公开(公告)号：US20130311608A1

公开(公告)日：2013-11-21

申请号：US13951761

申请日：2013-07-26

Applicant: Citrix Systems, Inc.

Inventor： Sumedh Degaonkar ,  Manikam Muthiah

IPC: H04L12/741

CPC classification number: H04L45/74 ,  H04L29/12066 ,  H04L29/12339 ,  H04L29/12952 ,  H04L61/1511 ,  H04L61/2503 ,  H04L61/6077

Abstract: Described herein are systems and methods for improving networked communication systems by transforming IP addresses. In particular, an intermediary device disposed in a network between a plurality of clients and a plurality of servers can receive a request for a service offered at a specified domain name. The appliance can also receive a DNS-resolved primary address for a server associated with the domain name, and transform the primary address to a secondary address for the server. The address transformation can be done by the intermediary to prevent service interruption between a client and server due, for example, to server maintenance.

Abstract translation: 这里描述了通过转换IP地址来改进网络通信系统的系统和方法。 特别地，设置在多个客户端和多个服务器之间的网络中的中间设备可以接收对以指定域名提供的服务的请求。 设备还可以接收与域名关联的服务器的DNS解析的主地址，并将主地址转换为服务器的辅助地址。 地址转换可以由中间人完成，以防止客户端与服务器之间的服务中断，例如服务器维护。

公开(公告)号：US20220360596A1

公开(公告)日：2022-11-10

申请号：US17321847

申请日：2021-05-17

Applicant: Citrix Systems, Inc.

Inventor： Andreas Varnavas ,  Ananthaneni Sai Teja Chowdary ,  Nikolaos Tsapakis ,  Premkumar SJ ,  Manikam Muthiah

IPC: H04L29/06

Abstract: A system and method that detects malicious account creation in a web-based platform. A method includes detecting suspicious events associated with an account creation process using a username classifier that evaluates a username used to create a new account, an IP address classifier that evaluates an IP address used to create the new account, and a domain classifier that evaluates a domain from an email address used to create the new account; analyzing each detected suspicious event with a density analysis classifier to determine if each detected suspicious event comprises a malicious event based on a density of detected suspicious events from a collections of account creation processes; and determining an alert condition based on at least one malicious event detection.

公开(公告)号：US20220029899A1

公开(公告)日：2022-01-27

申请号：US17002353

申请日：2020-08-25

Applicant: Citrix Systems, Inc.

Inventor： Andreas Varnavas ,  Satyendra Tiwari ,  Manikam Muthiah ,  Nikolaos Georgakopoulos

IPC: H04L12/26

Abstract: Described embodiments provide systems and methods for determining a change in a performance of a server. A device can receive a processing load and a request rate of a server. The device can determine a value indicative of a correlation between the processing load and the request rate of the server for a range of time. The device can determine whether the value is outside a range of a threshold for the server. The threshold can be indicative of one or more previous values determined for the server for the range of time. The device can generate an alert indicating a change in a performance of the server responsive to a comparison of the value to the threshold for the server.

公开(公告)号：US09778954B2

公开(公告)日：2017-10-03

申请号：US14045901

申请日：2013-10-04

Applicant: Citrix Systems, Inc.

Inventor： Manikam Muthiah ,  Raghav Somanahalli Narayana ,  Sreedhar Yengalasetti

IPC: G06F9/50

CPC classification number: G06F9/50 ,  G06F9/5061

Abstract: The present invention is directed towards systems and methods for handling limit parameters for multi-core systems. A pool manager divides the limited number of uses of a resource into an exclusive quota pool and a shared quota pool. Each packet processing engine operating on a core is allocated an exclusive number of uses of the resource from the exclusive quota pool. If a packet processing engine wishes to use the resource beyond its exclusive number, the packet processing engine must borrow from the shared quota pool.

公开(公告)号：US09577892B2

公开(公告)日：2017-02-21

申请号：US14244329

申请日：2014-04-03

Applicant: Citrix Systems, Inc.

Inventor： Aman Chaudhary ,  Manikam Muthiah

IPC: G06F15/173 ,  H04L12/24 ,  H04L29/06 ,  G06F11/30

CPC classification number: H04L41/5009 ,  G06F11/3006 ,  G06F11/3048 ,  G06F11/3093 ,  G06F2201/815 ,  H04L63/20

Abstract: The present application is directed towards systems and methods for providing monitoring in a cluster system. The systems and methods distribute the monitors for a service and the ownership of a service across a cluster system comprising a plurality of nodes. The nodes in the cluster can be configured to have different sets of virtual servers (sometimes referred to as “vservers”) and services. The ownership and monitoring of the services can be distributed among all the nodes in the cluster. The system can identify a service in a cluster system and identify a master node that has ownership of the service. The master node can transmit a service status update to other nodes in the cluster system.

