logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 9009327 B1

PDFFull Text
Date of Patent:
Apr. 14, 2015

Filed:

Aug. 03, 2007

Systems and methods for providing iip address stickiness in an ssl vpn session failover environment

Applicants:

Saibal Adhya, Bangalore, IN;

Akshat Choudhary, Bangalore, IN;

Shashi Nanjundaswamy, Bangalore, IN;

Sergey Verzunov, Moscow, RU;

Arkesh Kumar, Santa Clara, CA (US);

Amarnath Mullick, Bangalore, IN;

Inventors:

Saibal Adhya, Bangalore, IN;

Akshat Choudhary, Bangalore, IN;

Shashi Nanjundaswamy, Bangalore, IN;

Sergey Verzunov, Moscow, RU;

Arkesh Kumar, Santa Clara, CA (US);

Amarnath Mullick, Bangalore, IN;

Assignee:

Citrix Systems, Inc., Fort Lauderdale, FL (US);

Attorneys:

Foley & Lardner LLP

Christopher J. McKenna

Paul M. H. Pua

Primary Examiner:

Melanie Jagannathan

Assistant Examiner:

Stephanie Chang

Int. Cl.
CPC ...
G06F 15/16 (2006.01); H04L 12/46 (2006.01); H04L 29/12 (2006.01); H04L 29/08 (2006.01); H04L 29/14 (2006.01); G06F 15/173 (2006.01); H04W 4/00 (2009.01); H04L 29/06 (2006.01);
U.S. Cl.
CPC ...
H04L 12/4641 (2013.01); H04L 29/12216 (2013.01); H04L 61/2007 (2013.01); H04L 63/0272 (2013.01); H04L 63/166 (2013.01); H04L 67/14 (2013.01); H04L 69/40 (2013.01);
Abstract

The SSL VPN session failover solution of the appliance and/or client agent described herein provides an environment for handling IP address assignment and end point re-authorization upon failover. The appliances may be deployed to provide a session failover environment in which a second appliance is a backup to a first appliance when a failover condition is detected, such as failure in operation of the first appliance. The backup appliance takes over responsibility for SSL VPN sessions provided by the first appliance. In the failover environment, the first appliance propagates SSL VPN session information including user IP address assignment and end point authorization information to the backup appliance. The backup appliance maintains this information. Upon detection of failover of the first appliance, the backup appliance activates the transferred SSL VPN session and maintains the user assigned IP addresses. The backup appliance may also re-authorize the client for the transferred SSL VPN session.

Find Patent Forward Citations

Loading…