| Patent application number | Description | Published |
|---|
| 20080291934 | Variable Dynamic Throttling of Network Traffic for Intrusion Prevention - Methods, apparatus, and computer program products for variable dynamic throttling of network traffic for intrusion prevention are disclosed that include initializing, as throttling parameters, a predefined time interval, a packet count, a packet count threshold, a throttle rate, a keepers count, and a discards count; starting a timer, the timer remaining on no longer than the predefined time interval; maintaining, while the timer is on, statistics including the packet count, the keepers count, and the discards count; for each data communications packet received by the network host, determining, in dependence upon the statistics and the throttle rate, whether to discard the packet and determining whether the packet count exceeds the packet count threshold; and if the packet count exceeds the packet count threshold: resetting the statistics, incrementing the throttle rate, and restarting the timer. | 11-27-2008 |
| 20100306378 | AUTOMATIC PORT CONFLICT RESOLUTION DURING APPLICATION DEPLOYMENT - Systems, methods and articles of manufacture are disclosed for identifying and resolving port conflicts during application deployment. The port conflicts may be identified based on application documentation and active port information. The port conflicts may be resolved by identifying an available port and providing information about the available port to a conflicting application. The port conflicts may also be resolved by identifying an available IP address and providing a port on the available IP address to a conflicting application. Further, if conflicting applications allow port sharing, the port conflicts may be resolved by providing port sharing information to the conflicting applications. | 12-02-2010 |
| 20110010413 | TCP/IP HOST NAME RESOLUTION ON A PRIVATE NETWORK - Systems, methods and articles of manufacture are disclosed for resolving hostnames on a private network with a distributed DNS server configuration. One embodiment of the invention provides for a client resolver configured to communicate with a distributed network of servers. The client resolver receives a hostname query and determines if the hostname query is of the type single lablel hostname or fully qualified hostname. If the hostname query received is of the type fully qualified hostname, the client resolver routes the hostname query to a server with a longest matching domain suffix. If the hostname query received is of the type single label hostname the client resolver generates one or more new fully qualified hostnames and routes the hostname query to each server on the private network. | 01-13-2011 |
| 20110010437 | NETWORK DEVICE CONFIGURATION - Systems, methods and articles of manufacture are disclosed for configuring a network device on a private network. A network device broadcasts a status message to the private network. The network device receives a request from a client and sends a response. The network device and the client establish a direct message route wherein one or more network configuration settings are exchanged between the client computer and the network device. | 01-13-2011 |
| 20110010463 | PROPOGATION OF DNS SERVER IP ADDRESSES IN A PRIVATE NETWORK - Systems, methods and articles of manufacture are disclosed for updating IP addresses on a private network. A DNS server receives an updated IP address and stores both the updated IP address and an old IP address. The DNS server includes the updated IP address in responses to all DNS query requests, wherein the DNS query requests are to the old IP address. Further, the DNS server deletes the old IP address and updates the DNS server network settings with the updated IP address after every remote client on the private network has stored the updated IP address. | 01-13-2011 |
| 20110055374 | COMPUTER IMPLEMENTED DNS SERVER IP ADDRESS LOOKUP MECHANISM - Systems, methods and articles of manufacture are disclosed for resolving hostnames on a private network with a public Internet server. One embodiment of the invention provides for a public Internet server configured to generate a private network ID when a new private network is identified, wherein the private network ID is a unique reference to all nodes within a private network and wherein the private network is comprised of one or more private DNS servers. The public internet server stores the private network ID and an IP address for at least one or more private DNS servers on the private network and sends, upon request, the private network ID to at least one of the private DNS servers. | 03-03-2011 |
| Patent application number | Description | Published |
|---|
| 20080215676 | SHARING A SHARED RESOURCE ACROSS LOGICAL PARTITIONS OR SYSTEMS - An apparatus and method for sharing a resource (such as a modem or virtual private network) allow virtualizing the shared resource in a simple and efficient manner that allows both accepting and initiating virtual or physical connections through the shared resource across logical partitions or systems. An L2TP tunnel is established between the server that owns the shared resource and the client that desires to use the shared resource. Messages are defined that allow the client to initiate an outgoing connection through the shared resource, and that allow the client to accept an incoming connection received from the shared resource. Once the connection is made, the client and ultimate destination communicate through the shared resource via point-to-point communications. | 09-04-2008 |
| 20080215738 | SHARING A SHARED RESOURCE ACROSS LOGICAL PARTITIONS OR SYSTEMS - An apparatus and method for sharing a resource (such as a modem or virtual private network) allow virtualizing the shared resource in a simple and efficient manner that allows both accepting and initiating virtual or physical connections through the shared resource across logical partitions or systems. An L2TP tunnel is established between the server that owns the shared resource and the client that desires to use the shared resource. Messages are defined that allow the client to initiate an outgoing connection through the shared resource, and that allow the client to accept an incoming connection received from the shared resource. Once the connection is made, the client and ultimate destination communicate through the shared resource via point-to-point communications. | 09-04-2008 |
| 20080222298 | SHARING A SHARED RESOURCE ACROSS LOGICAL PARTITIONS OR SYSTEMS - An apparatus and method for sharing a resource (such as a modem or virtual private network) allow virtualizing the shared resource in a simple and efficient manner that allows both accepting and initiating virtual or physical connections through the shared resource across logical partitions or systems. An L2TP tunnel is established between the server that owns the shared resource and the client that desires to use the shared resource. Messages are defined that allow the client to initiate an outgoing connection through the shared resource, and that allow the client to accept an incoming connection received from the shared resource. Once the connection is made, the client and ultimate destination communicate through the shared resource via point-to-point communications. | 09-11-2008 |
| 20080229243 | TRACKING NETWORK SOCKET USAGE IN A DATA COMMUNICATION NETWORK - A method, apparatus and computer readable medium is provided for tracking processes using a socket object. The processes are utilized to execute an application program. Initially, a process list for the socket object is created, such that the process list contains a process identifier for a first process using the socket object. If a second process is using the socket object, the process list is updated to include the process identifier for the second process. | 09-18-2008 |
| 20090106838 | Blocking Intrusion Attacks at an Offending Host - A method, apparatus, and program product are provided for protecting a network from intrusions. An offending packet communicated by an offending host coupled to a protected network is detected. In response to the detection, a blocking instruction is returned to the offending host to initiate an intrusion protection operation on the offending host, where the blocking instruction inhibits further transmission of offending packets by the offending host. At the offending host, a blocking instruction is received with a portion of an offending packet. The offending host verifies that the offending packet originated from the host. In response to the verification of the offending packet originating from the host, an intrusion protection operation is initiated on the host thereby inhibiting transmission of a subsequent outbound offending packet by the host. | 04-23-2009 |
| 20090119366 | Routing incoming call requests - A storage medium and computer system that in an embodiment dynamically allocate client requests to target servers based on prepare messages sent by the target servers. The addresses of target servers are added to a queue in response to the prepare messages from the target servers. A network interface is then prepared to receive an incoming call request from a client. After the call request arrives from a client, one of the addresses is selected from the queue. The call request is then sent through a tunnel to the target server associated with the selected address. | 05-07-2009 |