Abstract translation: 本申请涉及用于在集群系统中提供监控的系统和方法。 所述系统和方法通过包括多个节点的集群系统分配服务的监视器和服务的所有权。 集群中的节点可以配置为具有不同的虚拟服务器集（有时称为“vserver”）和服务。 服务的所有权和监控可以在集群中的所有节点之间分配。 系统可以识别集群系统中的服务，并识别拥有该服务所有权的主节点。 主节点可以将服务状态更新发送到集群系统中的其他节点。

公开(公告)号：US20150039763A1

公开(公告)日：2015-02-05

申请号：US13955807

申请日：2013-07-31

Applicant: Citrix Systems, Inc.

Inventor： Aman Chaudhary ,  Vishnu Itta ,  Devesh Prakash ,  Manikam Muthiah ,  Jaidev Sridhar

IPC: H04L12/803

CPC classification number: H04L47/125 ,  G06F9/45533 ,  H04L67/1008 ,  H04L67/1023

Abstract: The present invention is directed towards systems and methods for load balancing by a multi-core device intermediary between clients and services. The device may establish sub-slots in each slot of the device's packet engines. The number of sub-slots may correspond to the packet engine count. Each slot may track a different number of active connections allocated to a service. The device may assign a first and second service to each packet engine in a first slot corresponding to no active connections. These services may be assigned to different sub-slots in adjacent packet engines. The device may update, responsive to allocation of a first active connection to the first service, the first service from a sub-slot in the first slot of a first packet engine, to a corresponding sub-slot in a second slot. The second slot may correspond to one active connection allocated to the first service.

Abstract translation: 本发明涉及用于通过客户端和服务之间的多核设备中介的负载平衡的系统和方法。 设备可以在设备的分组引擎的每个时隙中建立子时隙。 子时隙的数量可以对应于分组引擎计数。 每个时隙可以跟踪分配给服务的不同数量的活动连接。 设备可以在与没有活动连接相对应的第一时隙中为每个分组引擎分配第一和第二服务。 这些服务可以分配给相邻分组引擎中的不同子时隙。 响应于将第一服务的第一活动连接分配到第一分组引擎的第一时隙中的子时隙到第二时隙中的相应子时隙，所述设备可以更新。 第二时隙可以对应于分配给第一服务的一个活动连接。

公开(公告)号：US20130239116A1

公开(公告)日：2013-09-12

申请号：US13864325

申请日：2013-04-17

Applicant: CITRIX SYSTEMS, INC.

Inventor： Manikam Muthiah ,  Raghav Somanahalli Narayana ,  Sreedhar Yengalasetti

IPC: G06F9/50

CPC classification number: G06F9/50 ,  G06F9/455 ,  G06F9/5005 ,  G06F9/5011 ,  G06F9/5016 ,  G06F9/5027 ,  G06F9/505 ,  G06F9/5061 ,  G06F9/5077 ,  G06F9/5083 ,  G06F2009/45579 ,  G06F2009/45583 ,  G06F2209/5011 ,  G06F2209/504 ,  Y02D10/22

Abstract: The present invention is directed towards systems and methods for spillover threshold management in a multi-core system. A pool manager divides the spillover threshold limit of connections for vServers into an exclusive quota pool and a shared quota pool. Each vServer operating on a core is allocated an exclusive number of connections from the exclusive quota pool. If a vServer wishes to create connections beyond its exclusive number, the vServer can borrow from the shared quota pool. When the vServers are using at least a first predetermined threshold of their exclusive number of connections and the number of available connections in the shared quota pool has reached a second predetermined threshold, the multi-core system establishes a backup vServer.

Abstract translation: 本发明涉及用于多核系统中的溢出阈值管理的系统和方法。 池管理器将vServer的连接的溢出阈值限制分为独占配额池和共享配额池。 在核心上运行的每个vServer都将从独占配额池分配独占数量的连接。 如果vServer希望创建超出其独占号的连接，则vServer可以从共享配额池中借用。 当vServers至少使用其独占连接数的第一预定阈值并且共享配额池中的可用连接数已达到第二预定阈值时，多核系统建立备份vServer。