US 12,445,527 B2
Using client-hello for intelligent routing and firewalling in multipath secure access systems
Vincent E. Parla, North Hampton, NH (US); Jerome Tollet, Paris (FR); Aloys Christophe Augustin, Versaille (FR); and Mohammed Hawari, Montigny-le-Bretonne (FR)
Assigned to Cisco Technology, Inc., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on Oct. 4, 2023, as Appl. No. 18/376,676.
Prior Publication US 2025/0119471 A1, Apr. 10, 2025
Int. Cl. H04L 67/141 (2022.01); H04L 9/40 (2022.01)
CPC H04L 67/141 (2013.01) [H04L 63/0272 (2013.01); H04L 63/08 (2013.01); H04L 63/166 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
receiving, at one or more routing devices of a networked computing environment and from a client device, a first control packet;
generating a communication session identifier associated with the client device, the communication session identifier including one or more first bits indicating a workload associated with the client device and one or more second bits indicating a first routing device of the one or more routing devices;
sending, from the first routing device and to the client device, a request to authenticate the client device for access to the workload;
receiving a second control packet including the communication session identifier and authentication credentials configured to authenticate the client device for access to the workload;
establishing a first control plane session between the first routing device and the client device;
sending, via the first control plane session, a second control packet including an indication of the communication session identifier;
receiving, at the first routing device, a first data packet including the communication session identifier; and
establishing a first data plane session between the first routing device and the client device based at least in part on the authentication credentials.