2016-10-18
Applicant: CITRIX SYSTEMS INC
Inventor: TESTICIOGLU MUSTAFA KUTLUK , MYLARAPPA MAHESH
IPC: H04L12/825 , H04L5/00 , H04L12/26 , H04L12/801 , H04L12/803 , H04W28/02
CPC classification number: H04L47/125 , H04L5/0055 , H04L43/0888 , H04L47/14 , H04L47/193 , H04L47/25 , H04W28/0273
Abstract: 데이터전송을제어하기위한기기가설명된다. 기기는링크를통해제1 데이터패킷들의흐름에관한데이터를획득하고흐름에대한 TCP(transport communication protocol) 특성들을결정하도록구성된패킷엔진을포함한다. 기기는또한제2 데이터패킷들을수신하고, TCP 특성들을기초로전송속도를결정하고, 하나이상의기준을기초로속도기반데이터전송제어가제2 데이터패킷들의전송제어를위해사용될것인지여부를결정하도록구성된데이터전송제어기를포함한다. 데이터전송제어기는또한속도기반데이터전송제어가제2 데이터패킷들의전송을제어하기위해사용될것이라는결정에응답하여, 패킷엔진이제2 데이터패킷들을그룹들로전송하게하도록구성되고, 제2 데이터패킷들의각각의그룹의전송시간들은전송속도를기초로결정된다.
-
Patent Agency Ranking2.发明专利
公开(公告)号:HK1194565A1
公开(公告)日:2014-10-17
申请号:HK14107916
申请日:2014-08-01
Applicant: CITRIX SYSTEMS INC
Inventor: ANNAMALAISAMI SARAVANA , MYLARAPPA MAHESH , THOKALA SUDHEER , KORRAPATTI VAMSI , GUTHULA SRIDHAR , JOSHI RAJESH , JAGDISH ASHWIN
IPC: H04L47/41
Abstract: The present disclosure is directed towards tracking application layer flow via a multi-connection intermediary. Transaction level or application layer information may be tracked via the intermediary, including one or more of: (i) the request method; (ii) response codes; (iii) URLs; (iv) HTTP cookies; (v) RTT of both ends of the transaction in a quad flow arrangement; (vi) server time to provide first byte of a communication; (vii) server time to provide the last byte of a communication; (viii) flow flags; or any other type and form of transaction level data may be captured, exported, and analyzed. The application layer flow or transaction level information may be provided in an IPFIX-compliant data record. This may be done to provide template-based data record definition, as well as providing data on an application or transaction level of granularity.
-
公开(公告)号:HK1178706A1
公开(公告)日:2013-09-13
申请号:HK13105233
申请日:2013-04-30
Applicant: CITRIX SYSTEMS INC
Inventor: CHOUDHARY AKSHAT , MYLARAPPA MAHESH
IPC: H04L20060101
Abstract: The present disclosure presents systems and methods for maintaining an original source IP address of a request by an intermediary network device despite the source IP address being modified by a cache server during an unfulfilled cache request. An intermediary receives a request from a client to access a destination server via a first transport layer connection. The client request identifies the client's IP address as a source IP address. The intermediary transmits to a cache server, via a second transport layer connection, the client request as a second request modified to include the client IP address of the first request in a header. The intermediary device receives, via a third connection, the second request as a third request from the cache server. The intermediary device obtains the client IP address from the header of the third request and transmits to the server identified in the first request the third request as a fourth request identifying the client IP address as the source IP address.
-
公开(公告)号:WO2011066509A3
公开(公告)日:2011-10-13
申请号:PCT/US2010058217
申请日:2010-11-29
Applicant: CITRIX SYSTEMS INC , TANEJA VARUN , MYLARAPPA MAHESH , ANNAMALAISAMI SARAVANAKUMAR
Inventor: TANEJA VARUN , MYLARAPPA MAHESH , ANNAMALAISAMI SARAVANAKUMAR
CPC classification number: H04L67/141 , H04L63/1416 , H04L63/1441 , H04L63/1458 , H04L69/16 , H04L69/163
Abstract: The present application is directed towards systems and methods for aggressively probing a client side connection to determine and counteract a malicious window size attack or similar behavior from a malfunctioning client. The solution described herein detects when a connection may be under malicious attach via improper or unusual window size settings. Responsive to the detection, the solution described herein will setup probes that determine whether or not the client is malicious and does so within an aggressive time period to avoid the tying up of processing cycles, transport layer sockets and buffers, and other resources of the sender.
Abstract translation: 本申请涉及用于积极地探测客户端连接以确定和抵消来自故障客户端的恶意窗口大小攻击或类似行为的系统和方法。 此处描述的解决方案检测何时连接可能由于不正确或异常的窗口大小设置而恶意附着。 响应于检测,本文所述的解决方案将设置探测器,其确定客户端是否是恶意的并且在激进的时间段内这样做,以避免处理周期,传输层套接字和缓冲器的绑定以及发送者的其他资源 。
-
5.发明申请
公开(公告)号:WO2011079146A2
公开(公告)日:2011-06-30
申请号:PCT/US2010061639
申请日:2010-12-21
Applicant: CITRIX SYSTEMS INC , CHOUDHARY AKSHAT , MYLARAPPA MAHESH
Inventor: CHOUDHARY AKSHAT , MYLARAPPA MAHESH
CPC classification number: H04L67/2814 , H04L67/2842
Abstract: The present disclosure presents systems and methods for maintaining an original source IP address of a request by an intermediary network device despite the source IP address being modified by a cache server during an unfulfilled cache request. An intermediary receives a request from a client to access a destination server via a first transport layer connection. The client request identifies the client's IP address as a source IP address. The intermediary transmits to a cache server, via a second transport layer connection, the client request as a second request modified to include the client IP address of the first request in a header. The intermediary device receives, via a third connection, the second request as a third request from the cache server. The intermediary device obtains the client IP address from the header of the third request and transmits to the server identified in the first request the third request as a fourth request identifying the client IP address as the source IP address.
Abstract translation: 本公开提供了用于维护中间网络设备的请求的原始源IP地址的系统和方法,尽管在未实现的高速缓存请求期间由缓存服务器修改源IP地址。 中介接收来自客户端的请求,以经由第一传输层连接访问目的地服务器。 客户端请求将客户端的IP地址标识为源IP地址。 中间人经由第二传输层连接将高速缓存服务器发送到作为第二请求的客户机请求,该第二请求被修改为将第一请求的客户端IP地址包括在报头中。 中间设备经由第三连接从第二请求接收来自缓存服务器的第三请求。 中间设备从第三请求的报头获取客户端IP地址,并将第一请求中标识的服务器作为第四请求发送给标识客户端IP地址作为源IP地址的第四请求。
-
6.发明公开
公开(公告)号:EP2517417A4
公开(公告)日:2013-07-24
申请号:EP10840086
申请日:2010-12-21
Applicant: CITRIX SYSTEMS INC
Inventor: CHOUDHARY AKSHAT , MYLARAPPA MAHESH
CPC classification number: H04L67/2814 , H04L67/2842
-
-
-
-
-
Search Results
6
records
(took 0.024 seconds)
