Abstract: Processing infrastructure metadata information about a virtual resource of a virtual cloud is disclosed. Infrastructure metadata information is collected. The collected metadata information is about a virtual resource of a virtual cloud. A storage of infrastructure metadata information is updated. The updating of the storage of infrastructure metadata information is performed using the collected information.

Abstract: Making data available from a database is disclosed. Making data available includes specifying a query function having a query function name, wherein the query function includes a structure and a member, determining the structure and the member included in the query function, wherein the query function has a query function name and includes the structure and the member, creating an index for the structure on the member, and compiling the query function to be available to a user by invoking the query function name without the user having to specify the structure and the member. Retrieving data from a database is disclosed. Retrieving includes invoking a query function that specifies a plurality of structures and a value, accessing a cross index of the plurality of structures, and using the cross index to access the data.

Abstract: In some embodiments, a security device controller (SDC) is provided. In some embodiments, a security device controller includes receiving a configuration policy in a vendor neutral language; and automatically configuring a plurality of security devices on a heterogeneous network based on the configuration policy. For example, the plurality of security devices can include physical, virtual, or software defined network (SDN) based routers and/or firewalls, and the heterogeneous network can include security devices from a plurality of different vendors.

Abstract: Techniques for associating text strings with numeric numbers for IP address management are provided. In some embodiments, various techniques for an IPAM device for associating text strings with numeric numbers for IP address management are disclosed. In some embodiments, system, method, and/or computer program product for an Internet Protocol Address Management (IPAM) system for managing an Internet Protocol (IP) address space for an enterprise network, includes associating a text string with a substring of a network address; and storing the text string in association with the substring of the network address in the IPAM system for managing the IP address space for the enterprise network.

Abstract: Flux domain is generally an active threat vector, and flux domain behaviors are continually changing in an attempt to evade existing detection measures. Accordingly, new and improved techniques are disclosed for flux domain detection. In some embodiments, an online platform implementing an analytics framework for DNS security is provided for facilitating flux domain detection. For example, the online platform can implement an analytics framework for DNS security based on passive DNS traffic analysis, disclosed herein with respect to various embodiments.

Abstract: Methods, computer systems, and computer readable media provide for automated control of the status of network address space. Blocks of networking address space assigned to a network may be allocated from a free status to a new status based upon a request to allocate a particular size block. Blocks of networking address space assigned to a network that have been allocated to a new status may be deallocated to return to a free status based upon a request to deallocate the chosen block. Blocks of networking address space assigned to a network that have been allocated and otherwise manipulated such as through a lend from another network may be reclaimed for the original network upon a request to reclaim the chosen block.

Abstract: Writing data in a distributed database having a plurality of nodes is disclosed. Writing includes receiving a write request at a node, wherein the write request is associated with one or more operations to define an atomic transaction and performing the atomic transaction based on the request. The atomic transaction includes writing to a first version of the database in the node and writing to an entity representative of a state of the first version of the database.

Abstract: Techniques for managing system information are disclosed. In one embodiment, a piece of system information is received, a synthesized link is created linking a system information identifier corresponding to the system information to a synthesized group identifier, the synthesized group identifier represents a group to which the synthesized information/synthesized information identifier belongs.

Abstract: Determining operating system data is disclosed, including receiving a message associated with a network protocol, extracting a set of one or more features from the message, and determining operating system data at least in part by matching one or more features of the message with one or more features of a fingerprint associated with an operating system. An exact match of the features is not required to determine operating system data.

Abstract: Visualization for managing multiple IP address management systems is provided. In some embodiments, visualization for managing multiple IP address management systems for an IP address management manager system includes communicating with a plurality of IP address management systems to determine IP address management information managed by each of the IP address management systems; and generating a graphical visualization of an IP address space managed by the plurality of IP address management systems based on the IP address management information managed by each of the IP address management systems, in which the graphical visualization of the IP address space managed by the plurality of IP address management systems indicates any gaps or overlaps in the IP address space managed by the plurality of IP address management systems.

Abstract: Techniques for a hardware accelerator for a domain name server (DNS) cache are disclosed. In some embodiments, a hardware accelerator for a DNS cache includes: executing a packet processing engine of a host device to identify a DNS request; and performing a DNS lookup in the DNS cache. In some embodiments, a hardware accelerator for a DNS cache includes: determining if a time to live (TTL) parameter associated with a first entry stored in the DNS cache is below a threshold value; and if the TTL parameter associated with the first entry stored in the DNS cache is below the threshold value, then performing a pre-fetch operation to update the first entry in the DNS cache, wherein the updated entry comprises an updated TTL value.

Abstract: Managing network event information from a plurality of network appliances is disclosed. Each network appliance provides a network service and each has a version of a common database. Managing includes detecting network event information at a first network appliance, updating a version of the common database on the first network appliance with the network event information, and propagating the network event information to other versions of the database on other network appliances.

Abstract: Provisioning an Internet Protocol address is disclosed. A request to provision an Internet Protocol address to a virtual resource is received. An Internet Protocol address is automatically determined to allocate to the virtual resource. An Internet Protocol Address Management appliance is used to automatically allocate the determined Internet Protocol address to the virtual resource.

Abstract: A method is disclosed. A graphical representation is displayed of a network map of a network. A context indication is received for a network information specification for a first network segment of the network displayed on the graphical representation of the network map of the network. A first information is displayed on the graphical representation for the first network segment in response to the context indication. An action indication is received for a network management specification for the first network segment based at least in part on an interaction with the graphical representation of the network. The first network segment is modified based at least in part on the network management specification in response to the action indication.

Abstract: The impact of device configuration changes on operational issues and policy compliance in a computer network can be discerned from a visual data presentation that jointly shows representations of changes, issues, and policy compliance in a common view for a group of network devices. Configuration information is collected from devices in the computer network and processed to determine whether a change has occurred in a configuration of any of the devices, whether any operational issues exist for each of the devices, and whether any of the devices are not in compliance with any applicable operational policies. A display device displays the visual data presentation to allow an operator to see trends and relationships between device configuration changes and operational issues and incidents of policy non-compliance. The visual data presentation can be depicted as a graphical timeline view, a network topology view, or a table view of the information.

Abstract: Managing multiple IP address management systems is provided. In some embodiments, managing multiple IP address management systems includes providing an IP address management (IPAM) manager system for receiving a configuration command to manage a first IP address management system; receiving a configuration command to manage a second IP address management system; receiving a join request from the first IP address management system; and receiving a join request from the second IP address management system, in which the IP address management manager system is in communication with the first IP address management system and the second IP address management system for managing each of the first IP address management system and the second IP address management system.

Abstract: Storing data is disclosed. A range or addresses is received and the range of addresses is stored in a bulk object. Retrieving data is disclosed. A request to access data associated with an address within a range of addresses is received. A response is derived based at least in part on a bulk object.

Abstract: Maintaining consistent DNS information is disclosed. Information associated with a resource is received. A resource record is populated with the information. View information is derived from the resource record.

Abstract: A technique for enforcing a database relationship is disclosed. The technique includes specifying within a database schema a reference type that associates two structures and specifies the relationship between the two structures, and automatically generating code that checks the relationship between the two structures based on the specified reference in the database schema.

Abstract: A technique for converting a first version of a database to a second version is disclosed. The technique includes determining available translation steps, selecting a translation path from the first version of the database to the second version, and executing the selected translation steps in the translation path. The translation path includes selected translation steps from among the available translation steps.