专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07359378B2 Security system for preventing unauthorized packet transmission between customer servers in a server farm 有权
标题翻译：用于防止服务器场中的客户服务器之间未经授权的数据包传输的安全系统
公开(公告)号：US07359378B2
公开(公告)日：2008-04-15
申请号：US10263213
申请日：2002-10-02
申请人： Jean-Marc Berthaud , Pascal Chauffour , Patrick Gayrard , Eric Lebrun
发明人： Jean-Marc Berthaud , Pascal Chauffour , Patrick Gayrard , Eric Lebrun
IPC分类号： H04L12/56 , H04L9/00
CPC分类号： H04L47/10 , H04L47/2408 , H04L63/1408
摘要： A security system for a communication system that includes an IP network and groups of servers in a farm, wherein each group is associated with a customer. A user connected to the network can access information provided by a customer from a server within the group of servers associated with this customer through a dispatching device. The security system comprises setting means in each of the switches which are located between the dispatching device and the customer servers for setting a field of bits in the IP header of potentially irregular packets transmitted from a customer server and the dispatching device, means in the dispatching device for identifying any packet wherein the field of bits has been set to the predefined value, and means for deleting or logging the potentially irregular packet when the destination of the packet is not the dispatching device.
摘要翻译：一种用于通信系统的安全系统，其包括农场中的IP网络和服务器组，其中每个组与客户相关联。连接到网络的用户可以通过调度设备从与该客户关联的服务器组内的服务器中访问由客户提供的信息。安全系统包括位于调度设备和客户服务器之间的每个交换机中的设置装置，用于设置从客户服务器和调度设备发送的潜在不规则分组的IP报头中的位的字段，调度中的装置用于识别其中所述比特位已被设置为所述预定义值的任何分组的装置，以及用于当分组的目的地不是分派装置时删除或记录潜在不规则分组的装置。

2. 发明授权

US07454489B2 System and method for accessing clusters of servers from the internet network 失效
公开(公告)号：US07454489B2
公开(公告)日：2008-11-18
申请号：US10753175
申请日：2004-01-06
申请人： Pascal Chauffour , Paolo Gerosa , Eric Lebrun , Valerie Mahe
发明人： Pascal Chauffour , Paolo Gerosa , Eric Lebrun , Valerie Mahe
IPC分类号： G06F15/173
CPC分类号： H04L67/1027 , H04L67/1002 , H04L67/1023 , H04L67/1029
摘要： A cluster system and method accesses from an internet network, a network server within one or a plurality of clusters, each cluster being identified by a single cluster public Internet Protocol (IP) address. The cluster system has a plurality of network servers organized in one of a plurality of clusters and a network load balancer system for selecting a destination network server in a cluster. Each cluster has one or a plurality of identical network servers, the network load balancer system being connected on one hand to an access routing device and on another hand to the plurality of network servers through a private network server subnet. The method includes the steps of at initialization time, on each network server defining, as a non-advertising alias, in an interface table, the public IP address of each cluster to which the network server belongs, and upon reception, by the network load balancing system, of a datagram having an IP header including a destination IP address field and a medium access control (MAC) header including a destination MAC address field, selecting a destination network server within the cluster corresponding to the cluster public IP address identified in the destination IP address field of the datagram IP header, replacing the destination medium access control (MAC) address field of the datagram MAC header by the MAC address of the selected destination network server, and sending the datagram through the private network server subnet, using the MAC address of the selected destination network server. Upon reception, by the destination network server, of the datagram sent by the network load balancing system, the MAC address in the destination MAC address field of the datagram MAC header is identified as being the MAC address of the selected destination network server, and the IP datagram is processed if the identified cluster public IP address in the destination IP address field of the datagram IP header, is defined as a non-advertising alias in the interface table of the destination network server.

