| 发明名称 | SSL secured NTLM acceleration | ||
| 摘要 | Embodiments are directed towards managing network traffic that includes SSL secured NTLM acceleration. A Packet Traffic Management Computer (PTMC) may receive a challenge sent by a server computer before the challenge is provided to a client computer. After receiving the challenge from the server computer, the PTMC may generate a cookie that at least includes a session-ID that corresponds to the client computer. The PTMC may add the cookie to the challenge before the modified challenge is forwarded to the client computer. If response is received from the client computer and it includes the same cookie that was sent with the challenge. The session-ID may be extracted from the cookie and employed to determine which server computer should receive the message. If a server computer may be determined, the PTMC may forward the message to the determined server computer. | ||
| 申请公布号 | US9491157(B1) | 申请公布日期 | 2016.11.08 |
| 申请号 | US201414498987 | 申请日期 | 2014.09.26 |
| 申请人 | F5 Networks, Inc. | 发明人 | Amdahl Saxon Carl;Natarajan Ravi;Masters Richard Roderick |
| 分类号 | H04L29/06;H04L29/08 | 主分类号 | H04L29/06 |
| 代理机构 | Lowe Graham Jones PLLC | 代理人 | Branch John W.;Lowe Graham Jones PLLC |
| 主权项 | 1. A method for managing communication for a plurality of computers with one or more traffic management computers (PTMCs) that performs actions, comprising: providing an access denied message from a server computer to a client computer, wherein the access denied message includes an authentication cookie that at least includes a session-ID that corresponds to the client computer; when a negotiation message from the client computer that is directed to the server computer is provided to the one or more PTMCs, performing further actions, including: establishing a private connection between the one or more PTMCs and the server computer;associating the private connection with the session-ID;providing the negotiation message to the server computer over the private network connection;obtaining, over the private network connection a challenge message provided by the server computer, wherein the challenge message includes one or more portions of the negotiation message;providing the challenge message to the client computer, wherein the challenge message includes the authentication cookie; and when a response message that includes another authentication cookie is determined to correspond with the client computer, perform further actions, including: extracting the session-ID from the other authentication cookie;determining the private connection between the client computer and the server computer based on the session-ID; andemploying the private connection to forward the response message to the server computer to enable the server computer to authenticate the private connection. | ||
| 地址 | Seattle WA US | ||