The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Jul. 07, 2020
Filed:
Jun. 14, 2018
Fortinet, Inc., Sunnyvale, CA (US);
Yixin Pan, Burnaby, CA;
Fortinet, Inc., Sunnyvale, CA (US);
Abstract
Systems and methods for mitigating effects of source-Media Access Control (MAC) flooding attacks on a forwarding database (FDB) that maps MAC addresses to enhanced MAC Virtual Local Area Network (EMACVLAN) sub-interfaces of a physical Ethernet interface are provided. A Virtual Domain (VDOM) operating in transparent mode receives an ingress packet by an internal switch running on the virtualized network device via a sub-interface. When an entry, corresponding to a source MAC address of the ingress packet, does not exist in the FDB, an appropriate entry is created in the FDB and the entry is queued for confirmation at a tail of an ephemeral queue. When a total number of entries contained in the FDB reaches a predetermined threshold, an unconfirmed entry at a head of the queue is removed from the FDB. When the entry is confirmed, it is retained in the FDB and is unlinked from the queue.