3. 发明授权

US07991914B2 Technique for addressing a cluster of network servers 有权
标题翻译：解决网络服务器集群的技术
公开(公告)号：US07991914B2
公开(公告)日：2011-08-02
申请号：US12332196
申请日：2008-12-10
申请人： Pascal Chauffour , Eric Lebrun , Valerie Mahe
发明人： Pascal Chauffour , Eric Lebrun , Valerie Mahe
IPC分类号： G06F15/16
CPC分类号： H04L63/0209 , H04L29/06 , H04L29/12009 , H04L29/1233 , H04L29/12367 , H04L29/12415 , H04L61/2514 , H04L61/2532 , H04L67/1002 , H04L67/1008 , H04L67/1029 , H04L67/1031 , H04L67/1034 , H04L69/329 , H04L2029/06054
摘要： A single firewall or cluster of firewalls with a public IP address is interfaced to an internet public subnet to receive service requests for a cluster of network servers. A first private subnet with a plurality of private IP addresses is interfaced to the single firewall or cluster of firewalls to receive the service requests after passing through a firewall. A plurality of redundant load balancers with a respective plurality of private IP addresses are interfaced to the first private subnet to receive the service requests after passing through the first private subnet. The load balancers are interfaced to a second private subnet. The network servers with respective private IP addresses are interfaced to the second private subnet to receive the service requests from the load balancers. At an initialization time, a private IP address is defined for the network load balancer system within the internet access subnet. When one of the load balancers becomes primary at the initialization time or switches from a standby state to an active state, the network load balancer system private IP address is defined as an alias in an interface table to be recognized by the one load balancer. When the one network load balancer switches from the active state to a standby state, the network load balancer system private IP address previously defined as the alias is released from the interface table.
摘要翻译：具有公共IP地址的单个防火墙或防火墙集群连接到互联网公共子网，以接收针对一组网络服务器的服务请求。具有多个专用IP地址的第一个私有子网与单个防火墙或防火墙集群接口，以在通过防火墙后接收服务请求。具有相应多个私有IP地址的多个冗余负载平衡器被连接到第一私人子网，以在通过第一私人子网之后接收服务请求。负载平衡器连接到第二个私有子网。具有相应私有IP地址的网络服务器连接到第二私人子网，以从负载平衡器接收服务请求。在初始化时间内，为互联网接入子网中的网络负载平衡器系统定义专用IP地址。当其中一个负载平衡器在初始化时间变为初级时间或从备用状态切换到活动状态时，网络负载均衡器系统专用IP地址被定义为接口表中的别名，以由一个负载均衡器识别。当一个网络负载平衡器从活动状态切换到待机状态时，先前定义为别名的网络负载平衡器系统专用IP地址从接口表中释放。

4. 发明授权

US07908355B2 Method for improving network server load balancing 失效
标题翻译：改善网络服务器负载均衡的方法
公开(公告)号：US07908355B2
公开(公告)日：2011-03-15
申请号：US10460443
申请日：2003-06-12
申请人： Pascal Chauffour , Eric Lebrun , Valerie Mahe
发明人： Pascal Chauffour , Eric Lebrun , Valerie Mahe
IPC分类号： G06F15/173 , G06F9/46
CPC分类号： H04L67/1008 , H04L29/06 , H04L67/1002 , H04L67/101 , H04L67/1029 , H04L2029/06054
摘要： A method for improving network server load balancing in a system that has a plurality of network servers connected by an Internet access LAN to the Internet, a back-end access LAN connected to several database servers, and a network load balancer for selecting one of the network servers according to weights associated with the network servers. Link connectivity is monitored cyclically from each network server, and a status indicator is set to UP if all of the links associated with the network server are available, or to DOWN if at least one link is unavailable. The network servers send their status indicators to the network load balancer. The network load balancer changes the weight associated with a network server to a non-eligible value if the associated status indicator changes from UP to DOWN.
摘要翻译：一种用于在具有由因特网接入LAN连接到因特网的多个网络服务器的系统中改善网络服务器负载平衡的方法，连接到多个数据库服务器的后端接入局域网，以及网络负载均衡器，用于选择网络服务器根据与网络服务器相关联的权重。从每个网络服务器循环监视链路连接，如果与网络服务器相关联的所有链路都可用，状态指示器将设置为UP，如果至少有一个链路不可用，则将状态指示器设置为DOWN。网络服务器将其状态指示器发送到网络负载平衡器。如果相关联的状态指示器从UP更改为DOWN，则网络负载平衡器将与网络服务器相关联的权重更改为不合格值。

