Disclosed are methods for encrypting communications with a remote endpoint via a memory device. In one embodiment, a memory device is configured to receive, from the application, a request to establish a communications session with a remote computing device, establish a shared symmetric key, the shared symmetric key shared between the memory device and the remote computing device, receive a message from the application, the message including an identifier of the remote computing device and a payload, generate a ciphertext using the symmetric key and the payload, and return the ciphertext to the application.

A method comprises, at a wireless network controller of wireless access points through which wireless client devices that are wireless communicate with the controller: upon receiving, from a wireless client device, a dynamic host configuration protocol (DHCP) request having a media access control (MAC) address, determining whether the wireless client device rotated its MAC address from a previous MAC address to the MAC address; when the wireless client device rotated its MAC address, forwarding, to a DHCP service, the DHCP request with a notification of a MAC address rotation to cause the DHCP service to reassign a previously assigned Internet Protocol (IP) address to the wireless client device; and upon receiving, from the DHCP service, a DHCP offer asserting the previously assigned IP address, forwarding the DHCP offer to the wireless client device.

Some embodiments provide a method for forwarding data messages at multiple edge nodes of a logical network that process data messages between a logical network and an external network. At a particular one of the edge nodes, the method receives a data message sent from a source machine in the logical network. The method performs network address translation to translate a source network address of the data message corresponding to the source machine into an anycast network address that is shared among the edge nodes. The method sends the data message with the anycast network address as a source network address to the external network. Each edge node receives data messages from source machines in the logical network and translates the source addresses of the data messages into the same anycast public network address prior to sending the data messages to the external network.

One embodiment of the present invention facilitates address resolution protocol (ARP) resolution in an extended subnet. A gateway of a first segment of the extended subnet can determine that a layer-2 address corresponding to a layer-3 destination address of a packet is locally unavailable. The gateway can then determine whether a respective egress interface of an ARP request for the layer-3 destination address is associated with a layer-2 subnet extension from the first segment to a second segment of the extended subnet. The extension can provide a common layer-2 broadcast domain comprising the first and second segments with a same default gateway layer-3 address. If the egress interface is associated with the extension, the gateway can insert a layer-3 address of a first endpoint associated with the extension as a source protocol address in the ARP request. The gateway can send the modified ARP request via the egress interface.

Systems, methods, and non-transitory computer-readable storage media for determining when to wirelessly communicatively couple together a pair of untethered wireless audio output devices and for determining when to erase a connection history stored on one or both of the wireless audio output devices.

In a general aspect, motion is detected in an environment using wireless signals. In one example, a downlink high-efficiency PHY (HE-PHY) frame is received. The downlink HE-PHY frame is transmitted by an access point device to wireless communication devices residing inside an environment. An uplink orthogonal frequency-division multiple access (UL-OFDMA) transmission is subsequently received in response to the downlink HE-PHY frame. The UL-OFDMA transmission is transmitted by the wireless communication devices to the access point device. The UL-OFDMA transmission includes uplink HE-PHY frames simultaneously transmitted on respective resource units by the respective wireless communication devices. A motion data set is generated based on channel responses computed from the uplink HE-PHY frames. Each channel response is computed from a respective one of the uplink HE-PHY frames. Motion within the environment is analyzed based on the motion data set.

Described are various embodiments of a system and method in which device-identifying data can be used to uniquely recognize and optionally track and report on device activity at one or more hotspot and/or Wi-Fi locations by way of the creation and management of a device and/or visit profile uniquely associated with such devices and stored in a network accessible knowledge base.

The present application provides a method and apparatus for suppressing the spread of viruses in a local area network. The method includes determining, in response to receiving a first service packet initiated by a target terminal, whether a destination port carried in the first service packet indicates one of the preset risky ports; determining, in response to that the destination port indicates one of the preset risky ports, whether a number of interacting terminals in the LAN that have performed ARP interaction with the target terminal reaches a first preset threshold; and in response to that the number of interacting terminals reaches the first preset threshold, providing protection to the target terminal so to suppress virus propagation in the LAN.

In a reverse address resolution method, a sender electronic device broadcasts a first request packet. An Ethernet payload of the first request packet includes a media access control (MAC) address of a target electronic device. After receiving the first request packet, the target electronic device determines that an IP address of the target electronic device is requested, and returns a first reply packet. An Ethernet payload of the first reply packet includes the internet protocol (IP) address of the target electronic device. According to the technical solutions provided in this application, the sender electronic device obtains the IP address of the target electronic device based on the MAC address of the target electronic device through interaction at a data link layer. Therefore, in a mobile distributed system, the IP address of the target electronic device is quickly obtained without relying on a server.

Techniques are disclosed for session-based routing of multipoint Open Systems Interconnection (OSI) Model Layer-2 (L2) frames of an L2 network extended over Layer-3 (L3) networks. In one example, L2 networks connect a source device to an ingress router and receiver devices to egress routers. An L3 network connects the ingress and egress routers. The ingress router receives, from the source device, a multipoint L2 frame destined for the receiver devices. The ingress router forms, for each egress router that is connected to at least one multipoint receiver device, a unicast L3 packet for the L2 frame and forwards the unicast L3 packet to the egress router. Each egress router generates, in response to receiving the unicast L3 packet, the multipoint L2 frame and forwards, to the receiver devices, the multipoint L2 frame.