Patents by Inventor David Chun Ying Cheung
David Chun Ying Cheung has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20230128082Abstract: A proxy device coupled to a network receives communications between a client and a server on the network. The proxy device operates transparently to the client and the server, while coupled to receive and process the communications from a node on the network via a network port in a one-armed configuration. The proxy device communicates packets of the communications with an external tool coupled to the proxy device via a tool port and operates transparently to the nod and the tool. In certain embodiments, the tool may be a network security device, such as a firewall.Type: ApplicationFiled: November 21, 2022Publication date: April 27, 2023Inventors: Dale L. Guise, JR., David Chun Ying Cheung, Fushan Allan Yuan
-
Patent number: 11509631Abstract: A proxy device coupled to a network receives communications between a client and a server on the network. The proxy device operates transparently to the client and the server, while coupled to receive and process the communications from a node on the network via a network port in a one-armed configuration. The proxy device communicates packets of the communications with an external tool coupled to the proxy device via a tool port and operates transparently to the nod and the tool. In certain embodiments, the tool may be a network security device, such as a firewall.Type: GrantFiled: June 8, 2020Date of Patent: November 22, 2022Assignee: Gigamon Inc.Inventors: Dale L. Guise, Jr., David Chun Ying Cheung, Fushan Allan Yuan
-
Publication number: 20210352048Abstract: A proxy device coupled to a network receives communications between a client and a server on the network. The proxy device operates transparently to the client and the server, while coupled to receive and process the communications from a node on the network via a network port in a one-armed configuration, The proxy device communicates packets of the communications with an external tool coupled to the proxy device via a tool port and operates transparently to the nod and the tool. In certain embodiments, the tool may be a network security device, such as a firewall.Type: ApplicationFiled: June 8, 2020Publication date: November 11, 2021Inventors: Dale L. Guise, JR., David Chun Ying Cheung, Fushan Allan Yuan
-
Patent number: 9479574Abstract: A global server load balancing (GSLB) switch serves as a proxy to an authoritative DNS communicates with numerous site switches which are coupled to host servers serving specific applications. The GSLB switch receives from site switches operational information regarding host servers within the site switches neighborhood. When a client program requests a resolution of a host name, the GSLB switch, acting as a proxy of an authoritative DNS, returns one or more ordered IP addresses for the host name. The IP addresses are ordered using metrics that include the information collected from the site switches. In one instance, the GSLB switch places the address that is deemed “best” at the top of the list.Type: GrantFiled: June 24, 2013Date of Patent: October 25, 2016Assignee: Brocade Communications Systems, Inc.Inventors: Ivy Pei-Shan Hsu, David Chun-Ying Cheung, Rajkumar Ramniranjan Jalan
-
Patent number: 9332066Abstract: Each service in a computer network may have a connection rate limit. The number of new connections per time period may be limited by using a series of rules. In a specific embodiment of the present invention, a counter is increased each time a server is selected to handle a connection request. For each service, connections coming in are tracked. Therefore, the source of connection-request packets need not be examined. Only the destination service is important. This saves significant time in the examination of the incoming requests. Each service may have its own set of rules to best handle the new traffic for its particular situation. For server load balancing, a reset may be sent to the source address of the new connection request. For transparent cache switching, the connection request may be forwarded to the Internet.Type: GrantFiled: September 20, 2013Date of Patent: May 3, 2016Assignee: Foundry Networks, LLCInventors: Ronald W. Szeto, David Chun-Ying Cheung, Rajkumar Jalan
-
Patent number: 9225775Abstract: A global server load balancing (GSLB) switch serves as a proxy to an authoritative DNS communicates with numerous site switches which are coupled to host servers serving specific applications. The GSLB switch receives from site switches operational information regarding host servers within the site switches neighborhood. When a client program requests a resolution of a host name, the GSLB switch, acting as a proxy of an authoritative DNS, returns one or more ordered IP addresses for the host name. The IP addresses are ordered using metrics that include the information collected from the site switches. In one instance, the GSLB switch places the address that is deemed “best” at the top of the list.Type: GrantFiled: November 17, 2008Date of Patent: December 29, 2015Assignee: Brocade Communications Systems, Inc.Inventors: Ivy Pei-Shan Hsu, David Chun Ying Cheung, Rajkumar Ramniranjan Jalan
-
Patent number: 9130954Abstract: A global server load-balancing (GSLB) switch serves as a proxy to an authoritative DNS and communicates with numerous site switches that are coupled to host servers serving specific applications. The GSLB switch receives from site switches operational information regarding host servers within the site switches neighborhood. This operational information includes health check information that is remotely obtained in a distributed manner from remote metric agents at the site switches. When a client program requests a resolution of a host name, the GSLB switch, acting as a proxy of an authoritative DNS, returns one or more ordered IP addresses for the host name. The IP addresses are ordered using metrics, including the health check metric that evaluates these IP addresses based on the health check information communicated to the GSLB switch in a distributed manner by the distributed health check site switches. In one instance, the GSLB switch places the address that is deemed “best” at the top of the list.Type: GrantFiled: November 27, 2002Date of Patent: September 8, 2015Assignee: BROCADE COMMUNICATIONS SYSTEMS, INC.Inventors: Prajakta S. Joshi, David Chun Ying Cheung