5. 发明申请

US20090144444A1 TECHNIQUE FOR ADDRESSING A CLUSTER OF NETWORK SERVERS 有权
标题翻译：解决网络服务器集群的技术
公开(公告)号：US20090144444A1
公开(公告)日：2009-06-04
申请号：US12332196
申请日：2008-12-10
申请人： Pascal Chauffour , Eric Lebrun , Valerie Mahe
发明人： Pascal Chauffour , Eric Lebrun , Valerie Mahe
IPC分类号： G06F15/173
CPC分类号： H04L63/0209 , H04L29/06 , H04L29/12009 , H04L29/1233 , H04L29/12367 , H04L29/12415 , H04L61/2514 , H04L61/2532 , H04L67/1002 , H04L67/1008 , H04L67/1029 , H04L67/1031 , H04L67/1034 , H04L69/329 , H04L2029/06054
摘要： A single firewall or cluster of firewalls with a public IP address is interfaced to an internet public subnet to receive service requests for a cluster of network servers. A first private subnet with a plurality of private IP addresses is interfaced to the single firewall or cluster of firewalls to receive the service requests after passing through a firewall. A plurality of redundant load balancers with a respective plurality of private IP addresses are interfaced to the first private subnet to receive the service requests after passing through the first private subnet. The load balancers are interfaced to a second private subnet. The network servers with respective private IP addresses are interfaced to the second private subnet to receive the service requests from the load balancers. At an initialization time, a private IP address is defined for the network load balancer system within the internet access subnet. When one of the load balancers becomes primary at the initialization time or switches from a standby state to an active state, the network load balancer system private IP address is defined as an alias in an interface table to be recognized by the one load balancer. When the one network load balancer switches from the active state to a standby state, the network load balancer system private IP address previously defined as the alias is released from the interface table.
摘要翻译：具有公共IP地址的单个防火墙或防火墙集群连接到互联网公共子网，以接收针对一组网络服务器的服务请求。具有多个专用IP地址的第一个私有子网与单个防火墙或防火墙集群接口，以在通过防火墙后接收服务请求。具有相应多个私有IP地址的多个冗余负载平衡器被连接到第一私人子网，以在通过第一私人子网之后接收服务请求。负载平衡器连接到第二个私有子网。具有相应私有IP地址的网络服务器连接到第二私人子网，以从负载平衡器接收服务请求。在初始化时间内，为互联网接入子网中的网络负载平衡器系统定义专用IP地址。当其中一个负载平衡器在初始化时间变为初级时间或从备用状态切换到活动状态时，网络负载均衡器系统专用IP地址被定义为接口表中的别名，以由一个负载均衡器识别。当一个网络负载平衡器从活动状态切换到待机状态时，先前定义为别名的网络负载平衡器系统专用IP地址从接口表中释放。

6. 发明授权

US07480737B2 Technique for addressing a cluster of network servers 失效
标题翻译：解决网络服务器集群的技术
公开(公告)号：US07480737B2
公开(公告)日：2009-01-20
申请号：US10676456
申请日：2003-09-30
申请人： Pascal Chauffour , Eric Lebrun , Valerie Mahe
发明人： Pascal Chauffour , Eric Lebrun , Valerie Mahe
IPC分类号： G06F15/16
CPC分类号： H04L63/0209 , H04L29/06 , H04L29/12009 , H04L29/1233 , H04L29/12367 , H04L29/12415 , H04L61/2514 , H04L61/2532 , H04L67/1002 , H04L67/1008 , H04L67/1029 , H04L67/1031 , H04L67/1034 , H04L69/329 , H04L2029/06054
摘要： A single firewall or cluster of firewalls with a public IP address is interfaced to an internet public subnet to receive service requests for a cluster of network servers. A first private subnet with a plurality of private IP addresses is interfaced to the single firewall or cluster of firewalls to receive the service requests after passing through a firewall. A plurality of redundant load balancers with a respective plurality of private IP addresses are interfaced to the first private subnet to receive the service requests after passing through the first private subnet. The load balancers are interfaced to a second private subnet. The network servers with respective private IP addresses are interfaced to the second private subnet to receive the service requests from the load balancers. At an initialization time, a private IP address is defined for the network load balancer system within the internet access subnet. When one of the load balancers becomes primary at the initialization time or switches from a standby state to an active state, the network load balancer system private IP address is defined as an alias in an interface table to be recognized by the one load balancer. When the one network load balancer switches from the active state to a standby state, the network load balancer system private IP address previously defined as the alias is released from the interface table.
摘要翻译：具有公共IP地址的单个防火墙或防火墙集群连接到互联网公共子网，以接收针对一组网络服务器的服务请求。具有多个专用IP地址的第一个私有子网与单个防火墙或防火墙集群接口，以在通过防火墙后接收服务请求。具有相应多个私有IP地址的多个冗余负载平衡器被连接到第一私人子网，以在通过第一私人子网之后接收服务请求。负载平衡器连接到第二个私有子网。具有相应私有IP地址的网络服务器连接到第二私人子网，以从负载平衡器接收服务请求。在初始化时间内，为互联网接入子网中的网络负载平衡器系统定义专用IP地址。当其中一个负载平衡器在初始化时间变为初级时间或从备用状态切换到活动状态时，网络负载均衡器系统专用IP地址被定义为接口表中的别名，以由一个负载均衡器识别。当一个网络负载平衡器从活动状态切换到待机状态时，先前定义为别名的网络负载平衡器系统专用IP地址从接口表中释放。

