Patents by Inventor Gurudeep Kamat

Gurudeep Kamat has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 10348631
    Abstract: Methods and systems for load balancing are disclosed. An example method for load balancing commences with receiving a data packet from a host device. The method further includes identifying a header field of the data packet. After identifying the header field of the data packet, the method proceeds with matching the data packet to a network service based on the header field. Thereafter, the method generates a header field block for the data packet based on the network service. The method further includes sending the data packet to a processor module. The data packet is processed based on the header field block.
    Type: Grant
    Filed: November 16, 2017
    Date of Patent: July 9, 2019
    Assignee: A10 Networks, Inc.
    Inventors: Gurudeep Kamat, Ian E. Davis, Rajkumar Jalan
  • Patent number: 10341427
    Abstract: In providing packet forwarding policies in a virtual service network that includes a network node and a pool of service load balancers serving a virtual service, the network node: receives a virtual service session request from a client device, the request including a virtual service network address for the virtual service; compares the virtual service network address in the request with the virtual service network address in each at least one packet forwarding policy; in response to finding a match between the virtual service network address in the request and a given virtual service network address in a given packet forwarding policy, determines the given destination in the given packet forwarding policy; and sends the request to a service load balancer in the pool of service load balancers associated with the given destination, where the service load balancer establishes a virtual service session with the client device.
    Type: Grant
    Filed: December 29, 2016
    Date of Patent: July 2, 2019
    Assignee: A10 Networks, Inc.
    Inventors: Rajkumar Jalan, Gurudeep Kamat
  • Patent number: 10305904
    Abstract: Facilitation of secure network traffic by an application delivery controller is provided herein. In some examples, a method includes: (a) receiving a data packet with information from a client indicating that the client is a trusted source; (b) embedding in the data packet a transmission control protocol (TCP) options header, the TCP options header comprising information including at least a sequence number for a protocol connection; and (c) forwarding the embedded data packet to a server.
    Type: Grant
    Filed: December 29, 2017
    Date of Patent: May 28, 2019
    Assignee: A10 Networks, Inc.
    Inventors: Rajkumar Jalan, Gurudeep Kamat
  • Patent number: 10257099
    Abstract: A method for routing Internet traffic is disclosed. The method comprises receiving an IPv6 packet. Further, the method comprises determining if the IPv6 packet comprises an extension header with geo-location information. Finally, responsive to a determination that the IPv6 packet comprises an extension header with geo-location information, the method comprises performing an action based on the geo-location information, wherein the action is selected from the group consisting of: authenticating the IPv6 packet, prioritizing the IPv6 packet relative to other packets, routing the IPv6 packet, and monitoring of the IPv6 packet.
    Type: Grant
    Filed: September 30, 2014
    Date of Patent: April 9, 2019
    Assignee: A 10 NETWORKS, INCORPORATED
    Inventors: Michael Friedel, Hasnain Karampurwala, Gurudeep Kamat
  • Publication number: 20190098044
    Abstract: Provided are methods and systems for recognizing network devices as trusted. A system for recognizing network devices as trusted may include a network module, a storage device, and a processor. The network module may be configured to receive a request from a network device to establish a data connection between the network device and a server based on a determination that the network device is trusted. The storage device may be configured to store a whitelist associated with a plurality of trusted network devices. The processor may be configured to determine that the network device is trusted. Based on the determination, the processor may associate the network device with the whitelist for a predetermined period of time.
    Type: Application
    Filed: November 23, 2018
    Publication date: March 28, 2019
    Inventors: Rajkumar Jalan, Gurudeep Kamat, Ronald Wai Lun Szeto
  • Patent number: 10158666
    Abstract: Provided are methods and systems for mitigating a denial of service attack. A system for mitigating a denial of service attack may include a network module, a storage module, and a processor module. The network module may be operable to receive a request from a network device to establish a data connection between the network device and a server based on a determination that the network device is trusted. The storage module may be operable to store a whitelist associated with a plurality of trusted network devices. The processor module may be operable to determine that the network device is trusted. Based on the determination, the processor module may associate the network device with the whitelist for a predetermined period of time.
    Type: Grant
    Filed: July 26, 2016
    Date of Patent: December 18, 2018
    Assignee: A10 Networks, Inc.
    Inventors: Rajkumar Jalan, Gurudeep Kamat, Ronald Wai Lun Szeto
  • Publication number: 20180316767
    Abstract: Facilitation of secure network traffic over an application session by an application delivery controller is provided herein. A method for secure network traffic transmission over an application session may include receiving, from a client device, a SYN data packet intended for an application server. The method may continue with determining, based on the SYN data packet, that the client device is a trusted source. The method may further include transmitting, based on the determination that the client device is the trusted source, a SYN/ACK packet to the client device. The SYN/ACK packet may include information for the client device to authenticate the client device to the application server directly as the trusted source.