-
Patent number: 8819252Abstract: Transaction rate limiting is provided to monitor new connections. If the number of new connections requested by a particular client exceeds a predetermined threshold value, then the client may be frozen out for a configured period of time. By denying access for the configured period of time, the client is prevented from monopolizing a particular client. Additionally, if the client does have malicious intent, a denial of service attack may be thwarted. The denial of service may be accomplished without alerting the client. This prevents a malicious client from regrouping and attempting an assault via a different mechanism.Type: GrantFiled: May 3, 2002Date of Patent: August 26, 2014Assignee: Foundry Networks, LLCInventors: Ronald W. Szeto, David Chun Ying Cheung, Rajkumar Jalan, Sridhar J. Devarapalli
-
Publication number: 20140040478Abstract: A global server load balancing (GSLB) switch serves as a proxy to an authoritative DNS communicates with numerous site switches which are coupled to host servers serving specific applications. The GSLB switch receives from site switches operational information regarding host servers within the site switches neighborhood. When a client program requests a resolution of a host name, the GSLB switch, acting as a proxy of an authoritative DNS, returns one or more ordered IP addresses for the host name. The IP addresses are ordered using metrics that include the information collected from the site switches. In one instance, the GSLB switch places the address that is deemed “best” at the top of the list.Type: ApplicationFiled: June 24, 2013Publication date: February 6, 2014Inventors: Ivy Pei-Shan Hsu, David Chun-Ying Cheung, Rajkumar Ramniranjan Jalan
-
Publication number: 20140025772Abstract: Each service in a computer network may have a connection rate limit. The number of new connections per time period may be limited by using a series of rules. In a specific embodiment of the present invention, a counter is increased each time a server is selected to handle a connection request. For each service, connections coming in are tracked. Therefore, the source of connection-request packets need not be examined. Only the destination service is important. This saves significant time in the examination of the incoming requests. Each service may have its own set of rules to best handle the new traffic for its particular situation. For server load balancing, a reset may be sent to the source address of the new connection request. For transparent cache switching, the connection request maybe forwarded to the Internet.Type: ApplicationFiled: September 20, 2013Publication date: January 23, 2014Applicant: Brocade Communications Systems, Inc.Inventors: Ronald W. Szeto, David Chun Ying Cheung, Rajkumar Jalan
-
Patent number: 8572228Abstract: Each service in a computer network may have a connection rate limit. The number of new connections per time period may be limited by using a series of rules. In a specific embodiment of the present invention, a counter is increased each time a server is selected to handle a connection request. For each service, connections coming in are tracked. Therefore, the source of connection-request packets need not be examined. Only the destination service is important. This saves significant time in the examination of the incoming requests. Each service may have its own set of rules to best handle the new traffic for its particular situation. For server load balancing, a reset may be sent to the source address of the new connection request. For transparent cache switching, the connection request may be forwarded to the Internet.Type: GrantFiled: May 21, 2010Date of Patent: October 29, 2013Assignee: Foundry Networks, LLCInventors: Ronald W. Szeto, David Chun Ying Cheung, Rajkumar Jalan
-
Patent number: 8554929Abstract: Each service in a computer network may have a connection rate limit. The number of new connections per time period may be limited by using a series of rules. In a specific embodiment of the present invention, a counter is increased each time a server is selected to handle a connection request. For each service, connections coming in are tracked. Therefore, the source of connection-request packets need not be examined. Only the destination service is important. This saves significant time in the examination of the incoming requests. Each service may have its own set of rules to best handle the new traffic for its particular situation. For server load balancing, a reset may be sent to the source address of the new connection request. For transparent cache switching, the connection request may be forwarded to the Internet.Type: GrantFiled: May 3, 2002Date of Patent: October 8, 2013Assignee: Foundry Networks, LLCInventors: Ronald W. Szeto, David Chun Ying Cheung, Rajkumar Jalan
-
Patent number: 8504721Abstract: A global server load balancing (GSLB) switch serves as a proxy to an authoritative DNS communicates with numerous site switches which are coupled to host servers serving specific applications. The GSLB switch receives from site switches operational information regarding host servers within the site switches neighborhood. When a client program requests a resolution of a host name, the GSLB switch, acting as a proxy of an authoritative DNS, returns one or more ordered IP addresses for the host name. The IP addresses are ordered using metrics that include the information collected from the site switches. In one instance, the GSLB switch places the address that is deemed “best” at the top of the list.Type: GrantFiled: July 1, 2009Date of Patent: August 6, 2013Assignee: Brocade Communications Systems, Inc.Inventors: Ivy Pei-Shan Hsu, David Chun-Ying Cheung, Rajkumar Ramniranjan Jalan
-
