	US 12,021,851 B2
	Session recovery mechanism
Jin Zhang, Cary, NC (US); Surajpal S. Sandhu, Cary, NC (US); and Matthew Martin Houston, Raleigh, NC (US)
Assigned to NetApp, Inc., San Jose, CA (US)
Filed by NetApp, Inc., San Jose, CA (US)
Filed on Nov. 2, 2021, as Appl. No. 17/517,460.
Prior Publication US 2023/0135158 A1, May 4, 2023
Int. Cl. H04L 9/40 (2022.01); H04L 67/148 (2022.01)

CPC H04L 63/0485 (2013.01) [H04L 63/061 (2013.01); H04L 63/20 (2013.01); H04L 67/148 (2013.01)]

20 Claims

1. A method performed by one or more processing resources of one or more computer systems, the method comprising:

detecting an unrecognized Internet Protocol Security (IPsec) packet associated with an IP address at a first node within a cluster;

retrieving one or more selector fields from the IPsec packet upon detecting the unrecognized IPsec packet;

querying of a security policy database to determine whether a destination IP address included in the one or more retrieved selector fields matches one or more matching outbound IPsec policies associated with the destination IP address;

determining whether a matching outbound IPsec policy includes an IPsec policy associated with the destination address entry; and

establishing the first IPsec SA communication session between the first node and the client based on the outbound IPsec policy.