    Type: Application
    Filed: July 3, 2018
    Publication date: November 1, 2018
    Inventors: Rajkumar Jalan, Gurudeep Kamat
  • Publication number: 20180295182
    Abstract: Provided are methods and systems for dynamically distributing a service session from a client device. The method may commence with receiving a packet associated with the service session from the client device by a gateway node. The method may include determining that the packet matches a service address in a forwarding policy. The method may continue with selecting one of a plurality of forwarding nodes for sending the packet to the one of the plurality of forwarding nodes. The method may include receiving the packet of the service session by the one of the plurality of forwarding nodes. The method may continue with determining that the packet matches the service address serviced by a servicing node of a plurality of servicing nodes. The method may further include sending the packet to the servicing node for forwarding the packet to a server by the servicing node.
    Type: Application
    Filed: June 8, 2018
    Publication date: October 11, 2018
    Inventors: Swaminathan Sankar, Hasnain Karampurwala, Rahul Gupta, Gurudeep Kamat, Rajkumar Jalan
  • Publication number: 20180287937
    Abstract: Provided are methods and systems for processing data packets in a data network using a policy-based network path. The method may commence with receiving the data packet associated with a service session from a client. The method may continue with determining data packet information associated with the data packet. The method may further include determining the policy-based network path for the data packet based on the data packet information and one or more packet processing criteria. The method may continue with routing, based on the determination of the policy-based network path, the data packet along the policy-based network path.
    Type: Application
    Filed: June 4, 2018
    Publication date: October 4, 2018
    Inventors: Rajkumar Jalan, Gurudeep Kamat
  • Publication number: 20180248805
    Abstract: Provided are methods and systems for eliminating a redirection of data traffic in a cluster. An example method may include receiving, by one or more nodes of the cluster, a data packet associated with a service session. The method may include determining, by the node, that the data packet is directed to a further node in the cluster. The method may further include, in response to the determination, acquiring, by the node, a session context associated with the service session. Acquiring the session context may include sending, by the node, a request for the session context to the further node and receiving the session context from the further node. The method may further include processing, by the one or more nodes, the data packet based on the session context.
    Type: Application
    Filed: April 30, 2018
    Publication date: August 30, 2018
    Inventors: Gurudeep Kamat, Swaminathan Sankar, Gennady Dosovitsky, Rajkumar Jalan
  • Patent number: 10038693
    Abstract: Facilitation of secure network traffic by an application delivery controller is provided herein. In some examples, a method includes: (a) receiving a data packet with information from a client indicating that the client is a trusted source; (b) embedding in the data packet a transmission control protocol (TCP) options header, the TCP options header comprising information including at least a sequence number for a protocol connection; and (c) forwarding the embedded data packet to a server.
    Type: Grant
    Filed: May 2, 2014
    Date of Patent: July 31, 2018
    Assignee: A10 NETWORKS, INC.
    Inventors: Rajkumar Jalan, Gurudeep Kamat
  • Patent number: 10027761
    Abstract: Facilitation of secure network traffic over an application session by an application delivery controller is provided herein. In some examples, a network device receives a TCP SYN packet from a client device, to establish a TCP connection. The network device transmits a SYN/ACK packet to the client device, including a SYN cookie with identifying information to authenticate the client device to the application as a trusted source for the network. The client device then returns an ACK packet directly to the application server to establish the TCP connection.
    Type: Grant
    Filed: September 18, 2015
    Date of Patent: July 17, 2018
    Assignee: A10 NETWORKS, INC.
    Inventors: Rajkumar Jalan, Gurudeep Kamat
  • Patent number: 10021174
    Abstract: Provided are methods and systems for distributing service sessions from a client device in a service data network. A packet of the service session is received by a forwarding node. The forwarding node determines whether the packet matches a service address associated with the service session. Responsive to the determining, a servicing node associated with the service address is selected based on a forwarding policy. The packet is sent to the selected servicing node. The servicing node determines whether the packet is a service request packet. A server is selected based on a service policy, wherein the server is configured to serve the service session. The packet is sent to the server. Before being received by a forwarding node, the packet is received by a gateway node. The gateway node determines whether the packet matches the service address and selects the forwarding node based on a notification.
    Type: Grant
    Filed: May 15, 2014
    Date of Patent: July 10, 2018
    Assignee: A10 NETWORKS, INC.