7. 发明申请

US20050005006A1 System and method for accessing clusters of servers from the internet network 失效
公开(公告)号：US20050005006A1
公开(公告)日：2005-01-06
申请号：US10753175
申请日：2004-01-06
申请人： Pascal Chauffour , Paolo Gerosa , Eric Lebrun , Valerie Mahe
发明人： Pascal Chauffour , Paolo Gerosa , Eric Lebrun , Valerie Mahe
IPC分类号： G06F15/173 , H04L29/08
CPC分类号： H04L67/1027 , H04L67/1002 , H04L67/1023 , H04L67/1029
摘要： A cluster system and method accesses from an internet network, a network server within one or a plurality of clusters, each cluster being identified by a single cluster public Internet Protocol (IP) address. The cluster system has a plurality of network servers organized in one of a plurality of clusters and a network load balancer system for selecting a destination network server in a cluster. Each cluster has one or a plurality of identical network servers, the network load balancer system being connected on one hand to an access routing device and on another hand to the plurality of network servers through a private network server subnet. The method includes the steps of at initialization time, on each network server defining, as a non-advertising alias, in an interface table, the public IP address of each cluster to which the network server belongs, and upon reception, by the network load balancing system, of a datagram having an IP header including a destination IP address field and a medium access control (MAC) header including a destination MAC address field, selecting a destination network server within the cluster corresponding to the cluster public IP address identified in the destination IP address field of the datagram IP header, replacing the destination medium access control (MAC) address field of the datagram MAC header by the MAC address of the selected destination network server, and sending the datagram through the private network server subnet, using the MAC address of the selected destination network server. Upon reception, by the destination network server, of the datagram sent by the network load balancing system, the MAC address in the destination MAC address field of the datagram MAC header is identified as being the MAC address of the selected destination network server, and the IP datagram is processed if the identified cluster public IP address in the destination IP address field of the datagram IP header, is defined as a non-advertising alias in the interface table of the destination network server.

8. 发明申请

US20050018647A1 Method and system for determining a path between two points of an IP network over which datagrams are transmitted 有权
标题翻译：用于确定通过哪个数据报发送的IP网络的两个点之间的路径的方法和系统
公开(公告)号：US20050018647A1
公开(公告)日：2005-01-27
申请号：US10809576
申请日：2004-03-25
申请人： Eric Lebrun , Arnaud Lund
发明人： Eric Lebrun , Arnaud Lund
IPC分类号： H04L12/24 , H04L29/06 , H04L29/12 , H04L12/28
CPC分类号： H04L61/00 , H04L29/12009 , H04L41/0677 , H04L43/10 , H04L69/16
摘要： System, computer program and method for determining a transmission path of datagrams in an IP network from a source device to a destination device. The source device receives from a network manager station, a message for retrieving information related to the transmission path of datagrams to the destination device. The message comprises a destination address and a source address. The destination address is an IP address of the destination device, and the source address is an IP address of the network manager device. The source device sends a plurality of probe datagrams to a respective plurality of IP network devices along the transmission path to the destination device. Each probe datagram comprises as destination address, the IP address of the destination device and as source address, the IP address of the network manager station. Consequently, replies, if any, to the probe datagrams are sent back directly to the network manager station by the IP network device along the transmission path, bypassing said the device. The invention also resides in the network manager station and the computer program product executing at the network manager station which sends the message to the source device, and receives and analyzes the replies to the probe datagrams to locate the break in the transmission path.
摘要翻译：用于确定IP网络中的数据报从源设备到目的设备的传输路径的系统，计算机程序和方法。源设备从网络管理站接收用于检索与数据报的传输路径相关的信息到目的地设备的消息。消息包括目的地址和源地址。目标地址是目标设备的IP地址，源地址是网络管理设备的IP地址。源设备沿着传输路径向目的地设备发送多个探测数据报到相应的多个IP网络设备。每个探测数据报包括目标地址，目标设备的IP地址和源地址，网络管理站的IP地址。因此，绕过所述设备，通过IP网络设备沿着传输路径将探测数据报的答复（如果有的话）发送回网络管理站。本发明还在于网络管理站和在网络管理站执行的计算机程序产品，它将消息发送到源设备，并且接收和分析对探测数据报的回复以定位传输路径中的中断。