Patent number: 8024441Abstract: A global server load-balancing (GSLB) switch serves as a proxy to an authoritative DNS and communicates with numerous site switches that are coupled to host servers serving specific applications. The GSLB switch receives from site switches operational information regarding host servers within the site switches neighborhood. When a client program requests a resolution of a host name, the GSLB switch, acting as a proxy of an authoritative DNS, returns one or more ordered IP addresses for the host name. The IP addresses are ordered using metrics that include the information collected from the site switches. In one instance, the GSLB switch places the address that is deemed “best” at the top of the list.Type: GrantFiled: February 16, 2007Date of Patent: September 20, 2011Assignee: Brocade Communications Systems, Inc.Inventors: Sunanda Lakshmi Kommula, Ivy Pei-Shan Hsu, Rajkumar Jalan, David Chun Ying Cheung
-
Publication number: 20110082947Abstract: Each service in a computer network may have a connection rate limit. The number of new connections per time period may be limited by using a series of rules. In a specific embodiment of the present invention, a counter is increased each time a server is selected to handle a connection request. For each service, connections coming in are tracked. Therefore, the source of connection-request packets need not be examined. Only the destination service is important. This saves significant time in the examination of the incoming requests. Each service may have its own set of rules to best handle the new traffic for its particular situation.Type: ApplicationFiled: March 12, 2010Publication date: April 7, 2011Inventors: Ronald W. Szeto, David Chun Ying Cheung, Rajkumar Jalan
-
Publication number: 20100293296Abstract: A global server load balancing (GSLB) switch serves as a proxy to an authoritative DNS communicates with numerous site switches which are coupled to host servers serving specific applications. The GSLB switch receives from site switches operational information regarding host servers within the site switches neighborhood. When a client program requests a resolution of a host name, the GSLB switch, acting as a proxy of an authoritative DNS, returns one or more ordered IP addresses for the host name. The IP addresses are ordered using metrics that include the information collected from the site switches. In one instance, the GSLB switch places the address that is deemed “best” at the top of the list.Type: ApplicationFiled: November 17, 2008Publication date: November 18, 2010Applicant: Foundry Networks, Inc.Inventors: Ivy Pei-Shan Hsu, David Chun Ying Cheung, Rajkumar Ramniranjan Jalan
-
Publication number: 20100235507Abstract: Each service in a computer network may have a connection rate limit. The number of new connections per time period may be limited by using a series of rules. In a specific embodiment of the present invention, a counter is increased each time a server is selected to handle a connection request. For each service, connections coming in are tracked. Therefore, the source of connection-request packets need not be examined. Only the destination service is important. This saves significant time in the examination of the incoming requests. Each service may have its own set of rules to best handle the new traffic for its particular situation. For server load balancing, a reset may be sent to the source address of the new connection request. For transparent cache switching, the connection request may be forwarded to the Internet.Type: ApplicationFiled: May 21, 2010Publication date: September 16, 2010Applicant: Brocade Communications Systems, Inc.Inventors: Ronald W. Szeto, David Chun Ying Cheung, Rajkumar Jalan
-
Patent number: 7774482Abstract: Each service in a computer network may have a connection rate limit. The number of new connections per time period may be limited by using a series of rules. In a specific embodiment of the present invention, a counter is increased each time a server is selected to handle a connection request. For each service, connections coming in are tracked. Therefore, the source of connection-request packets need not be examined. Only the destination service is important. This saves significant time in the examination of the incoming requests. Each service may have its own set of rules to best handle the new traffic for its particular situation. For server load balancing, a reset may be sent to the source address of the new connection request. For transparent cache switching, the connection request may be forwarded to the Internet.Type: GrantFiled: May 3, 2002Date of Patent: August 10, 2010Assignee: Foundry Networks, Inc.Inventors: Ronald W. Szeto, David Chun Ying Cheung, Rajkumar Jalan
-
Publication number: 20100121932Abstract: A global server load-balancing (GSLB) switch serves as a proxy to an authoritative DNS and communicates with numerous site switches that are coupled to host servers serving specific applications. The GSLB switch receives from site switches operational information regarding host servers within the site switches neighborhood. This operational information includes health check information that is remotely obtained in a distributed manner from remote metric agents at the site switches. When a client program requests a resolution of a host name, the GSLB switch, acting as a proxy of an authoritative DNS, returns one or more ordered IP addresses for the host name. The IP addresses are ordered using metrics, including the health check metric that evaluates these IP addresses based on the health check information communicated to the GSLB switch in a distributed manner by the distributed health check site switches. In one instance, the GSLB switch places the address that is deemed “best” at the top of the list.Type: ApplicationFiled: November 27, 2002Publication date: May 13, 2010Applicant: Foundry Networks, Inc.Inventors: Prajakta S. Joshi, David Chun Ying Cheung
-
Patent number: 7707295Abstract: Each service in a computer network may have a connection rate limit. The number of new connections per time period may be limited by using a series of rules. In a specific embodiment of the present invention, a counter is increased each time a server is selected to handle a connection request. For each service, connections coming in are tracked. Therefore, the source of connection-request packets need not be examined. Only the destination service is important. This saves significant time in the examination of the incoming requests. Each service may have its own set of rules to best handle the new traffic for its particular situation.Type: GrantFiled: May 3, 2002Date of Patent: April 27, 2010Assignee: Foundry Networks, Inc.Inventors: Ronald W. Szeto, David Chun Ying Cheung, Rajkumar Jalan