    Inventors: Swaminathan Sankar, Hasnain Karampurwala, Rahul Gupta, Gurudeep Kamat, Rajkumar Jalan
  • Patent number: 10002141
    Abstract: Provided are methods and systems for implementing a distributed database in a data network. The method comprises receiving node data associated with one or more nodes of a plurality of nodes, updating the distributed database and replicating the distributed database to each of the plurality of nodes. The plurality of nodes comprises one or more cluster device, a cluster master, a traffic classification engine, a service node, and an orchestrator. The node data comprises node health, a number of total connections, node processing unit utilization, node memory status, destination server address, destination server capacity, destination server network connectivity, node dynamic state, node responsiveness. The distributed database comprises tables containing traffic map, node health information, traffic classification mapping, and service policy.
    Type: Grant
    Filed: June 30, 2014
    Date of Patent: June 19, 2018
    Assignee: A10 NETWORKS, INC.
    Inventors: Rajkumar Jalan, Gurudeep Kamat, Swaminathan Sankar, Hasnain Karampurwala
  • Patent number: 9992107
    Abstract: Methods and systems are provided for processing data packets in a data network using a policy based network path. A policy enforcing point receives a data packet associated with a service session and routes it toward its destination along a network path which is determined according to data packet information and one or more packet processing criteria. The data packet information may include one or more of information associated with the packet, information associated with prior packets, and information obtained from a network computer. The network path may be selected from a database of network paths. The network path may include an order list of further policy enforcing points and corresponding network application appliances. The policy enforcing point may generate a new data packet based on the data packet and the policy based network path and send the new data packet to a next policy enforcing point.
    Type: Grant
    Filed: March 14, 2014
    Date of Patent: June 5, 2018
    Assignee: A10 NETWORKS, INC.
    Inventors: Rajkumar Jalan, Gurudeep Kamat
  • Publication number: 20180124052
    Abstract: Facilitation of secure network traffic by an application delivery controller is provided herein. In some examples, a method includes: (a) receiving a data packet with information from a client indicating that the client is a trusted source; (b) embedding in the data packet a transmission control protocol (TCP) options header, the TCP options header comprising information including at least a sequence number for a protocol connection; and (c) forwarding the embedded data packet to a server.
    Type: Application
    Filed: December 29, 2017
    Publication date: May 3, 2018
    Inventors: Rajkumar Jalan, Gurudeep Kamat
  • Publication number: 20180123926
    Abstract: Exemplary embodiments for a distributed system for determining a server's health are disclosed. The systems and methods provide for a network controller to direct one or more servicing nodes to check the health of one or more servers, and report a health score to the network controller. The network controller may then calculate, update and maintain a health score for each server in the network from the various health scores reported to it from the servicing nodes. This allows a distributed system to be used to facilitate network operations, as a single device is not relied on for periodically determining each server's health.
    Type: Application
    Filed: December 29, 2017
    Publication date: May 3, 2018
    Inventors: Rajkumar Jalan, Swaminathan Sankar, Gurudeep Kamat
  • Patent number: 9961130
    Abstract: Provided are methods and systems for processing a data packet associated with a service session. The data packet directed to a first servicing node can be received by a forwarding node. The forwarding node can determine that the first servicing node is unavailable. Based on the determination, the forwarding node can select a second servicing node from a plurality of servicing nodes. The selection can be based on a high availability policy. The forwarding node can then send the data packet to the second servicing node.
    Type: Grant
    Filed: April 24, 2014
    Date of Patent: May 1, 2018
    Assignee: A10 NETWORKS, INC.
    Inventors: Gurudeep Kamat, Swaminathan Sankar
  • Publication number: 20180102945
    Abstract: Provided are methods and systems for graceful scaling of data networks. In one example, an indication of removal of a node from a plurality of nodes of the data network is received. A service policy is generated to reassign service requests associated with the node to another node in the plurality of nodes. The service policy is then sent to each of the plurality of nodes of the data network. To scale out a data network, an indication of presence of a further node in the data network is received, and a further node service policy is generated and sent to each of the plurality of nodes of the data network and to the further node. Additional actions can be taken in order to prevent interruption of an existing heavy-duty connection while scaling the data network.
    Type: Application
    Filed: December 11, 2017
    Publication date: April 12, 2018
    Inventors: Swaminathan Sankar, Rahul Gupta, Gurudeep Kamat, Rajkumar Jalan
  • Patent number: 9942152
    Abstract: Methods and systems are provided for forwarding data packets in a service network using a service-based policy. A gateway node may receive data packets from a service session and send the data packets for a forwarding node. The forwarding node may match the service session data packet against a service address and forwarding policy, the forwarding policy being based on capabilities and service configurations of the servicing nodes in the service network. Forwarding node may then forward the service session data packet to a servicing node in accordance with the forwarding policy, and send the service session data packet to a server for processing.
    Type: Grant
    Filed: March 25, 2014
    Date of Patent: April 10, 2018
    Assignee: A10 NETWORKS, INC.
    Inventors: Rajkumar Jalan, Gurudeep Kamat, Swaminathan Sankar, Hasnain Karampurwala