9. 发明授权

US5479404A System for network wide bandwidth allocation 失效
标题翻译：网络宽带宽分配系统
公开(公告)号：US5479404A
公开(公告)日：1995-12-26
申请号：US192872
申请日：1994-02-07
申请人： Pascal Francois , Eric Lebrun , Jeffrey R. Warren
发明人： Pascal Francois , Eric Lebrun , Jeffrey R. Warren
IPC分类号： G06F13/00 , H04L12/24 , H04L12/423 , H04L12/64 , H04J3/22
CPC分类号： H04L12/6418 , H04L12/423 , H04L41/0896 , H04L41/32 , H04L2012/6437 , H04L2012/6451 , H04L2012/6456 , Y10S370/906
摘要： To solve the problem raised by the allocation of synchronous bandwidth on a FDDI segment when this allocation is done by a centralized Allocator in an interconnected LAN domain, a Third Party Requestor receives from Quality of Service Allocator all information that it needs to ask for bandwidth reservation on the FDDI segment. Following the Station Management standard, the Third Party Requestor is able to act on behalf of the FDDI station that will submit synchronous traffic and ask for bandwidth allocation to a Synchronous Bandwidth Allocator. According to the Synchronous Bandwidth Allocator decision, the Third Party Requestor will then answer to the Quality of Service Allocator which will grant or deny the allocation over the whole path.
摘要翻译：为了解决由互连的LAN域中的集中式分配器进行分配时FDDI段上的同步带宽分配引起的问题，第三方请求者从服务质量分配器接收到需要请求带宽预留的所有信息在FDDI部分。按照站管理标准，第三方请求者能够代表将提交同步流量的FDDI站采取行动，并要求向同步带宽分配器分配带宽。根据同步带宽分配器决定，第三方请求者将回答服务质量分配器，该分配器将授予或拒绝整个路径上的分配。

10. 发明授权

US07385937B2 Method and system for determining a path between two points of an IP network over which datagrams are transmitted 有权
标题翻译：用于确定通过哪个数据报发送的IP网络的两个点之间的路径的方法和系统
公开(公告)号：US07385937B2
公开(公告)日：2008-06-10
申请号：US10809576
申请日：2004-03-25
申请人： Eric Lebrun , Arnaud Lund
发明人： Eric Lebrun , Arnaud Lund
IPC分类号： H04L12/28 , G06F15/173
CPC分类号： H04L61/00 , H04L29/12009 , H04L41/0677 , H04L43/10 , H04L69/16
摘要： System, computer program and method for determining a transmission path of datagrams in an IP network from a source device to a destination device. The source device receives from a network manager station, a message for retrieving information related to the transmission path of datagrams to the destination device. The message comprises a destination address and a source address. The destination address is an IP address of the destination device, and the source address is an IP address of the network manager device. The source device sends a plurality of probe datagrams to a respective plurality of IP network devices along the transmission path to the destination device. Each probe datagram comprises as destination address, the IP address of the destination device and as source address, the IP address of the network manager station. Consequently, replies, if any, to the probe datagrams are sent back directly to the network manager station by the IP network device along the transmission path, bypassing said the device. The invention also resides in the network manager station and the computer program product executing at the network manager station which sends the message to the source device, and receives and analyzes the replies to the probe datagrams to locate the break in the transmission path.
摘要翻译：用于确定IP网络中的数据报从源设备到目的设备的传输路径的系统，计算机程序和方法。源设备从网络管理站接收用于检索与数据报的传输路径相关的信息到目的地设备的消息。消息包括目的地址和源地址。目标地址是目标设备的IP地址，源地址是网络管理设备的IP地址。源设备沿着传输路径向目的地设备发送多个探测数据报到相应的多个IP网络设备。每个探测数据报包括目标地址，目标设备的IP地址和源地址，网络管理站的IP地址。因此，绕过所述设备，通过IP网络设备沿着传输路径将探测数据报的答复（如果有的话）发送回网络管理站。本发明还在于网络管理站和在网络管理站执行的计算机程序产品，它将消息发送到源设备，并且接收和分析对探测数据报的回复以定位传输路径中的中断。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式