Systems and methods for differentiating between a duplicate MAC address situation and a multiple MAC address movement situation are provided. A node receives a new MAC address determines if it is a known or unknown MAC address by comparing it with a stored MAC address table. If it is a previously known MAC address, the node initiates a duplicate MAC address detection process to determine if at least one of the duplicate MAC addresses is no longer valid or is the result of a MAC mobility event.

A method of transmitting a data packet from a content provider in a content-centric network CCN includes verifying whether a content request packet requesting a content identical to a content of a content request packet being received from a content requester is present in a pending interest table (PIT), increasing a value of a counter corresponding to the content request packet, comparing the value of the counter to a predetermined threshold value, and transmitting a data packet using a predefined broadcast media access control (MAC) address in response to the content request packet being received and the value of the counter being greater than or equal to the threshold value.

Systems and methods are described for providing wireless backhaul transport. One element of the system is a highly integrated radio transceiver, including an integrated antenna. The radio transceiver may operate in the millimeter wave range (between 30 GHz and 300 GHz), and due to the small wavelengths, it is possible to integrate the antenna, which may typically compromise a number of antenna elements, with the radio transceiver in a single integrated circuit (IC) package, commonly referred to as a system-in-package (SiP) and/or antenna-in-package (AiP) format. The system supports multi-hop point-to-multipoint or multi-hop mesh networking topologies. Low level MAC routing tables are built and maintained to enable efficient packet and frame forwarding.

A method for balancing load among firewall security devices (FSDs) is provided. According to one embodiment, a switching device performs adaptive load balancing among cluster units of an HA cluster of firewall security devices. A load balancing (LB) function implemented by the switching device is configured based on information received from a network administrator. A LB table is maintained that forms associations between hash values output by the LB function and corresponding ports of the switching device to which the cluster units are coupled. Network traffic received by the switching device is directed to appropriate cluster units based on the LB function and the LB table. A traffic load on each of the cluster units is monitored. Responsive to a deviation from a predefined ideal traffic distribution, an attempt is made to improve performance of the HA cluster by dynamically adjusting the LB balancing table to address the deviation.

A node may generate a data packet comprising an Internet Protocol (IP) header and a destination options extension header (DOEH). The DOEH may comprise one or more data fields and an IP payload. The node may send the data packet to another node in a data network.

The present invention relates to a network communication apparatus 150, which comprises: means for receiving data units, the data units comprising payload data; means for forwarding said data units on to a further network location; means for inspecting the payload data of a data unit; and means for modifying said data unit before the entire data unit has been forwarded on in dependence on the outcome of the data unit inspection thereby to alter the subsequent handling of that modified data unit once it has been forwarded on. The present invention also extends to a communication system and to a corresponding method of monitoring network communications.

An information processing apparatus includes a processor configured to perform a process which includes determining an address available to be set as a source address of a first packet to be transmitted to an apparatus included in a network; identifying one or more relay apparatuses in a communication route from the apparatus to the information processing apparatus; and configuring, for at least one of the identified relay apparatuses, a setting regarding a transfer destination of a second packet whose destination address is the determined address in such a manner that the second packet is transferred toward the information processing apparatus along the communication route.

A method for forwarding a packet by a first Network Virtualization Edge (NVE) in Network Virtualization Overlays, Layer 3 (NVO3) and an NVE is provided. The method comprises, in response to receiving an IP packet from a first Virtual Access Point (VAP) of the first NVE, looking up forwarding information to obtain an IP address of a second NVE; in response to lookup fails, or the IP address of the second NVE being different from an IP address of the or the second VAP being different from the first VAP, dropping the IP packet; and in response to the IP address of the second NVE being the same as an IP address of the first NVE and the second VAP being the same as the first VAP, forwarding the IP packet.

A more efficient network is facilitated by data routing. A node device within a network can broadcast a first set of data to a network of other node devices. Based on node device characteristics, some nodes will hear the broadcast first and can be labeled as a relay node. The relay nodes can then transmit other data based on the determination of other relay nodes.

Technologies for performing access control include a computing device that parses a network packet received by the computing device to identify an n-tuple of a header of the network packet, wherein the n-tuple is associated with one or more access control rules. The computing devices determines a bitmask associated with an access control rule of a virtual machine of the computing device and applies the determined bitmask to the n-tuple of the network packet to generate a masked n-tuple. Further, the computing device generates a hash of the masked n-tuple and compares the generated hash to a reference hash associated with the access control rule to identify a match. The computing device performs an access control action in response to identifying a match between the generated hash and the reference hash.